Debian discovers more than 100,000 potential privacy breaches in documentation

[slashdotaccount]

http://lintian.debian.org/tags/privacy-breach-donation.html http://lintian.debian.org/tags/privacy-breach-facebook.html http://lintian.debian.org/tags/privacy-breach-generic.html http://lintian.debian.org/tags/privacy-breach-google-adsense.html http://lintian.debian.org/tags/privacy-breach-google-cse.html http://lintian.debian.org/tags/privacy-breach-logo.html http://lintian.debian.org/tags/privacy-breach-piwik.html http://lintian.debian.org/tags/privacy-breach-statistics-website.html

[mjn]

Very nice initiative I hadn't run across before. Some of these are likely to be false positives, but it's definitely a good move to mass-check for this kind of thing— the Debian archive should be trustworthy, not something like the iOS or Google Play stores where you can assume the average app is piled with phone-home spyware.

[bjourne]

Lintian works using a set of heuristic rules which sometimes generates false positives. That is certainly the case here. Nothing to get alarmed about.

[slashdotaccount]

I expect most of these are legit. A grep for src=['"]https?:// on HTML files is hardly likely to generate false positives.