Lokacin tattaunawa Google don haɗa abubuwan da ke cikin taken HTTP User-Agent, mai haɓaka kiwi browser zuwa "X-Client-Data" HTTP header saura a Chrome, wanda zai yiwu Gabaɗaya Dokar Kariyar Bayanai da ke aiki a cikin Tarayyar Turai (). Lokacin An kuma soki duality na ayyukan Google, wanda a gefe guda don toshe ɓoye ɓoye da bin diddigin ayyukan mai amfani, amma a gefe guda, ba a cikin gaggawa don cire tallafi ga taken X-Client-Data daga Chrome, wanda za'a iya amfani da shi don gano wuraren bincike yayin shiga ayyukan Google.
Kan X-Client-Bayanai ba boyayyen aiki bane kuma halinsa shine a cikin takardun. Ta hanyar X-Client-Data, Google yana karɓar bayanai game da ayyukan wasu fasalolin gwaji a cikin Chrome dangane da rukunin yanar gizonsa (misali, yayin gwaji, Google na iya kunna wasu fasalolin gwaji a Youtube idan mai binciken yana goyan bayan su ko ƙoƙarin yin hakan. daidaita matsalolin tare da kunna ayyukan gwaji).
Rubuta kawai don buƙatun ga shafukan Google waɗanda suka dace da abin rufe fuska "*.doubleclick.net", "*.googlesyndication.com", "www.googleadservices.com", "*.google.>" da "*.youtube. ", kuma an aika ta hanyar HTTPS. A cikin yanayin ɓoye-ɓoye, ba a cika babban kan ba, amma idan ingantaccen bayanin martabar Google na mai amfani ya canza zuwa bayanin martabar baƙo ko lokacin da ake kiran aikin share bayanai, ba a sake saita taken kuma ana ci gaba da aikawa da ƙima ɗaya.
An bayyana taken don ƙunshe da babu wani bayani da za a iya gane kansa kuma yana bayyana kawai matsayin shigarwar Chrome da fa'idodin gwaji masu aiki. Idan mai amfani da na'ura mai ba da hanya tsakanin hanyoyin sadarwa da kuma rahoton faɗuwa an kashe su a cikin saituna, samar da tushen ƙimar taken X-Client-Data yana amfani da rago 13 na entropy kawai (haɗin 8000 daban-daban), wanda bai isa ba don ganowa.
Ganin cewa taken kuma yana ɓoye wasu saitunan tsarin da sigogi, a ƙarshe abubuwan da ke cikin X-Client-Data sun dace sosai azaman ƙarin tushen bayanai don gano mai amfani kai tsaye a cikin ɗan gajeren lokaci (ana kunna ƙarfin gwaji da naƙasa akan lokaci, wanda ke haifar da canjin ƙima na lokaci-lokaci a cikin bayanan-Client-X).
Koyaya, ban da entropy na farko, lokacin samar da ƙimar X-Client-Data, akwai kuma jerin iri da sabobin Google suka dawo kuma ya danganta da ƙasar, adireshin IP da sauran sharuɗɗan da Google ke ɗauka suna da mahimmanci (misali, babu abin da ke hanawa. ku daga dawo da babban jerin bazuwar , wanda zai zama ainihin mai ganowa).
Bugu da kari, dubawa ta amfani da abin rufe fuska na Google lokacin aika bayanan-Client-X baya keɓance yanayin da maharin zai iya yin rajistar yanki kamar "youtube.xn--55qx5d" kuma ya fara tattara abubuwan ganowa.
source: budenet.ru