640 comments

[ 3.1 ms ] story [ 400 ms ] thread
Google consumer software is almost universally an active full frontal attack on you. Stop using it.
This sounded harder to do than it was in my experience. I figured the alternatives to their products would be less polished. But I switched to Firefox and honestly prefer it to Chrome. (They allow extensions on Android, meaning adblock, which is a game changer for me.) DDG for search is great. Protonmail for email is fine, etc. There isn't much in the Google ecosystem that I miss tbh.
The only thing I have problems finding something that works is Google maps. As an Android user there are a few different options but Google did make a damn good maps app.
For me is google docs and maps.
If you need online office and maps then there's Microsoft Office and Bing Maps. Office is an excellent product, well worth the few bucks a month.

AFAIK, Office is fairly good about privacy.

Chromium too?
Doesn't look like it from my testing of version 81.0.4036.0. But in normal Chrome I do see it.
Can you test it in Microsoft's new Edge browser based on Chromium? I'm very curious about that. (I don't know how to test such a thing myself, sorry :S)
I didn't see the x-client-header in the Edge insider browser when accessing YouTube.
I don't see it in Brave either
Not endorsing this, but according to https://www.google.com/chrome/privacy/whitepaper.html#variat...

> We want to build features that users want, so a subset of users may get a sneak peek at new functionality being tested before it’s launched to the world at large. A list of field trials that are currently active on your installation of Chrome will be included in all requests sent to Google. This Chrome-Variations header (X-Client-Data) will not contain any personally identifiable information, and will only describe the state of the installation of Chrome itself, including active variations, as well as server-side experiments that may affect the installation.

> The variations active for a given installation are determined by a seed number which is randomly selected on first run. If usage statistics and crash reports are disabled, this number is chosen between 0 and 7999 (13 bits of entropy). If you would like to reset your variations seed, run Chrome with the command line flag “--reset-variation-state”. Experiments may be further limited by country (determined by your IP address), operating system, Chrome version and other parameters.

They key in the wording is: "If usage statistics and crash reports are disabled, this number is chosen between 0 and 7999 (13 bits of entropy)."

"If, statistics are disabled."

In chrome://version you can see the active variations. It seems to be pretty big numbers to be significant, and so far haven't observed duplicates.

Since this header is generated server-side, you have only to believe I guess ? Plus why Doubleclick would need it :)

That's basically saying "even if you opt out, we'll still try to track you, just not as much." Very unpleasant, but then again I'm not surprised to see this attitude from Google.
Combine a few pieces of information like this and you get a decisively unique fingerprint.

For example identifying individuals at work behind the same ip address.

Is there a reason for only sending this header to Google web properties and not all domains?
It is an abuse of Chrome's position in the marketplace. Google is using their powerful position to give themselves tracking capabilities that other online players can't access. It is a major competitive advantage for Google.
can't alternate browser makers who base on chromium simply disable that portion? like, I expect identifying users was a key business concern in moving Edge to Chromium. Is there something (other than work) preventing them from making it so it'll report back to microsoft-owned domains instead?
I'm using Vivaldi on MacOS and it doesn't send this header. I'm sure others like Brave don't send it either.
Err yeah, because it adds loads of data that can be used to track you.
Is it because Google's webapps will have their own a/b tests which use experimental features only available in Chrome perhaps?

I mean personally I think they should do client-side feature detection and be back to being standards compliant and not creepy. The only reason why I'd consider such a flag is because they optimize the payload server-side to return a certain a/b test, but even with that they could do the default version first, do feature detection, and then set a session cookie for that domain only that loads the a/b test.

My other Thought was that they test a feature that is implemented across Google's properties, e.g. something having to do with their account management.

Isn't this what cookies are for?
Cross-site cookies are soon getting blocked by Chrome starting Chrome 80 if I'm right (whereas this header isn't)
So they build a personal back door to a feature that they've chosen to remove for everyone else? Because of it's potential for abuse, yet the very same company is somehow abusing it in a way more sinister way. Antitrust can't come soon enough.
Chrome will only block cross-site cookies that don't use HTTPS and the SameSite=Lax flag. It's easy for trackers to user HTTPS and SameSite=Lax. This Chrome change is mostly intended to protect against Cross Site Request Forgery (CSRF) attacks, not to block trackers.
I can think of a hundreds reasons why they do this. It doesn't make it right in any of those.
How many people will actually run chrome with a cli flag? It would be pretty impressive if every single person reading this thread did, but it probably won't even be that. Most people don't even touch their settings.

13 bits of entropy is far from a uuid (but to get it to that you need to disable some more settings, which again very few people do), but it's still plenty good enough to disambiguate individuals over time.

And Google is certainly in a position to disambiguate that uuid to an individual as soon as they login to gmail or any other Google property!
This is impressive doublespeak.

> This ... header ... will not contain any personally identifiable information

> a seed number which is randomly selected on first run ... chosen between 0 and 7999 (13 bits of entropy)

They are not including any PII... while creating a new identifier for each installation. 13 bits of entropy probably isn't a unique identifier iff you only look at that header in isolation. Combined with at least 24 additional bits[1] of entropy from the IPv4 Source Address field Google receives >=37 bits of entropy, which is almost certainly a unique ID for the browser. Linking that browser ID to a personal account is trivial as soon as someone logs in to any Google service.

> Experiments may be further limited by country (determined by your IP address)

They even admit to inspecting the IP address...

> operating system, Chrome version and other parameters.

...and many additional sources of entropy.

[1] why 24 bits instead of 32? The LSB of the address might be zeroed if the packet is affected by Googles faux-"anonymization" feature ( https://news.ycombinator.com/item?id=15167059 )

Don't forget that just about any registration requires recaptcha these days
>Linking that browser ID to a personal account is trivial as soon as someone logs in to any Google service.

Wat? You mean to tell me they can identify you if you log into their service?

Am I missing something here? Who cares?

I care. I care that I even if I log off, even if I use a vpn, even if I go into incognito mode, they still can associate my requests with the account I initially logged in.
I mean, if you don't want Google to track you, then you probably shouldn't use their browser...
The problem is any website can do that. Incognito-bypassing fingerprinting is difficult to prevent, unless you use something like uMatrix to disallow JavaScript from everything but a few select domains.

This is a collection of random-ish unique-ish attributes. Any collection of such things can be used to track you, like installed fonts, installed extensions, etc. If this were just a set of meaningless encoded random numbers, then it's essentially a kind of cookie, but that's not what it is. This is (claimed to be) a collection of information that's useful and possibly needed by some backends when testing new Chrome features. It tells servers what your Chrome browser supports. The information is probably similar to "optimizeytvids=1,betajsparser=1".

So, the only question is if Google is actually using this to help fingerprint users in addition to the pragmatic use case. It certainly could be used that way, and it's possible they are, but they have so many other ways of doing that with much higher fidelity / entropy if they want to. If this were intended as a sneaky undisclosed fingerprinting technique, I think they would've ensured it was actually 100% unique per installation, with a state space in the trillions, rather than 8000.

Yes, this could be so sneaky that they took this into consideration and made it low-entropy to create plausible deniability while still being able to increase entropy when doing composite fingerprinting, but I think it's pretty unlikely. Also, 99% of the time they could probably just use use Google Analytics and Google login cookies to do this anyway.

Maybe one actually useful non-advertising usage could be reCAPTCHA ? If you read carefully, it says nowhere than there is the limit to 8000. There is this limit of 8000 only if you disable usage statistics / crash reports.
Sorry about that, too late to edit it now. That is an important detail. If there are 32 or more different feature flags, then that's 4 billion unique states, which would be an effective fingerprint.

I still think it's pretty unlikely they're using it in that way or would in the future, and I think Google fuzzing this for those who opt out of telemetry is probably a signal of good faith in this instance. They realize the privacy implications and provide a way to disengage, even if they don't intend to abuse the information.

But of course the potential for abuse always remains. And the potential for (arguably) non-abusive tracking, like the possibility of it being used for bot detection by reCAPTCHA, as you say.

reCAPTCHA is the most abusive type of tracking. Google simply denys you usage of captcha if you do not give them enough personal information. It doesn't matter if you enter the captcha correctly 20 times. It won't let you in.
reCAPTCHA increasingly doesn't even give me a captcha. Instead, they simply deny me from even trying; They send this instead of the challenge:

  <div>
    <noscript>
      Please enable JavaScript to
      get a reCAPTCHA challenge.<br>
    </noscript>
    <div class="if-js-enabled">
      Please upgrade to a
      <a href="[1]">supported browser</a>
      to get a reCAPTCHA challenge.
    </div>
    <br><br>
    <a href="[2]" target="_blank">
    Why is this happening to me?</a>
  </div>
They probably don't like my non-standard user agent string and they definitely don't like that I block a lot of their spyware, but reCAPTCHA used to work properly for many years with the same/similar browser configuration.

[1] https://support.google.com/recaptcha/?hl=en#6223828

[2] https://support.google.com/recaptcha#6262736

This is part of the bot detection, though. It's probably not "not enough personal information", it's "this truly seems like it is unlikely to be a legitimate device/person", due to the huge datasets they're working with. Same with Cloudflare and Tor. Once you operate a security service anywhere near that scale, you start to understand there are inherent challenges and tradeoffs like these,
(comment deleted)
I believe someone else in the thread stated it's cleared for incognito, don't remember if they meant it's not sent or that it's a new value.
he means they can continue to identify you after you log off
I think the argument is they have other methods like cookies they could also use. The fact you trust them not to use those methods extends to this form of tracking.
If you browse the internet, they could know what websites are visited by the same person, but not who they are exactly.

If you visit a load of websites, then also log into google, they connect the two and they know what websites were visited by you specifically.

Normally you would only expect to be identified and tracked when using Google services when logged in. The significance of this post is that they would be able to identify and track you across all your usage of that browser installation regardless of if you've logged out, or say in an incognito window.
Ah. So I was missing something. Thanks for clarifying. That is alarming.
Yes you are missing something important. Once they've tied the browser ID to your personal account they can track you across all google properties, even the ones that you didn't log into.
I still don't understand. When I log into gmail, it logs me into all Google services. If I am worried about being tracked, surely my first mistake is logging in in the first place? Or visiting in the first place? After all, even if I click "log out," I'm only trusting Google that they unlinked the browser state from the account. If I trust them to do that, I don't see why I shouldn't trust them to ignore this experiment flag from Chrome, or at least not use it for tracking. If I don't trust them to avoid using the experiment state, I don't really see how you can trust them for anything.

Anyway, if you're not building Chrome from source, then you have to trust that they aren't putting anything bad in it. And if you are building chrome from source, you can observe that they only send this experiment ID to certain domains, and they already know who you are on those domains anyway.

>If I am worried about being tracked, surely my first mistake is logging in in the first place?

Good luck completing a google captcha without a Google account or using Chrome.

Unless you're running some extension that emulates FF's container tabs or something, it logs you into all G services. It would matter, though, if this header is still sent in incognito sessions.
> > Experiments may be further limited by country (determined by your IP address)

> They even admit to inspecting the IP address...

I don't think that sentence admits what you say? Chrome could be determining which experiments to run client-side.

Of course, when you visit a Google property, they needs must inspect your IP address to send a response to you, at a minimum. That goes for any site you might choose to visit. The existence of sufficient entropy to personally identify a site visitor is not a state secret. They do not need this chrome experiment seed to identify you, if that's a goal.

Yeah, it's not a "state secret" but it's not common knowledge either. Their privacy policy says that specific header can't be used to identify you, but fails to mention it can be combined with other information to make browser fingerprinting trivial.

If you don't know how all this works, which is true for most human beings, their privacy policy might give you the wrong impression.

> says that specific header can't be used to identify you

That's not what it says. It says the header won't contain PII, which is true. It can be linked to PII, but so can literally every bit of information you send to Google while logged into or otherwise using their services. A disclaimer to this effect would not have any purpose.

If I log in to my Google account once, they can associate that browser id with my account. Even if I log out, clear my cookies (and probably use the incognito mode), Google will be able to identify and follow me all over the Web.

I don't know about your PII thing, but it's personal data under the GDPR.

