{"id":343,"date":"2006-10-25T17:29:45","date_gmt":"2006-10-25T17:29:45","guid":{"rendered":"https:\/\/www.darknet.org.uk\/2006\/10\/tracking-users-via-the-browser-cache\/"},"modified":"2010-07-22T08:19:56","modified_gmt":"2010-07-22T07:19:56","slug":"tracking-users-via-the-browser-cache","status":"publish","type":"post","link":"https:\/\/www.darknet.org.uk\/2006\/10\/tracking-users-via-the-browser-cache\/","title":{"rendered":"Tracking Users Via the Browser Cache"},"content":{"rendered":"
<\/p>\n
An interesting new twist on things, rather than using cookies to store information you can use perpetually cached files.<\/p>\n
So clearing your cache and cookies isn’t enough, could be a privacy issue you say, indeed it could..<\/p>\n
Clearing cookies may not be enough as you may think. Your browser’s cache is a valuable store of information. A JavaScript .js file resource which is generated dynamically when requested can have embedded a unique tracking ID and can live permanently in your browser’s cache when sent with the right HTTP cache-control headers. This JavaScript file can then be called by pages. The script is never re-requested, and hence keeps the unique ID, and it can call resources on the server-side to track you. They just need to associate this unique ID once with your account (when you login first time after the ID was created), and they can set cookies back again later and track you anyway. The result is that you can be tracked uniquely even past the point where you clear your cookies (i.e., as if you never cleared your cookies to generate fresh ones).<\/p><\/blockquote>\n