Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Instead of just giving their word that they won’t log IPs, I t’d be nicer if they used a privacy preserving revocation lookup scheme like CRLite https://blog.mozilla.org/security/2020/01/09/crlite-part-1-a...


Ironically, CRLite seems similar to the approach Apple was (is?) forcing for "content blocker" extensions to Safari--pre-supplying a canned declarative blacklist to Safari, instead of Safari allowing extensions algorithmic access to the current URL.* Their motivation was supposedly to increase user privacy. Funny how they didn't think of that in the CRL and app-blacklist cases. Perhaps they were worried the locally-cached lists themselves would be subject to attack?

*In my opinion, in the content-blocker instance the result is a much poorer user experience (ad-blocking effectiveness, flexibility) when compared with e.g. uBlock Origin, and one of the reasons I continue to use Firefox instead.




Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: