alcinnz
alcinnz boosted

After reading (and implementing) "Protecting against CSRF in 2025" (see link below), I'm wondering now whether cookies should still have any SameSite attribute at all, or whether it would be better to completely drop it and keep whatever is the browser's default for (session) cookies handling?

https://words.filippo.io/csrf/

#web #security #cookies #csrf

After reading (and implementing) "Protecting against CSRF in 2025" (see link below), I'm wondering now whether cookies should still have any SameSite attribute at all, or whether it would be better to completely drop it and keep whatever is the browser's default for (session) cookies handling?

https://words.filippo.io/csrf/

#web #security #cookies #csrf

alcinnz
alcinnz boosted

How educated are the general public on the dangers of billionaires tracking them?

Awful! 55% of visitors to a busy website that offers Accept All or Essential Only click Accept All!!

Don't do this!

#SurevillanceCapitalism #cookies #WebDesign

@Crell @alina It's not an ignorant rant.
  • I've made peace with it, just as I've made peace never touching #Windows ever again.

You may call me an "opinionated asshole" from your point of view, but I sincerely wish I was wrong.

The real cost doesn't come through to #consoomers except as #ReducedLifecycle due to #bloat.

But then again what do I expect from a coward doing the reply & block - combo, because confronting the fact that people got burned out by shit like PHP would mean admitting mistakes, and we can't have that as a fanboy.

#EOD #thxbye #next

How educated are the general public on the dangers of billionaires tracking them?

Awful! 55% of visitors to a busy website that offers Accept All or Essential Only click Accept All!!

Don't do this!

#SurevillanceCapitalism #cookies #WebDesign