Lapho kuxoxwa I-Google ukuze ihlanganise okuqukethwe kwesihloko se-HTTP User-Agent, unjiniyela wesiphequluli se-Kiwi kusihloko se-HTTP esithi "X-Client-Data" esisele ku-Chrome, okungenzeka I-General Data Protection Regulation isebenza e-European Union (). Phakathi Ububili bezenzo ze-Google buphinde bagxekwa, ngakolunye uhlangothi ukuvimba ukuhlonza okufihliwe nokulandelela izenzo zabasebenzisi, kodwa ngakolunye uhlangothi, akusheshi ukususa ukusekelwa kwesihloko se-X-Client-Data ku-Chrome, esingasetshenziswa ukukhomba izimo zesiphequluli lapho ufinyelela izinsiza ze-Google.
Isihloko se-X-Client-Data asikona ukusebenza okufihliwe futhi nokuziphatha kwayo embhalweni. Nge-X-Client-Data, i-Google ithola idatha ngomsebenzi wezici ezithile zokuhlola ku-Chrome ngokuphathelene namasayithi ayo (isibonelo, phakathi nokuhlolwa, i-Google ingakwazi ukusebenzisa izici ezithile zokuhlola ku-YouTube uma zisekelwa isiphequluli noma izame hlanganisa izinkinga ngokuvula imisebenzi yokuhlola).
unhlokweni kuphela ngezicelo eziya kumasayithi e-Google afana namamaski β*.doubleclick.netβ, β*.googlesyndication.comβ, βwww.googleadservices.comβ, β*.google.>" kanye "*.youtube. ", futhi ithunyelwe nge-HTTPS. Kumodi ye-incognito, unhlokweni awugcwaliswanga, kodwa uma iphrofayela ye-Google eqinisekisiwe yomsebenzisi ishintsha ibe iphrofayela yesivakashi noma lapho kwenziwa umsebenzi wokusula idatha, unhlokweni awusethwa kabusha futhi uyaqhubeka nokuthunyelwa ngenani elifanayo.
Unhlokweni kuthiwa awuqukethe ulwazi lomuntu siqu olungakhonjwa futhi uchaza kuphela isimo sokufakwa kwe-Chrome nezici zokuhlola ezisebenzayo. Uma i-telemetry yokusetshenziswa kwesiphequluli nokubikwa kokusaphazeka kukhutshaziwe kuzilungiselelo, ukukhiqiza inani lesihloko le-X-Client-Data eliyisisekelo kusebenzisa amabhithi angu-13 kuphela e-entropy (izinhlanganisela ezihlukene ezingu-8000), anele ukuhlonza.
Uma kucatshangelwa ukuthi unhlokweni uphinda ubhale ezinye izilungiselelo zesistimu namapharamitha, ekugcineni okuqukethwe kwe-X-Client-Data kufanelekile njengomthombo owengeziwe wedatha yokuhlonza umsebenzisi ongaqondile ngesikhathi esifushane (amakhono okuhlola anikwe amandla futhi akhutshaziwe ngokuhamba kwesikhathi, okuholela ekushintsheni kwenani ngezikhathi ezithile ku-X-Client-Data).
Kodwa-ke, ngaphezu kwe-entropy yokuqala, lapho kukhiqizwa inani le-X-Client-Data, kukhona nokulandelana kwembewu okubuyiswe amaseva e-Google futhi kuye ngezwe, ikheli le-IP nezinye izindlela i-Google ezibona zibalulekile (ngokwesibonelo, akukho lutho oluvimbelayo. wena ekubuyiseleni ukulandelana okukhulu okungahleliwe , okuzoba yikhombi ngqo).
Ngaphezu kwalokho, ukuhlola usebenzisa imaski yesizinda se-Google lapho uthumela i-X-Client-Data akubandakanyi izimo lapho umhlaseli engabhalisa khona isizinda esifana nokuthi βyoutube.xn--55qx5dβ futhi aqale ukuqoqa izihlonzi.
Source: opennet.ru