I’m happy to see this being noticed more and more. Google wants to destroy the open web, so it’s a lot at stake.

Google basically says “Trust us”. What a joke.

  • lifluf@lemm.ee
    link
    fedilink
    English
    arrow-up
    16
    arrow-down
    4
    ·
    1 year ago

    explain like i’m a developer why wei is bad? ad blocking can already be detected

    • arthurpizza@lemmy.world
      link
      fedilink
      English
      arrow-up
      37
      ·
      1 year ago

      Only browsers blessed by a single company can view the entire web. Not exactly a feature of the free and open web.

    • SeriousBug@infosec.pub
      link
      fedilink
      English
      arrow-up
      21
      ·
      1 year ago

      What people are rightfully scared of is that:

      • Big websites will only accept attestations from big companies like Google, Apple, and Microsoft
      • Google, Apple, and Microsoft will refuse to attest your browser if you have an adblocker installed, or if you are using a browser or operating system they don’t approve, or if you made modifications to your browser or your operating system etc.

      While adblocking can be detected, you can block anti-adblock scripts, it’s sort of a weapons race. Depending on how deep an attestation goes, it might be extremely difficult to fight. Attestations might also be used to block more than just adblockers, for example using Firefox, or rooting/jailbreaking your phone, or installing an alternative OS might make your phone ineligible for attestations and thus locked out of a lot of the internet.

    • shrugal@lemm.ee
      link
      fedilink
      English
      arrow-up
      11
      ·
      1 year ago

      This is much much more than just ad blocking. The mechanism is so generic that it can be used to lock out users for whatever reason. If the “arrester” doesn’t provide the requested proof then you’re just shit outa luck. We should not hand such a power to anyone, let alone big for-profit companies.

    • HurlingDurling@lemm.ee
      link
      fedilink
      English
      arrow-up
      7
      ·
      1 year ago

      Basically the website will just not render if the browser does not have a proper credential, or if the ad’s are blocked. He’ll they could also block Linux OS clients from accessing these same websites.