Google ea sepheo nakong ea lilemo tse peli tse tlang ho emisa ts'ehetso ka botlalo ho Chrome bakeng sa li-cookies tsa motho oa boraro tse pepesitsoeng ha u fihlella libaka tse ling ntle le sebaka sa leqephe la hajoale. Li-cookies tse joalo li sebelisetsoa ho lekola metsamao ea basebelisi lipakeng tsa liwebsaete ka khoutu ea marang-rang a papatso, li-widget tsa marang-rang a sechaba le litsamaiso tsa tlhahlobo ea webo.
Joaloka maobane sepheo sa ho kopanya sehlooho sa Moemeli-Mosebelisi, ho hana Li-cookie tsa motho oa boraro ho ntse ho tsoela pele e le karolo ea morero. e reretsoeng ho finyella ho sekisetsa pakeng tsa tlhokahalo ea basebelisi ho boloka boinotši le takatso ea marang-rang a papatso le libaka tsa marang-rang ho latela likhetho tsa baeti. Ho fihlela qetellong ea selemo sena ka mokhoa e lebelletsoeng ho kenyelletsoa ho sebatli ho lekanya liphetoho le ho etsa lipapatso tsa hau ntle le tšebeliso ea li-cookies tsa batho ba bang.
Ho tseba sehlopha sa lithahasello tsa basebelisi ntle le boitsebahatso ba motho le ntle le ho bua ka nalane ea ho etela libaka tse ikhethileng, marang-rang a papatso a khothaletsoa ho sebelisa API. , ho lekola tšebetso ea mosebelisi kamora ho fetohela ho lipapatso - API , le ho arola basebelisi ntle le ho sebelisa li-identifiers tsa libaka tse fapaneng - API . Nts'etsopele ea lintlha tse amanang le pontšo ea papatso e lebisitsoeng
ntle le ho tlola lekunutu e entsoeng ke W3C.
Hajoale, molemong oa ho itšireletsa khahlanong le phetiso ea li-cookies nakong ea e sebelisa tšobotsi ea SameSite e boletsoeng sehloohong sa Set-Cookie, eo kaha Chrome 76 e behiloe ho "SameSite=Lax" ka ho feletseng, e thibela ho romelloa ha Li-cookie bakeng sa ho kenngoa ho tsoa libakeng tsa batho ba bang, empa libaka li ka tlōla thibelo ka ho beha Cookie ho SameSite=Ha ho letho. Sebopeho sa SameSite se ka nka litekanyetso tse peli, 'strict' kapa 'lax'. Ka mokhoa o "thata", li-cookie li thibetsoe ho romelloa bakeng sa kopo ea mofuta ofe kapa ofe. Ka mokhoa oa 'lax', ho na le lithibelo tse iketlileng 'me phetisetso ea li-cookie e koetsoe bakeng sa likopo tsa libaka tse fapaneng, joalo ka ho kopa setšoantšo kapa ho jarolla litaba ka iframe.
Chrome 80, e reriloeng ka Feb. 4, e tla ba le thibelo e matla haholoanyane e thibelang li-cookie tsa motho oa boraro hore li se ke tsa sebetsoa bakeng sa likopo tseo e seng tsa HTTPS (ka tšobotsi ea SameSite=None, Li-cookie li ka behoa feela ka mokhoa o Sireletsehileng). Ntle le moo, mosebetsi o ntse o tsoela pele mabapi le ts'ebetsong ea lisebelisoa tsa ho khetholla le ho sireletsa khahlanong le ts'ebeliso ea mekhoa ea bypass ea ho latela le boitsebahatso bo patiloeng ("browser fingerprinting").
Hopola hore ho Firefox, ho tloha ha e lokolloa , Li-cookies tsa litsamaiso tsohle tsa batho ba boraro li hlokomolohuoa ka ho sa feleng. Google e nka hore thibelo ena e nepahetse, empa e hloka ho lokisoa ha tikoloho ea Webo le ho fana ka li-API tse ling ho etsa mesebetsi eo li-cookie tsa motho oa boraro li neng li sebelisoa pele, ntle le ho tlola boinotši le ntle le ho nyenyefatsa mekhoa ea ho etsa chelete ea libaka tse tšehelitsoeng ka lichelete tsa lipapatso. . Ho arabela ho thibela li-cookie ntle le ho fana ka mokhoa o mong, marang-rang a lipapatso ha aa ka a emisa ho latela, empa a ile a fallela mekhoeng e tsoetseng pele e thehiloeng ho boitsebiso bo patiloeng ba mosebedisi (ho hatisa menoana) kapa bakeng sa tracker ea li-subdomain tsa hotele sebakeng sa sebaka seo papatso e bonts'itsoeng ho sona.
Source: opennet.ru