Re: [openstreetmap-website] Remove default enabling of gravatar… (#1036)
Simon Poole
notifications at github.com
Thu Aug 20 11:02:32 UTC 2015
@tomhughes the PR reduces exposure of the hash of the e-mail address for users that don't have a gravatar to third parties to zero, it further reduces the ability of automattic to fingerprint new OSM users to zero (because the check is done from the frontends), it further limits the ability of automattic to fingerprint and track third parties to those viewing the profile of a user that actually -has- a gravatar (instead of all and every profile). We still expose the e-mail address of new signups to automattic once, but that is the compromise to make the whole thing user firendly.
It simply does what should have been done from the beginning.
WRT verbosity: I didn't claim anything else, specifically as I mentioned it would be nice to give the user feedback on what has actually been set/changed and thats why I left some code to be able to do that. You will unlikely be able to get around the resuce though.
---
Reply to this email directly or view it on GitHub:
https://github.com/openstreetmap/openstreetmap-website/pull/1036#issuecomment-132974574
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openstreetmap.org/pipermail/rails-dev/attachments/20150820/07878dd6/attachment.html>
More information about the rails-dev
mailing list