AIUI GDPR restricts the handling and use of PII, not its existence. So it's PII under GDPR. Is Google misusing it? If so, that's an issue. If not, then it's kinda pointless to observe that it's PII under some possibly distinct legal definition than the one Google is using in its privacy policy.
You can't even login into gmail, at least from firefox in incognito mode.
It works for me, at least with 2FA enabled.
That's the whole point. Using any Google service means they can easily personally identify you, that's what the privacy policy should explain.

That's their policy towards privacy, you don't have any. For some reason I can't fathom, you claim mentioning this in their privacy policy "would not have any purpose". Instead of honesty, their privacy policy is a wonder of public relations where it seems like they care deeply about protecting your privacy.

We disagree about the purpose of privacy policies. I believe that privacy policies should describe how data will be used, not how it could be used. I just don't think a policy describing how data could be used is very useful, because it's going to be the same for all services.

Under this formulation, Google's policy is (presumably, lacking any data to the contrary) honest with respect to this value.

> I believe that privacy policies should describe how data will be used, not how it could be used.

This is key. If you subscribe to the "how it could be used" version, then even say possessing an android phone would be a violation of the privacy policy. Which is absurd.

This is a fair distinction, though it does not include the option of discussing how the data _won’t_ be used.
Per your observation, I would argue that the intent of the privacy policy as quoted above is pretty clear. When the policy says that the identifier doesn't contain PII, I believe that is meant to convey that it will not be used to identify you. But it's true that that use is not explicitly excluded. I'm not a lawyer so I couldn't tell you if being weasely in this way would count as fraud or not. Otoh, I suspect that Google is actually abiding by the spirit of the policy they wrote because honestly they have little to gain and much to lose by violating it.
"I believe that privacy policies should describe how the data will be used, not how it could be used."

Google's policy does not tell the user how her data will be used by Google's customers. The policy states Google will use the data to "provide better services". That is deliberately vague. That is the "purpose", but how exactly is the data used to achieve that purpose. There are no specifics with which a user could object.

Google does not only serve the search engine user, the email user, the YouTube user, etc. Its business is not free services. As such the policy is misleading as to what are the "Services" it may use the data to improve. Google's business is providing online ad services.

The truth is that Google collects data to provide better services to advertisers. The policy reads as if it only collects data to provide better services to users. The "free" services are just bait to draw users in. The data is collected to improve online ad services.

> The truth is that Google collects data to provide better services to advertisers.

I understand that that is what you believe, but I do not think this is factually true about the data collected from this Chrome header. I believe that Chrome team collects it in order to understand the impact of Chrome experiments on performance.

So if you use a VPN service for example, they still know who you are because of this. I would say even if you’re visiting in private mode.

I see your point, but I also see how this will keep you identifiable.

I don't math very much, but I would guess the intersection of these sets of people is nil: people who 1) use VPN to avoid tracking by Google 2) still log in to Google services from one of their networks and not the other 3) use the same Chrome profile on both. But suppose some small number exist who adopt this illogical and contradictory pattern of behavior. If Google is using this token for the purpose of tracking this tiny set of people when the vast majority could be tracked more easily via conventional means, it would imply that they are far more competent than I give them credit for.
So, someone starting up a vpn and opening incognito mode?
> This ... header ... will not contain any personally identifiable information

Except for everything you do on your browser. I'm so glad I haven't used Chrome for almost three years.

(comment deleted)
Yes, if you have enough bits you can come up with a fingerprint, but that's not what PII means.
It becomes PII the instant you can correlate that fingerprint with any PII.
This.

A bank account number is consider PII. Knowing the bank name & account number will uniquely identify the account holder's name, which is PII.

IP addresses are considered PII under both GDPR and CCPA.
... which is crazy unrealistic, since it's "PII" that can only stay "private" by collective agreement of every node in the network, but no accounting for the reality of network architecture in passing law, I guess.

Maybe a deep expectation of anonymity while accessing a worldwide network of cooperative machines is something people should stop telling the public they should expect?

Under GDPR you can use all the PII you reasonably need to provide expected services, you don't even need separate consent. But, if you have PII, the moment you use it for other purposes, or obtain/retain/share without proper cause, you are breaking the law.

IMHO, that is very reasonable.

Real world example - giving your phone number and information to your car mechanic / doctor / bank teller / plumber is reasonable. Using that information to score girls or ask donation for a puppy shelter would be considered improper.

I totally agree, and I think the GDPR is also reasonable in that it allows you to use the IP address for essential security reasons, such as blocking bad actors based on IP address - it doesn't say "thou shalt not track IP addresses", it says you need consent if you're going to use it for anything that isn't essential for security or in your end user's best interest.
Or they can stay 'private' by not being stored or correlated with other user data. GDPR doesn't apply to the network itself, it applies to whoever is using it.
"Stored" is definitely the purpose of a router. "Correlated" can be necessary for debugging routing issues (or client-server connection issues that are tied to the intermediary fabric near the client doing something weird; hard to determine if an entire subnet is acting up if you aren't allowed to maintain state on errors correlated to IP address).
Where do you get the idea that GDPR doesn't allow you to process PII for the purpose of routing packets?
> They are not including any PII... while creating a new identifier for each installation. 13 bits of entropy probably isn't a unique identifier iff you only look at that header in isolation. Combined with at least 24 additional bits[1] of entropy from the IPv4 Source Address field Google receives >=37 bits of entropy, which is almost certainly a unique ID for the browser. Linking that browser ID to a personal account is trivial as soon as someone logs in to any Google service.

Now this is interesting. If without that 13 bits of entropy, what will Google lost? Is it because of this 13 bits then Google suddenly able to track what they were not? If the IPv4 address, user-agent string, or some other behavior is sufficient to reveal a great deal of stuff, we have a more serious problem than that 13 bits. I agree that 13-bit seed is a concern. But I am wondering if it is a concern per se, or its orchestration with something else. Of course, how/whether Google keeps those data also matters.

>Now this is interesting. If without that 13 bits of entropy, what will Google lost? Is it because of this 13 bits then Google suddenly able to track what they were not?

At the very least, having those 13 bits of entropy along with a /24 subnet allows you to have device-level granularity, whereas a /24 subnet may be shared by hundreds of households.

So they're tracking people and using them as guinea pigs, the lack of respect for users is astounding.
Couldn't the Chrome installations receive a request from Google that says "Do you want to try out a new thing?", and couldn't the Chrome installations say yes with a certain probability? The only difference I can see is that the subset of users that are guinea pigs couldn't be the same in each test (if Google wanted that the subset is always the same).
So it’s just a poor excuse to send an evercookie.
How does one apply the “--reset-variation-state” flag on a chromebook?
According to https://www.google.com/chrome/privacy/whitepaper.html

"We want to build features that users want, so a subset of users may get a sneak peek at new functionality being tested before it’s launched to the world at large. A list of field trials that are currently active on your installation of Chrome will be included in all requests sent to Google. This Chrome-Variations header (X-Client-Data) will not contain any personally identifiable information, and will only describe the state of the installation of Chrome itself, including active variations, as well as server-side experiments that may affect the installation."

While this header may not contain personally identifiable information, its presence will make every request by this user far more unique and thus easier to track. I do not see Google saying they won't use it to improve their tracking of people.

One click while logged into any Google property will be enough for them to permanently associate this GUID with your (shadow) account, they know it, and they know you know it too
Doubtlessly, this will be rationalized and justified as being necessary for, and in the best interest of, consumers...

...but inevitably, it will be used for tracking -- regardless of intent.

It might also get Google in trouble. Copying and pasting from the a comment in the OP's URL:

> Example: https://www.youtube.com - in network headers, look for x-client-data

> Now, go to https://ad.doubleclick.net/abc - and your browser also sends this magic x-client-data.

> It's a unique ID to track a specific Chrome instance across all Google properties.

> Really curious about your opinion, especially after the GDPR explicitly forbidding such tracking. Moreover, it doesn't make sense to anonymise user-agent if you have such backdoor.

This comment is unreadable on mobile. https://i.imgur.com/jFusqw0.png

Could you please remove the four-space indent? You can wrap each paragraph in * ... * if you want to italic them.

Fixed. Sorry about that. Thank you for letting me know!
You may give https://hackerweb.app a try! Aside: It is read only though.
I don’t appreciate your link to a third-party reader here, because you’re implying that the contradiction of HN’s style guidelines (code formatting is for code) is somehow made acceptable by the existence of an app that reformats it for only a few readers.

If I switch to an app rather than ask the person to stop, the other HN mobile users who use a browser rather than app will continue to suffer. ”Use an app” is not an acceptable choice.

> Now, go to https://ad.doubleclick.net/abc - and

It's funny that the doubleclick URL was removed by my adblocker and I didn't get what the original message was about. Now I can see it, thanks :)

Can Chrome extensions on the new proposed v3 standard remove that outbound request header?
It seems my comment may have been misinterpreted.

I meant that this will be rationalized and justified BY GOOGLE.

>It's a unique ID to track a specific Chrome instance across all Google properties.

>Really curious about your opinion, especially after the GDPR explicitly forbidding such tracking.

>Moreover, it doesn't make sense to anonymise user-agent if you have such backdoor

Oh, but it does make sense because with this everyone _but_ google will have a harder time tracking people :\",

So, an extremely unique identifier for tracking purposes, that effectively no one knows exists, and no one knows can be changed at all?

With an obscure white paper that allows Google to claim they comply with the law because "they totally offer a way to change that and they even published that information to the web for anyone to find"?

Gotcha.

Are you talking about the same thing? Because the identifier above is claimed to have 13b of entropy. Is there another high entropy identifier?
13b plus IP is already huge, but browsers leak so much more than that.
By default it's much more than 13b. Seems to be 13b only if you disable analytics/crash reports.
Don't be evil...

Until we are deployed enough that users don't have a choice...

Now that Google has cornered the market for Internet browsing, they're using that foothold to change how it works to suit their dominance. This is why they are not concerned about per-site tracking that Google Analytics does, as long as THEY as a company have direct browser-based tracking, they no longer need to provide tracking services to other private companies to know what is trending everywhere. This is also probably why they're trying to kill ad blockers and certain browser privacy extensions.... But they won't really matter to Google if everything is done at the browser level to begin with from now on. :/

If they make moves to scale back [free] Google Analytics, which they probably will at some point, it will only highlight this ideal... They may turn to selling their privately collected metrics and qualitative studies to companies after Google Analytics is rendered useless, and then that's unadulterated monopolistic profit for them and shareholders...

Diabolical.

True. But luckily you actually have a choice. Many opt for DuckDuckGo on Firefox, for instance.
You are right, but they also know most people won't switch. They have an entire generation of folks that don't even think about privacy.
There's also the subset of all of us who must use Chrome because <solution X> needed for work requires said browser. Google's dominance through Chrome extends to the whole ecosystem. Same thing with Apple inside their own (which is nowhere near a monopoly at 10-15% market share worldwide, thus totally fair game by comparison).
On the other hand, people hate ads, so going to Firefox might actually be better option for new users.
They might and I used to be one of them, but now I use Google on Firefox isntead, because DuckDuckGo no longer yields useful results. The number of times I don't go "oh ffs, fine, !g" has been in steady decline over the last year, and at this point I've given up.
Why do people still dredge up Google's historical "don't be evil"? It's not been applicable for half a decade now, and even in 2015 when it was officially removed from the last company documents, it was already a dead phrase.

Google had already cornered the market back in 2012, when it surpassed every other browser, with an absolute majority dominance (>50% market share) achieved way back in 2015.

Google has been in control for a long time now.

Because of the deep irony? If you have a moto that binary and later decide to remove it, what is the world to infer?
Please don't post blatantly false statements that are trivial to refute.

wikipedia.org/wiki/Don't_be_evil

> Why do people still dredge up Google's historical "don't be evil"?

Historical? It's not like it was 50 years ago.

In a world where broadband internet hasn't even been available for 2 decades, 5 years is a bloody long time.
(comment deleted)
Your comment is factually incorrect.

13 bits of entropy is not an extremely unique identifier.

The first three letters of your first name have more bits of entropy than that. It would be quite a trick to uniquely identify you by the first three letters of your first name.

I fear the factual incorrectness isn't mine: the random string used is 13 bits of entropy only if usage statics is disabled, which isn't the case by default. By default, it uses an unspecified entropy (and you can bet real dollars that it'll be more then 13 bits worth).
Reminds me of this.

