Hacker News new | past | comments | ask | show | jobs | submit login

It’s high time browsers stop supporting :visited on cross-domain links by default.

No need to remove the feature completely, just not applying :visited on cross-domain links would fix privacy leak, while keeping most legit uses of :visited working fine.




I really hope not. If I'm repeatedly googling a related set of queries, knowing which pages I've already looked at is hugely helpful.


It's been years that Google search result pages do not link directly to content, but goes through a google.com "redirect" url, so this use case could still work.


sounds like that's an obvious loophole to get around the protection then if they did allow same domain only

edit: no I'm wrong, it's early here and I've not had coffee


its also useful on hacker news to see what i already visited especially when headlines get changed.


Something similar to browser fingerprints?




Join us for AI Startup School this June 16-17 in San Francisco!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: