I think the next step is we force the JS through a halting verifier a-la BPF and fake all the fingerprinting API's. The browser vendors are not going to do it, and they cant be trusted anyway.
For IBM owned* 9.0.0.0/8 which has 16,777,214 (and when I worked there twenty years ago there were a few hundred other ranges that they owned/acquired).
10 comments
[ 2.4 ms ] story [ 31.6 ms ] threadPeering database shows a number of others though (excludes google fiber and some other properties):
https://www.peeringdb.com/net/433
Hard part with ASNs is keeping track across legal business entities of what we consider a single company.
I'm reading, what's the justification for Javascript to be running?
And stop sending the user-agent.
* Turns out they freed this up a while back (good!): https://en.wikipedia.org/wiki/List_of_assigned_/8_IPv4_addre...