"There’s no point acting all surprised about it. All the planning charts and demolition orders have been on display in your local planning department in Alpha Centauri for fifty of your Earth years, so you’ve had plenty of time to lodge any formal complaint and it’s far too late to start making a fuss about it now"

Beware of the leopard!
This is another instance that google doesn’t care about users privacy and track without their consent by using chrome installation Id. This probably might be against GDPR, so Chrome installed base in Europe multiplied by per day fine, hopefully runs into a years revenue of google.

Another lesson don’t trust for profit companies with privacy protection especially advertising technology company like google with motto like don’t be evil or organize world’s information designed to mislead.

Honestly, it's 2020, even if your technical understanding is so low that you have no idea what a "browser" is, you know that Google will do anything in it's impressive power to track down everything you do with legal or illegal means. Thanks to Snowden, this is no longer a conspiracy theory. It's a fact.

Google should be fined for this but they probably won't be.

To give them some credit: it's not sent when in incognito mode.
If you haven't used Firefox in a while you should really give it another chance. It has vastly improved in terms of CPU and battery usage. It also has a lot of great privacy-enhancing features like tracking protection enabled by default and extensions like Facebook Container make it trivial to prevent tracking even further.
(comment deleted)
Or just use Ungoogled Chromium, and get the performance advantage of Chrome without the tracking.
Is there a quick summary of what major site/features that will be unavailable in Chromium vs. Chrome? I assume, for example, that 'netflix' will be prominently on that list. Thanks.
I use Chromium; you can still Netflix. It does, however, require installation of "WideVine", which is an opaque, closed, binary blob. (But you're getting that with Chrome, too, I believe.)

You can also do Netflix in Firefox, through exactly the same mechanism.

>You can also do Netflix in Firefox, through exactly the same mechanism.

It's somewhat better on Firefox because they run the binary blobs in a sandbox.

Is there actually still a performance advantage these days? Would be curious to see some benchmarks.

I will say that Gmail/Hangouts feels faster in Chrome but that's obviously not a fair comparison.

Yes, there is definitely a performance advantage especially on mobile. see for example some benchmarks for brave browser, and also a couple of recent tests for desktop browsers.

[0] https://brave.com/brave-one-dot-zero-performance-methodology...

[1] https://brave.com/brave-saves-batteries/

[2] https://venturebeat.com/2020/01/15/browser-benchmark-battle-...

[3] https://linuxreviews.org/Web_Browser_Showdown:_Six_Browsers_...

The conclusion of the linuxreviews article doesn’t really make a strong case for any major difference between the browsers —

It is hard to declare an absolute winner. Brave and Chromium, seem to be the overall winners but Pale Moon, SeaMonkey and Firefox are not bad choices if you never visit pages with fancy WebGL or WebAssembly ever. Chromium may be the best choice if you watch a lot of video on a laptop if your distributions Chromium package has the hardware video acceleration patches.

Lots of “ifs” in there for all conclusions.

Is there definitive proof that all of the Google stuff is really out of a naked Chromium install? I remember reading stuff about it being impossible to wholly untangle Google's stuff from it.
This is my question as well. Additionally, I've wondered if there are non-explicit behaviors of the browser that are used for fingerprinting.
https://github.com/Eloston/ungoogled-chromium/blob/master/do...

"those binaries that cannot be removed do not contain machine code."

I'm not sure what's meant by them not containing machine code, but it does seem like some of the binary blobs are retained that can't be built from source or substituted.

Honestly, I'd just switch to Firefox to be safe, though Ungoogled-Chromium does automatically set a lot of sane pro-privacy defaults that you'd have to manually change in Chromium/Firefox.

As a firefox user, they are spending more money on PR and less on quality. Their UI has gotten progressively worse. And I'm not taking about xul deprecation. Please Mozilla come back to your strengths. SIMPLE: Provide a great alternative.
Given the purpose of the x-client-data header, I'll be shocked if Mozilla doesn't have a similar header for feature-enable-identification to do its own tracking of bugs at scale.

... and if it doesn't, they're developing their browser with one hand tied behind their back on quality assurance relative to alternatives.

The days of Firefox are over. Every site I work on has less than a few percent of Firefox users. We don't even test with Firefox, because fuck 'em - I never liked the way Mozilla did anything anyway and their painfully obviously false, preachy holier-than-thou brainwashing campaign that they're constantly running in order to keep getting daddy Google's money has always been annoying.

I'd rather use MS Edge. It's actually even faster and lighter than Chrome. So, I've already started using it on my Windows and Mac machines and I'm just waiting for it to be released on Linux so I can use it on my main workstations.

I bet Edge exceeds Firefox market share any day now. Maybe Google should start giving Microsoft money too! But even if Edge market share doesn't grow I'll be quite comfortable since it's the WebKit/Chrome/Blink lineage and compatibility that I care about.

Fuck that piece of shit Gecko. I'm tired of hearing about it from the extremely tiny but loud minority of Mozillatroids. Now do your duty and fade my comment in your petty attempt at censoring my words. You can't change the truth.

Wow, you seem very upset. I suggest going for a walk. Take a couple deep breaths. Calm down. It's just a browser.

By the way, what sites do you work on? I'd like to make sure to avoid them.

I enjoy ranting against Mozvillains though :) They're not a browser, they're just very annoying preachy people who need to be refuted and since I have no problem doing it, I feel that I am doing God's work.
Please don't respond to a bad comment with another one. That just makes the thread worse. Doubly so for personal attacks, which are a bannable offence on HN.
What was so bad about my comment? Saying that I don’t support Mozilla/Firefox or just not being anti-Google enough?

Also, the guy that you’re responding to simply said that I seemed angry. How is that a personal attack? Somebody else responded that I’m ruining the Internet and somehow that’s not flagged?

"You seem very upset", "I suggest going for a walk", "Take a couple deep breaths", "Calm down", and even "It's just a browser" are patronizing personal comments that cross into insulting. Even worse, "By the way, what sites do you work on? I'd like to make sure to avoid them." is an ugly personal attack. I'm delighted that you didn't take offense at any of that, but that puts you above the 99th percentile of non-offense-taking. We can't pitch moderation at that level!

I wish it were obvious, but no, we don't care (I mean we really don't care) whether HN users support Mozilla or Firefox or Google or hate them. The only thing we care about [1] is whether the stories and comments on this site gratify intellectual curiosity. Most for-or-against rants of that nature don't have much curiosity in them. They're more like sports fans yelling at each other. That's great in its way! It's something to do. It gets juices flowing. But it's not really the kind of discussion we're going for here. By the way, although I don't frequent sports fan sites, I'd bet a lot of money that users there feel like the mods are biased against their team.

To be honest, I didn't really think your comment was that bad. It broke the site guidelines by being a name-calling rant. But it was so over-the-top that to me it felt more exuberant than mean, and that's actually not the kind of thing we're trying to eliminate here. Meanness is. The reason I didn't spell this out in my reply to Shaaaaaaare is that their comment really did break the site guidelines badly, and this is much too subtle a distinction to have gone into in that context. Much better to say: even if the other comment was really bad, you still can't post like this. In other words, two wrongs don't make a right, just as mothers have always said.

1. See https://news.ycombinator.com/item?id=20186280 and https://hn.algolia.com/?dateRange=all&page=0&prefix=true&que...

Thank you so much for your detailed and thoughtful response.
> We don't even test with Firefox, because fuck 'em

You are the types of people who are slowly destroying the internet, nice work.

Incorrect. Mozilla is responsible for their shitty market share, not me.

I don't test with the Opera, QQ, Yandex or Sogou Explorer browsers either - just to name a few other tiny niche browsers... Do you??

I think Mozilla is a horrible leadership spending money on all the wrong things and I'd rather lose my job than donate to them. But, in all fairness, they're still way better than both Microsoft and Google. At least Mozilla isn't actively trying to make my life worse every single day.
Has Firefox fixed the bug that made it eat up resources, crank the fans and go nuts on retina MacBook Pros?
I used FF for a couple of months. Its heart is noble but it's just not as polished as other options.

Edit:

I didn't want to expand because I've already banged that drum too many times on HN.

See these other comments of mine:

https://news.ycombinator.com/item?id=22177747

https://news.ycombinator.com/item?id=22059567

Thank you! Someone said that finally. I really tried hard to like Firefox. But it just really doesn't replace Chrome for me. Maybe it's the ecosystem, extensions, user experience, I'm not sure but the browsing experience is never really the same on FF.
As someone who had repeatedly tried to make the jump to Firefox, it _finally_ stuck after quite a few attempts. (CPU and laptop heat issues were problems for a while, now they aren't!)

I second this; keep trying even if it isn't for you after a few times, it was worth it to keep trying, officially Firefoxer :)

The one thing that keeps bugging me is the widgets in Firefox (Ubuntu 18.04) look super-dated -- reminds me of NCSA Mosaic and makes me want to close it. Can they please update their widget library?

https://imgur.com/a/JYWKhpu

I love FF and have gone back you it for the last few months, after using chrome for years, CPU and battery usage is great now, but coincidentally I've been getting these weird hangups on my laptop. So yesterday I opened up my activity monitor with 6-7 tabs (including 1 youtube tab in a separate window) open I found FF using ~12gb of memory on my MBP. Then to get a comparison, I opened the exact same tabs in a chrome browser (separate window for youtube and all) and found it using under 1gb of memory. This may be is an exceptional case, but for now I just don't have the memory to run FF with docker and dev environments up too.
Not sure why this is being downvoted. It hits the nail on the head. If you are concerned about privacy around advertising then using a browser from the biggest online ad company is short sighted.
"Backdoor" this, "backdoor" that. Proprietary software company releases proprietary software that allows them to spy on you, how shocking.

In which they sacrifice privacy to allow their ad network to target you better. https://www.blog.google/products/chrome/building-a-more-priv...

In which they explicitly track you more under the guise of protecting your privacy. https://github.com/jkarlin/floc

For every single claim Google makes about being pro-privacy, their definition of privacy ("data shared between you and Google and no one more") is implicit.

It's a surveillance company that makes proprietary software to sell you ads. As soon as you get that into your head, you'll be much less shocked.

"We personally get to track you" is not a unique stance, and it's far from a backdoor. It's just another vile move from a surveillance company that's pretty explicit that that's their goal.

Sure, the general pattern of behaviour is familiar, but I didn't know about this specific manifestation, and now I do. What's the use of being so dismissive about specific information on which one can act?
It's not a backdoor! Calling random anti-consumer behavior a backdoor is the privacy-equivalent of Godwin's law.
You should also donate to Mozilla because it’s an insanely good piece o software for the price!
Mozilla Corporation which makes the browser doesn't accept donations.
Do you know why that is?
because otherwise users would have a saying in the direction web browsers evolve and Google would be sad

Half kidding there

So they’re accepting donations after all?
Mozilla Corporation is a for-profit company. Depending on the legislation it is sometimes forbidden to take donation, or at least very difficult/limited for company.

Mozilla Foundation is the non-profit organization (and they do take donation).

They probably can take donations just fine but there is no tax deduction for the donor.
I'm going to start donating to Mozilla every month.
I assume they do get quite a bit of money from Mozilla Foundation, which does.
I asked the Mozilla Foundation if anything from the donations goes to the browser, they said no, not a single penny.
The Foundation does not provide money to the Corporation. Look at the annual financial statements.
Firefox should definitely be used, but donating to Mozilla is a mistake. They waste a lot of it, their executive compensation rates are way too high (especially given that MoCo just laid off employees), and Mozilla still hasn't kept up with promises they gave years ago (that Pocket is still proprietary being a notable and depressing example).

Donate to smaller developers of software you use, it'll go a lot further, and they'll probably put it to better use!

> their executive compensation rates are way too high

Just because they're a non-profit doesn't mean execs should be paid far below market rates.

I agree, I never understood that argument. We have a fairly large and wonderful kids hospital that looks for donations and some of my friends said they wouldn't donate because their CEO makes 500k and he should donate his money instead.

I had to explain you want to recruit great talent, and that 500k is less than he could make some place else.

The Mozilla Corporation laid off like 70 employees the other day, and Baker's compensation has been inversely tied to the performance of Mozilla.
I doubt it has been tied, as in a contractual goal.

