Hacker News new | past | comments | ask | show | jobs | submit login

This to me is intrusive and creepy. Glad I can block Hotjar easily and do not wish to have to check for self-hosted scripts doing it.



Not sure you can block self hosted Hotjar type scripts if I just embed them into the JS bundle itself for the site. You could try disabling JS but most people won't, and I could also disallow text being rendered if there's no JS. Not that I would do any of this of course, since I like no JS sites as well as SEO for my blog posts, but it's a hypothetical of what one could potentially do.


Blocking XHR requests by default would probably be a good start before 1st party JS. I already default to blocking 3rd party content.


That's true, depends on the kind of blog though, and whether it's a SPA or not.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: