Delivery-Date: Sun, 24 Apr 2016 18:34:30 -0400
Return-Path: <tor-talk-bounces@lists.torproject.org>
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on moria.seul.org
X-Spam-Level: 
X-Spam-Status: No, score=-3.7 required=5.0 tests=BAYES_00,FREEMAIL_FROM,
	FROM_LOCAL_NOVOWEL,RCVD_IN_DNSWL_MED,T_RP_MATCHES_RCVD autolearn=ham
	version=3.3.1
X-Original-To: archiver@seul.org
Delivered-To: archiver@seul.org
Received: from eugeni.torproject.org (eugeni.torproject.org [38.229.72.13])
	(using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by khazad-dum.seul.org (Postfix) with ESMTPS id 2861A1E00AF;
	Sun, 24 Apr 2016 18:34:28 -0400 (EDT)
Received: from eugeni.torproject.org (localhost [127.0.0.1])
	by eugeni.torproject.org (Postfix) with ESMTP id 9AB4E3A40C;
	Sun, 24 Apr 2016 22:34:21 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by eugeni.torproject.org (Postfix) with ESMTP id 152C83A40A
 for <tor-talk@lists.torproject.org>; Sun, 24 Apr 2016 22:34:18 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at 
Received: from eugeni.torproject.org ([127.0.0.1])
 by localhost (eugeni.torproject.org [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id 1GPg-iPV6OGn for <tor-talk@lists.torproject.org>;
 Sun, 24 Apr 2016 22:34:18 +0000 (UTC)
Received: from mout.gmx.net (mout.gmx.net [212.227.17.22])
 (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by eugeni.torproject.org (Postfix) with ESMTPS id 96E323A406
 for <tor-talk@lists.torproject.org>; Sun, 24 Apr 2016 22:34:17 +0000 (UTC)
Received: from [192.168.2.62] ([99.190.181.188]) by mail.gmx.com (mrgmx101)
 with ESMTPSA (Nemesis) id 0MY3Ho-1bGRQj0zAG-00UuKR for
 <tor-talk@lists.torproject.org>; Mon, 25 Apr 2016 00:34:13 +0200
To: tor-talk@lists.torproject.org
References: <1461417342.6149.17.camel@pentium.freedom.box>
 <571BC6FE.5080205@gmx.com> <1461441264.6149.45.camel@pentium.freedom.box>
 <571BF566.4010200@gmx.com>
 <CABMkiz6J4=4Day4EQ=X045EBa5O0YKxkxgZHA0wrMHKg430f3A@mail.gmail.com>
From: Joe Btfsplk <joebtfsplk@gmx.com>
Message-ID: <571D49DA.2090904@gmx.com>
Date: Sun, 24 Apr 2016 17:34:02 -0500
User-Agent: Mozilla/5.0 (Windows NT 6.0; WOW64; rv:38.0) Gecko/20100101
 Thunderbird/38.7.2
MIME-Version: 1.0
In-Reply-To: <CABMkiz6J4=4Day4EQ=X045EBa5O0YKxkxgZHA0wrMHKg430f3A@mail.gmail.com>
X-Provags-ID: V03:K0:hropi6i6iVD/p0dVIEept1kXJWDJx0x3akX4re9tik+VkZ962nm
 jT9sPrw1y1Hix03iIAWtemNqnEtKN4R/rG+QkPM4tu+hJqVmgWwA4vWPdKRqZpCOTNBXxwS
 E3OD0jS8bnOCzVCw3nXPBIjLa8dPMneZRCSjnyxMeCFbtIMQdqQWUrc3PGFx/4ZnEuzdZlh
 CRrhHSR3M2vIyqNH4CzDQ==
X-UI-Out-Filterresults: notjunk:1;V01:K0:ZX4JXje6iWA=:Ci97FAjaqCpCsF84odIsz/
 L2sFvxd29X6gIe7aVOXeI94s2/SgcMsJEMuqUHElTbfcIfLt+YEP7Thw2JNF7ZteH/mXJGU4U
 a2t2s7tEnUBnBXX8lYy4Yt7jLbRdX3Prd0sNedeyiA9uxd3YlDGMf+l6nOK8l7n7/H6pwuNuP
 Kjv2luy+EmQsw/7/wyk9hkI0Yspg4qIXwmp/67gUWNWsnfcjioioL4DRTVYAPIC8RiAq67oui
 QU4deFjP1WM7zfFRBRut0CNa8tfRv+xaz4m+FsIC/go7uRCYv3V+iIOqV4Qw3ZHRTVYZENwbf
 mz2NAH2CkG2iS8QC/m1MNQEweR3+kOf5J2SFTXfRfnfAvnlMz6doRi7sEdBJhCc19w2G7ZLbU
 mbdj8CzdE++/oPHZtOAy7Y9oTk9cyQfeA2WNM+mShiV9RZBtSk5wvnfkxKWy+hOa7Lc6V6YhR
 JKiGwmn8kPFXV2wPUScZPp2v46WlNGiBRv1smUyk/dJOpMNV9pRf14i/cr76Y3zf74r0ThgLB
 SiHEuyWhXag1ArbHdggnfuQCIVA71aRbL1n4aiJ6svohgyLPTMFLE0oshAZDExhibHIQ/UBeO
 r9hOIceppZWKqgUFHyH9g+tCdZndTpBmp9e65zC+aV4N+TopzZy+J3CXm0ecFkgMjQ6G/tLYo
 K46b1gVRBne6xDuYmeb2lgF1txBxIdXPYoJ0Xz6PLtaiASASEx2ilEmeZ6otHGnrBxq5gOYrt
 MwguCpliuoJgMfs1vufHt9xblI6l0zXzVEfNn4fxNRQOK4jBuGbGnDJOlo1ETdVXpl5/TEt85
 mar9zYF
Subject: Re: [tor-talk] 12.7 percent of the domains I visit are intercepted
 by CloudFlare
X-BeenThere: tor-talk@lists.torproject.org
X-Mailman-Version: 2.1.15
Precedence: list
Reply-To: tor-talk@lists.torproject.org
List-Id: "all discussion about theory, design,
 and development of Onion Routing" <tor-talk.lists.torproject.org>
List-Unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
List-Archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-Post: <mailto:tor-talk@lists.torproject.org>
List-Help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-Subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, 
 <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"; Format="flowed"
Errors-To: tor-talk-bounces@lists.torproject.org
Sender: "tor-talk" <tor-talk-bounces@lists.torproject.org>

On 4/23/2016 5:44 PM, Ben Tasker wrote:
>> My guess is it is set by abc.com, but the " name" of the cookie involves
> "cloudflare?"
>
> Keep in mind that Cloudflare is essentially a glorified bunch of reverse
> proxies. Because Cloudflare terminates your TCP connection to abc.com,
> they're in a position to set cookies _as_ abc.com. So I'd fully expect the
> site name to be abc.com, though it's naughty of them. The browser won't
> consider it thirdparty, because it isn't - it was set by abc.com. This does
> seem to be the case (picking a site that uses cloudflare randomly from a
> list):
>
> $ GET -Ssed  http://absolutewealth.com | grep Set-Co
> Set-Cookie: __cfduid=dfcadd8517f9edb7f6fd202c7152da9861461451390;
> expires=Sun, 23-Apr-17 22:43:10 GMT; path=/; domain=.absolutewealth.com;
> HttpOnly
>
>
> What it does mean, though, is when you visit xyz.com, the browser won't
> present the cookie set earlier by abc.com. So it's use in tracking across
> domains is incredibly limited. Pretty useful for tracking return visits to
> abc.com (and it's subdomains) though
>
> Ben
>
I know little about Cloudflare's actual operation.  What's the 
implication / danger of one entity setting  cookies on multiple or 
1000's of  sites?
I've also read (true or not) that lots of sites sell customer / member 
data on cookies & IPa's to tracking companies or advertisers.  Maybe not 
names or credit cards, but...

Years ago, lots of sites didn't require cookies just to browse.  Now 
many do - just to take a peek, or it won't work right.  Maybe that's 
because the cookies can be turned into cash?
I'm startin me some websites.  Yee-haw!


-- 
tor-talk mailing list - tor-talk@lists.torproject.org
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