The word you're looking for is "correlated".

Right. What people actually want is some form of income equality, which would bring executive level salaries in line with their actual worth. You're not going to achieve that by starving non-profits of executive talent in the meantime.
I respect you a lot, but how is what Mozilla's doing in regards to that at all respectable? It's not "starving them of talent" to not increase Baker's pay as Mozilla is laying off employees? She's been there since (almost) the beginning, and the performance of Mozilla has gotten worse over the last decade.
I'm responding to the general complaint that executives at large non-profits are paid too much, and therefore the non-profit is not using money wisely, and so should not be donated to. There's a certain pool of people who are qualified to run companies of these sizes, and in order to attract that talent, you need to pay a competitive wage. The non-profit-ness of the company can be a factor, but like it or not, money is a major motivator, and will affect what kind of talent you can recruit. The problem isn't that a given non-profit executive is overpaid, the problem is that all executives are overpaid.

This isn't a Mozilla problem, it's an income equality problem. Punishing Mozilla by restricting the size of the pool from which they can recruit won't solve the problem.

I can't speak to the current Mozilla executives' performance. I'm not qualified to judge that. I will say that browser market share seems a poor metric, especially given the reach and pocketbook of Mozilla's primary competitor.

In general I definitely agree with you, certainly.
I bet a non-profit like that could find many qualified executives for much less money. There's an amazing amount of talent in the middle of most org structures that never make much past $100k/yr. I'm certain that a handful of these people would excel if given a chance and promoted to the top.

This doesn't happen because most boards are a good ol' boys club where networking matters, not because of a lack of available talent at a price point.

You're assuming the $500k guy is great talent.

Our local YMCA pays the Executive Director $400k/year. The child care workers make $11.50/hr + free membership. (ie. minimum wage) The Y is great, but I'm not donating anything to them.

Mozilla engineers typically accept a salary that is below market rates.

Recently they have been increasing salaries to be more competitive.

(comment deleted)
Also, Mozilla made donations to political entities in the past
Which ones? Eich donated like $1000 to a political group that (I would hope) most of us disagree with, but Eich != Mozilla, and he was removed because of the backlash
RiseUp, from their about-us page: https://riseup.net/pl/about-us Riseup’s Purpose.

The Riseup Collective is an autonomous body based in Seattle with collective members world wide. Our purpose is to aid in the creation of a free society, a world with freedom from want and freedom of expression, a world without oppression or hierarchy, where power is shared equally. We do this by providing communication and computer resources to allies engaged in struggles against capitalism and other forms of oppression

>> We do this by providing communication and computer resources to allies engaged in struggles against capitalism and other forms of oppression

I'm a Firefox user but I'm doubtful about donating to the Mozilla Foundation.

They at least endorse some really far-out organizations on the Mozilla Foundation homepage[0], such as Riseup Networks.

[0] https://foundation.mozilla.org/en/?utm_source=www.mozilla.or...

Riseup is absolutely with Mozilla's mission statement, though, and all things considered pretty good:

"Riseup provides online communication tools for people and groups working on liberatory social change. We are a project to create democratic alternatives and practice self-determination by controlling our own secure means of communications."

They have an actual anarcho-communist star in their logo and their website features revolutionary imagery and policy statements like "all labor is valued equally" and "the means of production should be placed in the hands of the people".[0]

I'm sure it's a fine organization if you subscribe to their views. I do not, and I'd rather not fund them, directly or indirectly.

[0] https://riseup.net/en/about-us/politics

I don't share their views, but I'm thrilled that their project exists and very happy with Mozilla donating to help improve their email client security, since it's a major player in the pro-privacy ecosystem. If I had to agree with the philosophical beliefs of everyone I gave money to, I'd starve.
If I donate to a FOSS project, I want the money to go into the development of their software and not turn into some proxy funding of other projects and organizations - especially not ones I disagree with. In fact, I think that's a pretty reasonable expectation.
I did not know about riseup (or Mozilla funding them) and parent provided insightful information about them. Given the funding structure of Mozilla, I could see this being a red flag for donations for some organizations/individuals.
Donations go to Mozilla "the non-profit organization" rather than Mozilla "the corporation".

Mozilla (the corporation) has the typical/bad corporate structures and ridiculous executive compensations. Mozilla (the corporation) had the layoffs. Mozilla (the corporation) bought Pocket with money that comes from deals with search engines.

That being said, though...

> Donate to smaller developers of software you use, it'll go a lot further, and they'll probably put it to better use!

... is still a great point.

(Updated this because "Mozilla, Org" and "Mozilla, Inc" were inaccurate)

(comment deleted)
The Mozilla Foundation controls and owns the Mozilla Corporation, and the executive structure looks more or less the same. Baker's compensation has been inversely tied with performance, and she runs both.
> Baker's compensation has been inversely tied with performance

You've mentioned this twice in the thread now. "Inversely tied" is quite a strong and unusual claim for compensation. Care to prove it?

Their salary has gone up, and firefox market share has gone down, its neither is a controversial statement
That's not "tied", which would imply a contractual relationship...
That's malarkey. Tied is not exclusively used to imply a "contractual relationship," and that's (if anything) a minority-usage of the idiom of tied to/with.
I think you probably should have used 'associated with' instead of 'tied to' as when discussing remuneration contractual ties is not a minority usage of the idiom.
I'm not Kick, but while you're correct that "associated with" would've been better for clarity, no reasonable person would assume that "inversely tied" describes a contractually mandated drop in performance for an increase in pay (my other comment here links to dictionary.com and thesaurus.com, both good references for this discussion). Couple that with the generally accepted usage of 'tied' and the usage by Kick was correct, if perhaps ambiguous to a narrow population.
Kick's usage is correct except within the business world and especially financial and executive populations, which, while admittedly narrow, are what we were discussing. When you say that an executive's pay is tied to the company's performance, within these communities it's generally understood that this is a contractual relationship.

ex. "John's salary is tied to performance - if the company is valued at over 100 billion, he'll get another 5% stock" etc.

or "bonuses are tied to performance milestones"

If you are simply observing that an executives pay rises while performance falls, associated is a clearer term.

inverse correlation between executive pay and browser market share, if semantics are necessary.
'Tied' in relational contexts is generally used to describe a correlation, relation, connection, or a consistency between events in the English language. It can—but does not have to—describe a contractual relationship, and it does not generally describe one except in very specific and obvious cases, e.g. what one would expect to be true: "bonuses are tied to performance milestones."

https://www.dictionary.com/browse/tied?s=ts

https://www.thesaurus.com/browse/correlated?s=t

But in this context:

> Baker's compensation has been inversely tied with performance

No reasonable person would assume that a person's comp structure from Company would be contractually bound to increase as Company's performance decreases. At which point, the interpretation of "tied" would swing towards generally accepted usage, i.e. "there's a potential relationship between these two things."

ameister14 suggested "associated with" would've worked better, and that's true. But "tied" isn't technically wrong.

Owns, yes. That is radically different from "funds", though.

Not going to dispute anything about executive structure or Baker's compensation and (mis)management, but a lot of people here are acting like donations either go directly to the corporation or funnel to it through the actual recipient of the donations, but there isn't really any evidence being presented.

I think the Mozilla Foundation is starting to look a lot like a sinecure employer for friends of friends in the non-profit biz.

Here are a few seemingly similar titles listed on their leadership page[0]:

  VP, Advocacy
  Director, Digital Engagement
  Director, Communications

  VP, Global Programs
  Director, Partnerships

  Director, Events and Training
  Interim Director, Leadership Programs
[0]https://foundation.mozilla.org/en/about/leadership/
That still doesn't answer why should I donate to Mozilla the non-profit? What do they do with my donations? According to another post they don't use them to fund Firefox or presumably any project run by the corporation side.

As I see it if I wanted my donations to go to political or other activism there's more direct and better organizations to donate to with less middle management involved.

> According to another post

Respectfully, HN comments aren't a great primary source. Here are some places to start your research:

https://donate.mozilla.org/en-US/faq/

https://foundation.mozilla.org/en/about/public-records/

https://assets.mozilla.net/annualreport/2018/mozilla-fdn-201...

https://foundation.mozilla.org/en/

According to https://foundation.mozilla.org/en/ the donations go to:

* supporting a diverse group of fellows working on key internet issues [looking at them they all focus on advocacy and social issues rather than working on things like Firefox]

* connecting open Internet leaders at events like MozFest

* publishing critical research in the Internet Health Report

* rallying citizens around advocacy issues that connect the wellbeing of the Internet directly to everyday life.

Or in other words, exactly as the HN comment said, none of it goes to corporation projects but rather privacy and social advocacy.

edit: I'm guessing the Foundation actually takes money from the Corporation to fund itself since the financial statement seems to cover both, anyone know if that's the case?

As long as they keep Firefox available they can waste my money as much as they want. Why should they owe me anything? I am taking their browser.
Better yet, donate to Brave who doesn't share the same conflict of interest as Mozilla does with Google, as Google is Mozilla's #1 source of income. Best of all you get a browser just as fast, if not faster than Chrome because it's Chrome without all the junk.
While Brave not taking the "Search deal with Google" route is commendable, you shouldn't donate to it, either.

Venture-funded for-profit startups don't need donations, and again, donations will be more heavily felt by the people maintaining the software you use every day that isn't created by behemoths.

But I don't want to participate in dodgy cryptocurrency scams.
> Firefox should definitely be used, but donating to Mozilla is a mistake.

These seem at odds with each other. If you want Firefox to be used, how do you suggest its development be paid for?

They're already getting more than enough to fund development with the Google deal, which they've shown no willingness to let up on, despite it seriously compromising user privacy. Donating to Mozilla at this point is just encouraging organizational bloat.
I guess we'll have to agree to disagree (which is fine!). I'd rather continue donating to them to show there are funding sources outside of advertising, which is a business model I despise.
I thought like you.

There seems to be a huge problem though: for some reason it seems they aren't allowed to use donated funds for what I thought was the main reason for Mozillas existence: development of the Firefox web browser.

Instead donated funds seems to go to outreach etc.

I have nothing against outreach but if this is the case I'd rather donate to such organizations directly (or rather increase my monthly donation to Amnesty International).

Sure. I guess to me that feels like an implementation detail. I like Mozilla and I want them to exist so I give them money. If they stopped making Firefox, I would probably stop giving them money. But whether my money goes to Firefox development is up to them, they know their financial arrangements better than I do. I understand if you don't agree with that policy.
Donations are not used for Firefox development -- they go to the Foundation, not the Corporation.
Do you care how Apple pays its executives when you shell out 3-4k on their laptops or 1-2k on their phones? The OP just said that Firefox is a great piece of software available for free, and they deserve to be compensated (in form of donation). Now, I'm totally on board with you that they waste money, that's not even debatable.
So I pay for Pocket Premium as it is wholly owned by Mozilla as a way of diversifying their income away from search and donations. I like and use pocket and get something in exchange for my money (which makes me more likely to keep a rolling payment going on). II know it’s not open source, but tbh that doesn’t hugely bother me given that Firefox itself is.

Does anyone object to this indirect way of funding Firefox? Does it cause indirect harm by making them prioritise pocket over Firefox?

I don't object. Personally I'd be happy to pay for Firefox Send, or better still for tech support in self-hosting Firefox Sync and Send.
I've spent a lot of time considering Pocket Premium but the price point is just too high. Maybe if they roll in features from feedly and have a really nice RSS reader.

I also hate spending money on news that isn't going to journalists.

Well that’s why I factor it in as a donation to Firefox instead of paying for the features (which I agree with you the price point is way too high for what you get).
Sorry, I can't bring myself to trust them after pocket, mr. robot, and of course the time they fired that guy for having a fetish. I might use their browser product if it ever seems like it'll be better for my needs but I'm certainly not giving them money.
I haven't read this carefully enough to decide exactly how bad it is, but one thing seems clear to me:

From what I see many techies are now aware and upset, and hardly anyone seems to want to defend Google anymore.

I consider it more likely than not that Google will take some real beatings in the years to come. Kind of like Microsoft was fined by the US and EU, forced to advertise for competing browsers and ridiculed by Apple ads. On a case by case basis I think some of this will be well deserved, some less so, but few outside of employees and shareholders will cry.

