Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
BeefWellington
on March 21, 2023
|
parent
|
context
|
favorite
| on:
Web fingerprinting is worse than I thought
WGET can be pretty trivially told to send custom headers.
no_time
on March 21, 2023
|
next
[–]
Try to do that to a site with CF bot protection cranked up... Not happening without a custom build/custom ssl proxy that mimics the SSL fingerprint of Chrome.
harry8
on March 21, 2023
|
parent
|
next
[–]
CF blocks you hard simply for enabling "do not track" in settings. The discussion about how awful they are needs to be had.
mananaysiempre
on March 21, 2023
|
parent
|
prev
|
next
[–]
I haven’t seen a custom build of Wget, but for Curl there is curl-impersonate[1].
[1]
https://github.com/lwthiker/curl-impersonate
bigfudge
on March 21, 2023
|
prev
[–]
It would be a lot of work to make it mimic a common profile though.
justinclift
on March 21, 2023
|
parent
[–]
That work was probably done once, years ago. Might need a few string tweaks every few years, which could be automated.
bigfudge
on March 21, 2023
|
root
|
parent
[–]
No, because any “RMS” set of headers would only be shared by the small number of nerds who care, fingerprinting us more accurately again.
steve1977
on March 21, 2023
|
root
|
parent
[–]
Just setup a honey pot and use headers from there ;)
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