I also guess a lot of people, including certain owners and many in management hasn't deciphered the writing on the wall yet, and in that case it whatever comes next will be surprising.

More and more people are blocking ads. Google’s business model is under threat. They will turn into hyenas in order to survive.
Good point. Although I feel their hyena nature has been visible for a while now and what we are now seeing is hungry hyena :-)
Oh it will get worse. Youtube will be riddled with ads every 5 minutes or so. Will take the cable tv path soon. The good news is that their greed will eventually crash themselves.

Hey, i dont mind a little ad here and there even though I give 0 fucks about any product being advertised. But the quantity is becoming hard to process without adblockers. Had they not taken the full evil mode path I’d have considered paying for youtube.

I think im better of weaning myself off almost completely. Or alternatives...

i think their business model is just fine: https://www.google.co.uk/amp/s/9to5google.com/2020/02/03/alp...
There's a certain irony of linking to an amp site on Google's domain as part of a larger discussion about their business ethics.
(comment deleted)
How about just https://9to5google.com/2020/02/03/alphabet-q4-2019-earnings/ ?

No amp required, under 1 second to display content. I will say that it's a bit beefy at 5mb total, though the AMP site loads the same amount.

You complained that it was hosted on Google specifically. I tested that Chrome specifically copies the canonical URL and not the location bar URL when I share that AMP page, which doesn't fit your narrative.

Also, the reason the AMP page is faster is that it prerenders above the fold from a SERP, not due to total page weight.

AMP is, hosting aside, a problematic project when it comes to Google's business ethics.

And the differences in rendering speed were negligible, to my eyes. IIRC from the dev tools, it was about 1/10th of a second difference to get readable content.

AMP is basically gobbling up other contributor’s content and shamelessly profits at the expense of the content owner. As an end user I also don’t like amp. Im on duckduckgo now
> And the differences in rendering speed were negligible, to my eyes

Reread my previous post. You didn't load it from a SERP. That's what AMP is useful for, instant loading from link aggregators.

> AMP is, hosting aside, a problematic project when it comes to Google's business ethics.

How, especially considering that Google's browser does not share AMP URLs? Is RSS a problematic project? How about GTFS or microdata? All three give the user a better experience at the expense of the publisher.

> instant loading from link aggregators

Per research tests which look at load times and abandonment, under 1 second has the same retention as instant. So, AMP provides no practical benefits here.

> How [is AMP problematic]?

A large number of electrons have been spilled on this topic. I recommend reading one of those. It really comes across as an attempt to argue in bad faith by ignoring these well-distributed (especially on HN) concerns; even worse to try and paint RSS and similar as harmful.

Thank you for the conversation, good luck!

> Per research tests which look at load times and abandonment, under 1 second has the same retention as instant.

Citation needed.

> A large number of electrons have been spilled on this topic.

Most of those electrons have been spilled by people who do not understand what AMP does, which included you until you had read the GP post. Those arguments are nonsensical to somebody who does understand what AMP does.

> even worse to try and paint RSS and similar as harmful.

I do not think RSS is harmful, but your stated reasons for claiming that AMP is harmful apply equally well to RSS. Your argument is therefore inconsistent with itself.

When I moved into IT almost 10-15 years ago, Google was one of the companies that I adored (in a kind of naive way, but nevertheless..). Working at that company has always been a dream of mine. They had the reputation for hiring the best of the best engineers, with great benefits and work culture.

Meanwhile I'd hate to apply for them. Everything they do in terms of tracking, etc. has become so vile and almost evil that even Microsoft has a better standing among my peers..

Would love to hear some insight from ex employees on what changed on the inside of that company, but from the outside it doesn't even seem to be the same any more. Maybe they're just worse at hiding it..

We thought Microsoft was evil because of how they treated their partners and competitors.

We didn't consider that a greater evil would arise, and all it would take was a disregard of the sanctity of personal privacy.

To my knowledge Google still hasn't done anything comparable to the worst offenses of Microsoft in its prime. These "tests" don't really help though.
> > and all it would take was a disregard of the sanctity of personal privacy

;)

I would have been aghast if you had told me 30 years ago that by now our movements, purchases, letters, phone calls, photos, rolodex, walkman, television, and more would all be connected to a central database and used to produce models to coerce us into changing our behaviour.

Eh. One of the things Microsoft was actually punished for was bundling IE, and it didn't help that they were actually hostile to other browsers as proven by the fact that their documentation pages would work if Opera faked the IE headers.

Googles pushing of Chrome and disregard for other browsers across their web properties comes dangerously close in my opinion.

I think that Googles' push is even worse. Just think about how many possible devices Microsoft could target back in the days. 300-500 million devices maybe? Google not only invaded desktops in the past decades, but completely owns the Android platform, which comes bundled with Chrome and Google as the primary search engine. Desktops with Chrome plus the Android platform must be far more than 2-3 billion devices.
Well, I'm an ex employee. Actually nothing has changed inside the company. "Tracking" as you put it isn't perceived as evil, it never has been, and for good reasons. The only thing that's changed is people's perception of the company and - very recent post 2016 political issues aside - that was mostly driven by a sustained campaign by an angry media industry that wanted money (see: link taxes).

Firstly, if tracking usage statistics or activity was actually evil then everyone would hate it, desperately try to stop it and have tons of stories about the horrors of it.

In fact what Google sees is:

1. Web apps are extremely popular although they all keep server side logs that reveal every button click, every message you type, every email you send, every search you do. Users routinely migrate from thick client apps that give great privacy to web apps that give none whatsoever without batting an eye.

Hacker News readers in particular should understand this. It's overrun with Silicon Valley types who build their entire livelihoods around "let me run this program for you as a service". There's nothing special about Google in this regard. The entire software industry has moved away from privacy in the last 20 years because ...

2. Users rarely if ever use privacy features when they're provided, even when they're heavily promoted. In fact, despite all the noise, hardly anyone cares. For the vast majority convenience wins over privacy every time. But not just convenience, also ...

3. Security trumps privacy. People say they like privacy, but they hate getting hacked and tend to blame the service provider if it happens. They have very little patience for explanations of the form "yes this attacker was obviously not you and yes we had enough data to know that, but we didn't use any of it ... for your own good!"

4. Users can't and won't give accurate feedback about what they value or what their actual experience of using an app is like. This means A/B testing is critical to avoid making bad business decisions. The heavy reliance on experiments and data driven decision making is one reason tech firms tend to steamroller their legacy competitors.

Google hasn't become evil over time. It's been doing A/B tests, keeping server logs and writing unused privacy features since the company first began. All that's changed is it got big and rich, so people - rightly - started to think about its power more. But the hypocrisy is strong. The world is full of companies collecting and using data for the benefit of their customers. It's really only Google and Facebook that get the vitriol.

So, Google (And others) are evil, but because customers don't value privacy until it's too late, it's okay to abuse them for profit?

You aren't ethical if you only act ethically when you are forced to.

Your points are sound, but I'm puzzled by your last line:

>It's really only Google and Facebook that get the vitriol.

The way I read it, it seems as though it's unfair that they get away with doing questionable stuff when "others do worse". Why yes, if you have nefarious intentions but no power to act them out, people are going to throw less "vitriol" at you than if you do act them out.

Thats right. Is google the most evil? Well, no, I really don't think so. But they exert a lot of evil to the world because of their size, power and ubiquity more than others. Same with Facebook and Amazon.

I always keep in mind the motto Google carried when they stepped in: "Do no evil". I used to love Google back then, but they were something else.

They killed good products that people loved, they abused their trust, they are what they are not because they keep on innovating but because of their current size. They killed a lot of small fries who in aggregate could have given us a lot more value.

What I mean is that offline businesses have been running experiments to see what works forever. They run a billboard campaign in city X and run a slightly different one in city T to compare the results. They count customers as they come through the door. They issue loyalty cards that people sign up for in their millions, making a special effort to share data with giant supermarkets because they're (effectively) given a share of the resulting revenue increase.

Nobody cares or talks about any of these things. But when Google does the online equivalents, it's suddenly the next coming of Hitler (literally, look at the comment I replied to above!).

This isn't really proportionate, it doesn't make sense, and it's quite offensive to people who work or used to work at these firms.

Most people use default settings and have no idea about the software they are using at all. "everyone would hate it" assumes people know about these things, but they do not. Don't use this as a point.

ad 3), you make it sound as if it was one xor the other. This is sometimes the case to some degree (like checking urls for phishing sites), but far from always.

ad 4), it is not my problem as a user that you have trouble doing tests. If you need information for your business, then spend the money and effort to acquire it. Do not abuse your users without care. Your business case is not more important than people's privacy. And if others do this to gain an advantage over your business, don't whine, sue them.

When I was involved in user tests we had a lot of trouble due to our ethical concerns, but we did not consider dropping these concerns.

edit: I may add that I'm German. We were taught about the value of privacy in our history. "boring statistics about religion" led to the murder of hundreds of thousands of Jews. Disregard for privacy led to the atrocious human rights violations in Eastern Germany. I cannot understand why Americans, who explained this to us Germans after WW2, apparently forgot all about the _reason_ for privacy.

>hundreds of thousands

Millions.

"everyone would hate it" assumes people know about these things

It's based on direct experience of these tradeoffs.

Firstly, yes, people accept the defaults most of the time. They expect those defaults to be convenient and secure. But even when forced to click through screens that literally won't let them proceed until they consider their privacy settings, they don't care and routinely opt in to data sharing because it's more convenient.

Believe me, Google has tried everything in this space. Every combination of popup, click through, interstitial, notification, endless usability studies. Everything. New products that use user data in clever ways get instant uptake on the order of hundreds of millions of users with virtually no promotion at all. Privacy-oriented features get nearly none despite heavier promotion. To the extent people don't know about privacy settings it's because they do not care.

I know this goes against the tech industry zeitgeist or groupthink. It's unpopular to spell this out, but that's why it's important to do so. Way too many companies and engineers are working on dead-end privacy projects that address an imaginary market demand.

you make it sound as if it was one xor the other. This is sometimes the case to some degree (like checking urls for phishing sites), but far from always.

It's not 100% always, but it's hard to come up with cases where privacy and security aren't in tension.

For instance, one of the reasons you can't build truly end to end encrypted consumer services is people don't want to swap public keys. It's more hassle and nobody has it, so every end-to-end encrypted service has a big central key directory ... which makes the encryption pointless, as the service can still decrypt conversations on demand. That's not the only problem but it's a big one.

Another problem is people expect password reset. You can't build a service without password reset or else you'll have an angry mob at your door demanding their accounts back. If you say, sorry, there's no password reset because the data is all encrypted and we can't get it back then you'll lose your market position. Hence why iPhone backups are unencrypted.

It's not hopeless. Google get the most pressure on these topics so they've been coming up with some of the best solutions. Their Titan architecture is quite innovative in this space, although we'll see what happens when people realise "I forgot my PIN, please verify my identity some other way" doesn't work anymore.

And if others do this to gain an advantage over your business, don't whine, sue them.

I'm afraid this is extremely naive. There is nothing illegal about running user tests, server logging and gathering metrics. And don't talk about GDPR to me. It's a meaningless law that is so badly drafted it affects nothing. You can do basically anything if it's justified by a genuine business need, and understanding customers is an absolute need of any business.

But if the EU under German direction decides to interpret the GDPR such that it bans making convenient and secure software, then so what? America crushes the EU in the software business already. It will simply extend its lead. American startups will learn "don't open offices in Europe and you're OK" and so the EU will continue to degrade its own economy, continue to have no tech startups of note and the USA's more sensible approach to privacy will continue to be the only one that matters.

"boring statistics about religion" led to the murder of hundreds of thousands of Jews.

At the risk of going full Godwin on this thread, that's a severe mis-understanding of your own history. No wonder Germans have such strange approaches to internet privacy if that's what you're being taught. Americans haven't "forgotten" the reasons for...

I think it's key that I never see any kind of comparative behavior. Does Amazon do this, does Facebook do this, do private platforms do this? How does this compare to tracking done by apps? Based on my experience and knowledge, Google falls on the ethical side of the spectrum among its peers.

I get ads from Microsoft now (in app in some cases, other free services). I know this is a Mac/Linux heavy forum, but I would also love to see how this tracks with Windows telemetry (to the point made about security). I am sure that every Windows 10 install has higher fidelity fingerprinting sent with telemetry.

What has changed is how easily people can be manipulated on social media and how they can be programmatically orchestrated with much less effort than before 2000-2005.

> 1. Web apps are extremely popular although they all keep server side logs that reveal every button click, every message you type, every email you send, every search you do. Users routinely migrate from thick client apps that give great privacy to web apps that give none whatsoever without batting an eye.

I think people here might be shocked at the amount of surveillance going on in the most basic web apps. Lots of telemetry like you describe and other ambient data is being captured all as part of the terms and agreements you probably clicked through with the website. Google is not alone in this.

You have good points.

You have to be diligent in your efforts to show that Google is actually doing wrong before accusing them.

If you don't -- you're playing into the hands of their rivals, especially "old" media companies.

As an Xoogler, my experience is that one thing changed, and one thing didn't.

The thing which changed is that Google operates on a much, much larger scale than anything imaginable back in the late 90s when they first started. In 1999, nobody had any inkling about the cloud and SaaS revolution that was about to come. Nobody knew that everything was about to move into web apps and cloud services, which permit and require(?) tracking in ways, and on a scale, no one had thought possible. (Require with a question mark because - ad tracking aside - what little I know of frontend development includes that they need to be able to see certain information, like your browser type, in order to provide effective services.)

The thing which didn't change is the mindset of the engineers building the services. On average, Googlers tend to be much less concerned with personal privacy than an equally educated consumer, and much more interested in the features and services they can build for themselves and others which happen to require huge amounts of personal information to function. In other words, a typical Googler is more likely to think, "Oooh, having a personal digital assistant is great! If I give Google access to my email inbox, it can suggest tasks, automatically add calendar invites, and do other cool things."

The problems we're seeing now come when the engineers working on advertising products have that mindset and access to Google-scale information. They don't consider it a problem or a violation because they don't mind targeted ads, they don't mind giving up their data in exchange for services, and they don't (want to) understand why people who aren't them might object.

It's a lot more complicated than that because Google, while the largest and arguably most effective, is not the only player in this game. There are a lot of other corporate and social influences at play. This is just to answer the question about what changed at Google.

> They don't consider it a problem or a violation because they don't mind targeted ads, they don't mind giving up their data in exchange for services, and they don't (want to) understand why people who aren't them might object.

And worse, they never thought to ask. Most users never really had the opportunity to provide informed consent.

Yep. "I think this way, therefore everyone else thinks this way," is an incredibly common human fallacy.
Seems to equally apply here though. Many people are perfectly fine with targeted ads in exchange for free useful services. I would even propose the majority (otherwise these services wouldn't be popular in the first place!).
> > > Most users never really had the opportunity to provide informed consent.

> Many people are perfectly fine with targeted ads in exchange for free useful services. I would even propose the majority

I feel like these two remarks should be taken together, and not in isolation. My straw poll of a few non-technical folk in a highly-technical firm is that they're broadly unaware of these kinds of things (but everyone has anecdotes...)

Speaking for my own perspective, I was perfectly fine with Gmail when it first launched (1GB of free email storage in exchange for a computer scanning my mail and showing me text adverts on the side? DEAL!), mostly because in 2003 I had no idea what my data was worth (individually, very little. in aggregate along with eevryone else's? $GOOG indicates it's in the ~trillion range). Facebook? For sure! Have my favourite books, albums, movies, tv shows, all my photos, why not?

It took many years before the implications of that decision that we (collectively) made came through. Not everyone has the bandwidth to focus on this, and so it just becomes background noise.

There's been more than a few departures at Google recently. You have the profile departures of C-level execs; You've had prominent open source folks leaving projects like Angular. While some attrition is personal circumstance, you have to wonder how much is attributable to the changing identity of Google itself.
> From what I see many techies are now aware and upset, and hardly anyone seems to want to defend Google anymore.

From what I've seen is it's like it's always been: people are upset for a day or two and then continue to not care, and continue to (directly or indirectly) support the evil they were upset about. It's incredibly difficult to get even geeks to support a cause if it requires more than pressing a like button or posting a comment.

Also, it's not like Google's wrongdoing are recent news. Anyone remember Google Watch (the site)? People have been warning and predicting things since very long ago, yet the geek crowd never seems to hesitate to embrace the next soon-to-be evil company and their proprietary offering.

> From what I see many techies are now aware and upset, and hardly anyone seems to want to defend Google anymore.

To me, the explanation is simpler: people don't want to defend Google on HN because they'll get downvoted or shouted down because of it.

There is little point trying to correct misinformation about Google on Hacker News anymore, because people will just make up more tomorrow, and it will get hundreds of upvotes if it looks vaguely plausible.

So, people who want to dislike Google will find everything they need to confirm their biases here.

IIRC it's not that long ago that trying to criticize Google here on HN was an exercise in futility.

I won't say that the current situation is perfect but I can see why. In my view Google had earned the current criticism by hard work:

- mismanagement of services people loved to the point were Google always running 3 different more or less incompatible message services, while closing services east and west has become a meme,

- shoving other ideas down people's throats (hi identity and real name part of Google+)

- etc

>From what I see many techies are now aware and upset, and hardly anyone seems to want to defend Google anymore.

Be careful, most of us on HN are part of a very small echo chamber. "What you see" is a small, non-representative portion of "techies". If it wasn't Firefox wouldn't be at sub-5% in general usage surveys and AMP would've died years ago.

You can see all the domains they add the header to here: https://chromium.googlesource.com/chromium/src/+/master/comp...

Previous discussion: https://news.ycombinator.com/item?id=21034849

This seems like a cut-and-dry case of getting caught in monopolistic behavior. The code is right there. The Chrome codebase has special features for Google’s own web properties.

I hope all these AGs suing google have some good tech advisors. It’s hard to keep track of all the nefarious things google has been up to over the past decade.

Perhaps you can send a summary to them, including the evidence?
> This seems like a cut-and-dry case of getting caught in monopolistic behavior. The code is right there.

???

Is "Darn, their browser only gets to track me on their own websites; if Google were playing fairly, they'd send the tracking header to all websites so I can be tracked more and have less privacy" the argument you're making here?

And it's debatable that this header is actually serving a tracking purpose at all. Being limited to their own web properties cements it as a diagnostic to me. What use is a tracking header that only gets sent to domains they already know you're visiting?

You realize that whenever a user visits a page that uses AdWords, AdSense, or login via Google, they download a script file from one of those domains, right?

So a user can log into Google and then log out, tying that header data to whatever PII Google has attached to them, and future visits to any sites using those and probably other services can be attached to the individual, despite them having intended to be logged out of Google services.

All I’m saying is the optics are not good. This is the kind of code you could show a jury. A high schooler who took “intro to CS” could understand what it’s doing.

It’s literally a conditional attached to a list of strings comprised solely of google advertising domains and hosts that distribute scripts from those domains.

When you’re talking about anti-trust, it doesn’t look good. Will this be a nail in the coffin? Unlikely. Will it help Google with its legal trouble? Definitely not.

(comment deleted)
Security flaw? Surely some entity is squatting youtube on some TLD?!

If there is a country TLD of X where Google owns google.X but entity Y owns youtube.X then entity Y gets the X-CLIENT-DATA header information. See usage of IsValidHostName() in code.

like youtube.vg that is available ?
(comment deleted)
so that you don't have to pay royalties to other browsers for being the main search engine. I mean you have to pay one less. And if you have the most used browser, you save a lot.
In the good old days everyone and their grandmother just sideloaded their malware toolbars with freeware crap like picasa or maps or outright bundled their bloatware with the system like Google still does for Android.
I visited my family a couple of weeks ago and was shocked when my father told me that his phone 'received' some of our photos. I checked and a huge chunk of whatsapp photos that were backed up by my wife's phone had ended up in my dad's Google Photos account. I discounted it as my wife accidentally sharing the whatsapp folder with my dad but now I'm not so sure.
Yup, that's one of the issues you'll get with interlinked accounts; in this case, Whatsapp backs up / stores photos automatically to your phone's photo gallery, and said photo gallery is automatically synchronized with the cloud.

I don't know exactly what's going on with your wife's / your father-in-law's accounts though, are they sharing Google accounts, photo albums, or were the photos shared in the same whatsapp group?

> are they sharing Google accounts, photo albums, or were the photos shared in the same whatsapp group?

None of these. They don't share any accounts. I don't share any account with my father either. Me and my wife use the shared galley feature. The photos that ended up on my fathers phone were shared by me and my wife with each other on whatsapp. I suspect either mine or my wife's gallery somehow "leaked" into my fathers even though none of the accounts have any connections AFAICT. Probably we clicked some share button somewhere accidentally but I couldn't find any shared galleries on any of our phones.

Ahh the good ol HN "stop using Google and start using Firefox" advertisement.

It's a bit odd to see this in every Google thread.

Btw, Firefox is too slow.

It's not odd at all. It's what the folks at Mozilla do. They jump in to every thread to push Firefox and Rust and make people think it's more widely used/better than it is.
Not everything is a conspiracy. I'm not a Mozilla employee, have never been one (probably never will be one). Firefox is awesome, fast, and extensible. It's my daily driver for all of my machines.
Same. It works great and uses less RAM than Chrome.
Side question: I've been trying to switch to firefox as my main browser but one thing is holding me up. When I'm using a private window, cookies are not shared between private tabs. I can see the advantage to that behavior, but is there a way to share them so that I can be logged into the same site in multiple private tabs? Unironically, I haven't had any luck googling this problem.
If you open a new tab from an existing tab, your session persists across tabs. So, for example, middle clicking on the Hacker News logo will preserve your HN session across tabs.
Huh, this is how I expected it to work and it does work for hacker news but it doesn't work for one site I want it to work for. I'll have to dig deeper, thanks.
You can make as many separate containers as you like, where each tab shares the cookies with all the other tabs in that container. For example, I have a Facebook container that only shares with Messenger and none of the other tabs. I can see it works because sites that are logged in on one container are not logged in on others. It's easy to right-click and reopen a tab in one of your other containers.
And then? I use it and judge it bases on it's merits. Surely they know this (and hence decided it's worth the time?)
People who push conspiracies without solid evidence should be jailed. Or at least publicly ridiculed.
I work for Mozilla?

Huh. I should ask for a pay rise...

I think most people who advocate Firefox are not Mozilla employees. I am for sure not one, I do not even like Mozilla, but they are a much lesser evil compared to Google. And I think having multiple competing browsers is vital for preventing the internet for becoming a walled garden owned by some big corporation.
Isn't moz pretty much funded by google?
as a defense against antitrust accusations. microsoft once funded apple too
Could it be because people who like their browser tend to tell others about it? I have absolutely nothing to do with Mozilla but I think the internet would be a better place if more people used Firefox.
> Btw, Firefox is too slow.

Ahh, the good ol' "Firefox is too slow for me to consider it" statement. Is there any evidence that Firefox is slower then Chrome other than old lingering memories of Firefox being slow ten years ago?

I have used both Firefox and Chrome and I can't subjectively tell that one is significantly faster or slower than the other. To be fair, I only have a handful of extensions and rarely have more than ten tabs open at a time, so my use case may be atypical.

I love that Firefox exists and Quantum is an amazing step forward, but Firefox still regularly runs away with gigabytes of RAM and hung worker processes. I have no problem with long-lived Chrome sessions but I need to restart Firefox ~daily. It's not bad memories of 10-years ago.
I've been using Firefox as my daily browser at work, home, and on my mobile devices, and I've literally never had issues with Firefox taking up too much RAM. Chrome on the other hand was always one of the main culprits when my computer(s) would start to slow down.

This is the problem with anecdotal evidence; everybody's subjective experiences are slightly different and further colored with their own biases, so you can never get hard facts out of it.

And yet Chrome consuming huge amounts of RAM is an actual meme
Same for me.

I've been using FF for a couple of months and I get huge random CPU spikes on my MBP that go away once I restart it. It works fine on my iMac and Windows tower though albeit JS execution seems slower (I mostly work on front end stuff).

It also seems to consume more battery on Android than Chrome although I admit I've never made any serious testing.

The difference is extremely noticable. So yes.

I can open up 2 tabs and Firefox is still loading the page.

Firefox isn't too slow, but you might be talking about how Google optimise their sites for Chrome at the expense of Firefox's performance through browser sniffing.
Google is a total-spectrum surveillance company. Advertising is a product they offer to their clients. (No, that is not you and me.)
I don't understand why Google and some other tech companies use their users as involuntary, unpaid guinea pigs. No consent. No opt-out.

What's the motivation? Is it simple laziness because they don't want to deal with wetware? Is it afraid that if people knew what was happening they wouldn't be happy? Google has eighty brazillion employees it can test new features on.

Isn't that what most A/B testing is?
No, it's what unethical A/B testing is.
" involuntary, unpaid guinea pigs. No consent. No opt-out"

That sounds like all A/B testing...

"Scientists run tests on guinea pigs. A/B testers run tests on me. Therefore I am a guinea pig. Guinea pigs have no rights. Therefore A/B testers are taking away my rights."

I've never been a fan of this particular type of logic and reasoning (or lack thereof).

Yeah I agree. A/B testing is generally ... innocuous.

The idea that such a pattern is as severe / bad as described I don't think makes sense.

That sounds like all A/B testing...

In the tech world, maybe. But not in the real world.

For example, one of the colleges I went to was in an area with a lot of pharmaceutical companies. My friends would A/B test drugs for the companies. They made enough money to pay for college. But it was all completely consensual, with contracts and disclosures, etc...

Companies in the increasingly morally bankrupt SV bubble just test on people without letting them know about it. That's the problem.

In the tech world changing the background color on a webpage to see what I do and ... medicine are pretty darned different.
Like it, or not, these companies believe the terms of service at the bottom of the page suffice for your consent. We really need this problem to be tackled on many levels (legal precedents that terms don't matter, education, encouragement of good alternatives, etc.)

Until that time, folks in the SV bubble will just keep doing this. Companies that can operate only from the US are effectively untouchable when it comes to regulation. Big companies like Facebook get caught a bit because they have offices, but many no name companies acting as data brokers, etc. don't have a presence and are hard to deal with.

... what?

If you aren't paying for it; you are the product. Simple.

Nowadays you are the product even if you pay. (E.g. Subscription news sites including trackers on subscribed users, smartTVs siphoning data etc)
Thing is the TV's you're only half the customer. That's why the TV's have gotten so cheap, the extra revenue stream from selling data. You can't even buy a dumb TV any more.
My gas pump feeds me ads while I pump gas that I paid for.

T-mobile sends me ads over SMS that I paid for.

JetBlue serves ads to paying passengers on the seat-back displays.

I hear Windows has ads now, but I got off that ship a while back.

Being the customer is no longer sufficient; companies have figured out that they can make more money by charging you and serving you ads.

I agree completely, that's what's so messed up with this "freemium" model that's so popular these days. If companies need to develop the ad-ridden version with tons of tracking to monetize free users anyway, what's the incentive for them to turn it off for paying users?

It's not like 99% of them are going to care and/or notice anyway, and if anything it would be more work to test and maintain a different version of the code without trackers.

Just pay for the things you use people, and block everything you can with browser plugins. This model needs to die.

But what about people like me that are paying google (quite a lot actually)?
I don't understand your group. The company that offers everything for free for the price of privacy and you also give them money?

If I was paying for a service that didn't respect my privacy I wouldn't give them my identifying payment info as well. Your fingerprint is connected to all of the credit data providers. If you didn't pay they had to guess or connect you another way.

Same reason people use amazon/aws or microsoft/azure.
> If you aren't paying for it; you are the product. Simple.

This nonsense should belong into Ron Swanson Pyramid of Greatness along with: Capitalism - God's way of determining who is smart, and who is poor.

This is a meaningless cliche. Just because users of Google products don't pay in cash to use them doesn't change the fact that Google has to attract the users to their platform in the first place, and keep them there.
No, Google has paid to be the the default in most cases.
Anticompetitive behavior is a different and unrelated problem from monetizing your products using advertising and personal data
Your original comment suggests otherwise.
1. It's about the money.

2. See 1.

> I don't understand why Google and some other tech companies use their users as involuntary, unpaid guinea pigs. No consent. No opt-out.

It's crazy to me to think about when I was in college (in the mid aughts), I was doing a lot of research into Native American cultures. The amount of releases, paperwork, and other hoops you had to jump through in order to just interview subjects was pretty daunting.

The fact we have become involuntary research subjects without any protections as a research subject or easy way to opt out of these companies data collection (which itself is an ongoing form of research) is staggering to thing about.

Microsoft Vista was a Windows 7 beta, and was "necessary" to basically experiment on the entire Home market, to make the product stable enough for enterprise.

Although Window 7 may have been one of the most complex software deployments in history, needing to support decades of poorly written drivers, while making the system both stable and compatible.

>Microsoft Vista was a Windows 7 beta, and was "necessary" to basically experiment on the entire Home market, to make the product stable enough for enterprise.

That claim is directly contradicted by the fact that there's Windows Vista enterprise edition[1]. Vista is also supported for a full 10 years just like 7, which would be strange for something that was supposed to be an "experiment".

[1] https://en.wikipedia.org/wiki/Windows_Vista_editions

most enterprises skipped it.
I still do'nt understand how people ask these questions when it's been it since 30 years.
Google employees are not a random sample of their user base, so such experiments would be meaningless.

See the fiasco where they broke Terminal Services last year as an example of what can go wrong even when doing experiments on the whole user base.

Also consider how to measure the usage of web features Google's own websites don't use, but are popular on e.g. intranets in Korea.

A/B testing isn't bad, it's a good thing. People are notoriously not very good at giving feedback. Experiments and usage statistics let you get the ground truth about what they really value, and what's really working.

A/B testing as implemented in industry is -evokes emotional responses eerily similar to those evoked when gaslighting is noticed -uncompensated -inconsistent with any semblance of established research ethics -generally non-consensual -completely undermines trust

I'm not normally one to make a big deal about this sort of thing, but there is a reason research ethics exist. If one can't be trusted to even attempt to follow ethical research protocols, one damn well shouldn't be trusted with anything important.

Your user's time and information is not yours to share. Whether you bury it in the fine print or not.

Google employees are not a random sample of their user base, so such experiments would be meaningless.

This is a lazy argument. Google isn't some scrappy tech startup where 90% of the employees are programmers. Google has legions of lawyers, mailroom clerks, accountants, travel coordinators, janitors, cafeteria workers, middle managers of all stripes, and so much more. Thousands and thousands of people it can test on without violating the privacy of the general public.

> No consent. No opt-out.

Do you understand what licensing is? That's one of the underlying aspects that's important with software and why you can't treat it like other things you buy. I'd add it's also why things that adopt software-style licencing models are bad too.

A company creates a licence with terms and you agree to use the licence under those terms by using the software. The terms are difficult to change unless you have leverage. The only party other than the company is often the regulatory authority. Regulation is limited in the US at best when compared to the EU. If you are from the EU then you probably assume the US works similarly, but most Americans don't recognize issues like this one. When they do, it's hard to fight the incumbents and make something opt-in, or ban it outright.

> What's the motivation? Is it simple laziness because they don't want to deal with wetware? (the start of your first paragraph applies here too)

It's fairly simple. The motivation is making correct decisions based on the gold standards of decision-making that some people aspire to. The model is not dissimilar to clinical trials where a treatment is given to some individuals and not to others. The hope is that this form of experimentation removes bias and let's the product manager make the best decisions.

Based on this thinking it is not possible to test with just Google's employees. For many decisions, the bias will be significant, and ultimately the belief is that worse decisions will be made for users.

I'm trying to convey that in as neutral way as possible. I think this can be a useful technique, but I think that there is little discipline and accountability in the wider software world compared to medicine. You have PMs who'll routinely just run an A/B test longer to collect more data (that's better, right?), but invalidate their results, just to please management.

If anyone is going to implement this approach then I'd trust Google to implement it effectively to meet their needs. They do it on a large scale across their products and have many layers of people to ensure it's effectively meeting their needs. As stated in the previous paragraph, this doesn't mean that other people do it right, or that everyone in Google does it right every time. I'm sure they've had a fair share of failed experiments.

> Do you understand what licensing is?

Nope, no one understands licensing. Which means that arguments grounded on "The user accepted the terms!" has a shaky ethical foundation. Not necessarily a shaky legal foundation, although that wheel seems to be turning.

It's because most people don't care and if it means that they have a better product at the end of it, they'll take the trade.
Bias up front: I work at Google but am not speaking for Google.

> involuntary, unpaid guinea pigs.

I don't see how this is involuntary. You are choosing to use the product. If you choose to use the product, yes, you may be exposed to features that the product has. If you don't want to be exposed to those features, the way to opt out is to not use the product.

> What's the motivation?

It lets the company incrementally roll out and test features in real-world network configurations at scale. As far as I know, almost all tech companies do this.

Let's say you're Fapplebooglezon and you have an idea to put kitten emojis on the "Buy Now" button. Before you ship that, you want to make sure that:

1. The feature works correctly. It doesn't crash or have significant performance problems.

2. Users, in aggregate, like the change. No one wants to ship a "New Coke" debacle. It's bad for the company (they lose money) and bad for users (they don't like the product).

3. Your servers and network can handle the consequences of that change. Maybe users will be so excited that they all click "Buy Now" twice as much. You need to make sure your servers don't crumble under the increased load.

These are reasonable things that benefit both the company and users. So the way features and changes are usually shipped is like:

1. The feature is implemented behind some kind of flag. [0]

2. "Fishfooding" [1]: The team developing the feature starts using it. This gives you some feedback on "does the feature work correctly" but that's about it. The team owns the feature, so they are biased in terms of its usability. And they are on a privileged network and not a large enough population to verify how this affects the distributed system.

3. "Dogfooding": The entire company starts using it. This starts to give you some usability feedback because now people who don't have a stake in the feature are being exposed to it. But it's still skewed since employees are likely not a representative user population.

4. "Canary": The feature is enabled for a randomly selected small population of external users. Now you start getting feedback on how the feature performs in the wild on real-world machines and networks. The percent of users is kept small enough to not crush the servers in case anything goes awry, but you can start getting some performance data too.

5. "A/B testing": Now you start collecting data to see how behavior of users with the feature compares to users without it. You can actually start to get data on whether the feature is good or not.

6. Assuming everything looks OK, you start incrementally rolling it out to a larger and larger fraction of users. All the while, you watch the servers to make sure the load is within expected bounds.

7. Once you get to 100% of users and things look good, you remove the flag and the feature is now permanently enabled.

> Is it simple laziness because they don't want to deal with wetware?

Google, like most other companies, also does lots of user testing and user surveys too. But that doesn't give you insight into the technical side of the question — how the feature impacts the behavior of your distributed system.

You may not be aware of this, but this kind of in-the-wild product testing is something almost all businesses do, all the time. Food companies test new products in grocery stores in selected cities [2]. Car manufacturers drive camoflaged prototypes on the road [3]. Restaurant chains tinker with recipes to see how sales are affected. There is absolutely no guarantee that the Coke you're drinking today has the same ingredients as the one you had yesterday.

You seem to think this is some nefarious scheme, but it's just basic marketing. You want to make a thing people like, so you make two things and measure which one people like more. People "opt in" and "consent&quo...

I don't see how this is involuntary. You are choosing to use the product

It's involuntary because it's not informed consent. Google doesn't tell people up front or in any meaningful way that this is happening.

That's like saying "Oh, that steak was covered in the chef's experimental hot sauce that we didn't list on the menu? Well, too bad, you chose to come to this restaurant."

> It's involuntary because it's not informed consent.

I think you're making an analogy that doesn't logically apply. "Informed consent" is a property of healthcare administration. When you're putting drugs into someone's blood stream or cutting them open while anaesthetized, yeah, you need to make damn sure you're doing the right thing for them.

> the chef's experimental hot sauce that we didn't list on the menu?

Likewise, when you're serving food that someone will ingest and which may cause allergic reactions or food poisoning, again the bar is pretty high to make sure you are treating people safely.

But we're talking about using a free piece of software. If Chrome changes the color of their tab bar, no one is going into anaphylactic shock. When Facebook adds a new button on the sidebar, there is little risk of that inadvertently severing someone's carotid artery.

>I think you're making an analogy that doesn't logically apply. "Informed consent" is a property of healthcare administration.

No, it is used in healthcare, but it is by no means exclusive to that domain.

And the European Union clearly has a different opinion when it comes to the use of personal data:

"Consent should be given by a clear affirmative act establishing a freely given, specific, informed and unambiguous indication of the data subject's agreement to the processing of personal data relating to him or her, such as by a written statement, including by electronic means, or an oral statement. This could include ticking a box when visiting an internet website, choosing technical settings for information society services or another statement or conduct which clearly indicates in this context the data subject's acceptance of the proposed processing of his or her personal data. Silence, pre-ticked boxes or inactivity should not therefore constitute consent. Consent should cover all processing activities carried out for the same purpose or purposes. When the processing has multiple purposes, consent should be given for all of them. If the data subject's consent is to be given following a request by electronic means, the request must be clear, concise and not unnecessarily disruptive to the use of the service for which it is provided."

Recital 32 of the GDPR

If I use a bunch of older Chromes from portableapps, are those affected by feature testing, provided I've disabled google update but I'm not behind a firewall?

In other words, is feature polling just hard-coded or it is bound to a specific installation?

Do you get the consent to observe everyone you interact with?
I was fooled by Google for a while, thinking it was less evil than FB. They're just a little smarter about their shittiness.
I noticed this when doing work with Puppeteer lately. I thought about reporting it but didn't exactly know what I was looking at.
I see people recommending Firefox, but I'll say that for mac users Safari is a very usable browser too. It's quite fast, and to my knowledge is not collecting/sharing my personal data with apple. https://www.apple.com/privacy/

These days I only use chrome for the g-suite tools that seem to require it to avoid mid-meeting crashes.

Safari as well. Almost anything but Chrome. Both Safari and FF are good. Im only using these 2 myself
Safari is horrible for HTML5 games. Dealing with all sorts of issues to the point where I've more or less given up and just tell my Safari players to use something else.
Some of my front-end colleagues like to tell me that Safari is the new IE 6. Not in terms of the market domination (that's Crhome for you), but in terms of dragging the front-end back with unimplemented features, quirks, and bugs. The amount of hacks they have to add just to support Safari is uncomfortable.
No, they are confusing developing for Chomium first and not testing on all browsers.

Safari is behind in terms of W3C features. But implementing unsupported features does not mean you are hacking to support Safari. They should look into the progressive enhancement principle and CSS @support feature.

I'm strictly talking about the canvas and audio implementations, forcing me to use all kind of different hacks just to get a reasonable FPS in Safari. Audio I've given up on long time ago and don't get me started on Mobile Safari.
Safari has the same kind of AdBlock limits that Chrome team wants to implement. Also it's kinda behind the curve on iOS when it comes to features.

Not to mention the fact that iOS users are forbidden from using any competitive browser, including Firefox.

I'm not sure what you mean by forbidden? Chrome and Firefox (and other browsers too) are readily available through the iOS app store.
Those iOS browsers you see in the app store are just wrappers for the same Safari browser engine.

They all use Safari to display the page, they just wrap the Safari browser engine with their own toolbars and other features.

WebKit is not Safari.
And they don’t open when you click links on the device, only MobileSafari does.
Safari on iOS is great. Safari on Mac is underwhelming and sucks.

My biggest gripe is I can’t update it without updating the entire OS. Also, dev tooling is really bad. God help you if you ever need to unregister a service worker.

For non-developers, which is most people, those are non-issues. Safari is excellent for the things that matter: speed, power usage, and integration with the rest of the Apple ecosystem.
Agreed. Although Firefox is probably better for general purpose browsing if you are a non-dev power user, especially one who cares about ad blocking.

The integration is a good point.

Have you tried Safari Developer Previews? It's been a while since I've used them myself.

[0] https://developer.apple.com/safari/download/

I have not. I don’t think they have any extra dev tools though; it’s just the later version of the browser (which, granted, may include improved dev tools). And you still need to be on latest macOS to run it.

But thanks for the tip on the preview releases; I’d forgotten about those. I’ll check them out.

+1. Safari is great. Super fast, great on battery life, and has most, if not all, of the extensions you would look for.
With that said, one can simply filter out these analytics with a c:\Windows\Systems32\Drivers\etc\hosts -> pointing to 0.0.0.0 or PiHole solution (https://pi-hole.net/), yes?

I mean, this is probably not the holistic solution, but this is why we have a firewall, vpn, antivirus, filters to just keep DNS in check, yes?

So are you suggesting people should DNS block google.com and gmail.com?
There are certain sub-domains that block certain things that keep most of the bad guys at bay, but to some extent yes. This is a fringe case of those activities, but being paranoid is not a bad thing these days, considering the level of red team activity and bad actors probing your network / computer / devices.

Short of putting on the tin foil hat, mind you.

Yes, you can if you are willing to block google.com, android.com and youtube.com.

doubleclick.com might not be terrible for most, though.

Interesting enough, it does not add headers when accessing a country specific google domain in the EU - such as google.de or google.fr. Is that GDPR kicking in - with a nod the the brexiteers given that google.co.uk gets these headers... ?

Not sure, but my chrome will send the additional `x-client-data` header even when i'm on eg. `google.de`
PII concept is not the same for everyone/everywhere. For GDPR we have:

> Article 4(1): ‘personal data’ means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;

If this chrome browser ID is matched against a (for example) google account, then they can track every single person. And that is just a couple of IDs, let alone all the quantity of data they have.

It's against GDPR to not be clear about this kind of ID. If my browser has an unique ID that is transmitted, then this ID can be coupled with other information to retrieve my identity and behavior, so it should be informed (in the EU).

EDIT: TD;LR, hiding behind "there is no PII in that ID" is not enough.

Who's going to raise this issue though? And what if they put this in the browser's T&C?
> Who's going to raise this issue though?

I'm sure there is someone out there who takes these kind of things seriously. Not me. I use firefox for that matter.

> And what if they put this in the browser's T&C?

Then the rest of GDPR applies: a clear message about the browser sending this info has to be shown, explaining why, with who they'll share it, the time they will keep this info, plus no auto opt-ins, the possibility of asking Google (or whatever) all the info relative to this ID and the option to cancel all the data, etc.

I thought they needed explicit consent. T&Cs ain't that.
This is why I consider the GDPR to be unrealistically broad in its definition of PII; it denies even innocuous feature-mode-distinguishing headers intended to allow for bug-identification of massively-distributed software installs.

If I'm given a forced choice between "more privacy" and "better software quality" I'm going to lean towards "better software quality."

Me too. Then a breach happens and someone with a straight face tells you: "we take your privacy very seriously", asking apologies, because the breach used some of your data to push some political campaign or to bother you with spam/extortions because that night you were watching some porn.

Programmers should stop pushing buggy or incomplete software as is, and start releasing software that works. Otherwise upper levels have an excuse to do all this "experience" telemetry, and we all are smart enough to see the consequences of a data breach.

> Programmers should stop pushing buggy or incomplete software as is, and start releasing software that works

If you demand a perfection-of-function guarantee from something as complicated as a web browser, you'll never get a web browser with more features than the ones released in the '90s (and I'm not even sure we'd be that far along by now).

If I'm given a forced choice between "more privacy" and "the software ever having the features I want to use" I'm also going to lean towards "the software ever having the features I want to use." And we know this is true for users in general because of the number of users who had Flash installed back-in-the-day in spite of the fact that it allowed a total bypass of the browser security model, because it had features that the browser lacked otherwise.

Instead of giving my privacy away, I prefer software like anything that you have installed from a CD-ROM back in the 90's and didn't needed a weekly update. Games, 3D-Studio, Autocad (to name a few) were more complex than a web-browser (a today's web-browser) and didn't needed a weekly update or the hunger for user-requested features, let alone dialing home because. The world worked relatively fine without the up-to-date wankery we see today.
I remember them.

They were also buggy and could crash their resident OSs all the way to a stuck state, and if they did, the solution was "Try not to trigger that bug again."

Software quality has significantly improved in the era of easy patch access and auto-patching.

Holy Jesus. Those things were chock full of security holes. If you used a web browser that arrived on a CD ROM you'd be advertising massive pwnability.

In fact, you could easily simulate this by using last year's Firefox.

Firefox, chrome, linux ... all are full of unnecessary complexity. The point being - we need daily patches to keep it from falling apart.

I have links (or lynx) on an old SuSE, maybe even a Mandriva CD. Would they be massively pwnable?

Hard to say, but not necessarily a great example; exploits on software are a function both of attack surface / complexity and installed userbase (i.e. nobody bothers to see if lynx is pwnable because a zero-day against that browser will be worth, what, twenty bucks to gain access to the five people who use it?).
Perhaps. Perhaps not. As a thought experiment:

How long would it be safe to go without browser updates with a browser of complexity/capabilies of links, if 50% of people used it?

With many people combing through it, would it become effectively unexploitable?

Probably not very long. Even with a small attack surface, if half the world uses it, the zero-days are valuable. Links is still vulnerable to

* application-layer attacks (it is still an HTTP client and HTML parser, and the protocols themselves are complicated to implement soundly, even if the newest features aren't included)

* protocol attacks (is links immune to buffer-overruns triggered by intentionally-malformed queries? Probably not, since it has no total-soundness verification. And the source code isn't open-source so )

* dependency attacks (it uses svgalib [https://www.cvedetails.com/vulnerability-list/vendor_id-84/p...], and every third-party library is a potential attack vector)

* good old-fashioned UI spoofing (is links' UI design immune to allowing web pages to show an image that tricks the user into thinking they're looking at the links UI itself?)

In this thought experiment, any successful attack has massive value so we can expect bad actors to be hammering on the system and finding most such exploits available on the application.

> .. source code isn't open-source ..

Not sure what you mean, but then what is this: http://links.twibright.com/download/

> In this thought experiment, any successful attack has massive value so we can expect bad actors to be hammering on the system and finding most such exploits available on the application.

Precisely, and because of that, with 50% people using it, an orders of magnitude smaller attack surface and a mostly fixed feature set (you could at least have a LTS version), just how many vulnerabilities are there to find? How many man-years of work until there is nothing¹ left to find? Do you think that just any code has exploitable vulnerabilities, you just need to look hard enough? And with each fix, you can repeat that ad nauseam?

With the current browser development efforts, would we end up with a 100% formally verified browser, including its dependencies, networking, and maybe even relevant parts of a linux kernel?

Judging by the change log[2], links is currently developed by 1 developer and occasional contributions.

¹ Nothing of sufficient importance, frequency and lack of reasonable mitigations like not clicking on browser look-alikes, server-side CSRF protections, etc.

[2] http://links.twibright.com/download/ChangeLog

> you'll never get a web browser with more features than the ones released in the '90s

I would actively prefer a web browser that lacks the features added since the '90s.

That's understandable, but it isn't what most people want---developers or users alike.

Browsers aren't just thin-clients to support HTTP protocol and HTML rendering. They've grown to adopt a new distributed computing paradigm, not unlike UNIX and its descendants grew to support a new multi-user-cum-multi-process paradigm. The things web development offers---location agnosticism, platform agnosticism, combined multimedia interaction, a workable security model for multi-source aggregate-component content---are eating software development, and the browser is becoming the OS of the modern era. We know users want this because users were willing to use Flash (even though Flash broke out of the security model of the old browser).

There'll always be a place for small text-based pages much as modern computing will always have a place for command-line tools, but the genie is out of the bottle and it won't be put back in.

> it isn't what most people want---developers or users alike.

I'm fully aware of this, and this, at heart, is why I'm certain that the day will come when I can no longer use the web at all.

The mozilla suite in 1998 included a browser, an email/newsgroup client, an IRC client, an address book and an html editor.

Modern browsers for all their bloat actually have less features.

Such suites are not browsers. They include a browser.
> This is why I consider the GDPR to be unrealistically broad in its definition of PII

And I consider it far too narrow.

> If I'm given a forced choice between "more privacy" and "better software quality" I'm going to lean towards "better software quality."

Fair enough. I would go for "more privacy", personally. There is no technical reason why both of our preferences couldn't be honored.