Facebook: 'We don't track logged-out users'

[mongers]

This might be of interest to some here:

http://m.theregister.co.uk/2011/09/26/facebook_sees_logged_out_users/

Facebook: 'We don't track logged-out users'

Site hits back at cookie jar claims

By Richard Chirgwin

Facebook has attempted to shoot down claims that it leaves cookies on users' machines even after they log out of the social network. The response came after an Australian blogger alleged the site can still snoop on your web surfing after you've signed out.

Nik Cubrilovic, concerned about Facebook's approach to privacy, said that logging out doesn't make a blind bit of difference, adding that Facebook still has ways to potentially track your behavior.

Cubrilovic's conclusion after examining the behavior of Facebook's cookies is simple: "Even if you are logged out, Facebook still knows and can track every page you visit."

This is because instead of telling browsers to remove cookies when users log out, Facebook merely "alters" the state of those little parcels of data – including the cookie that stores your account number.

As a result, if you happen to pass by a page with a Facebook "like" button, "share" button, "or any other widget", your information – including your account number – will be sent back to Facebook. And if you log into Facebook from a public terminal, those cookies could be left behind.

However, Facebook doesn't agree. Whether or not Cubrilovic's claim that he notified Facebook without response during 2010 is accurate, he certainly got a hair-trigger response from Facebook this time.

In a comment on Cubrilovic's blog, a Facebook engineer – identifying himself as staffer Gregg Stefancik – said that "our cookies aren't used for tracking", and that "most of the cookies you highlight have benign names and values".

"Generally, unlike other major internet companies, we have no interest in tracking people," the insider added

I've investigated the Facebook cookies on my own computer and this is what I've found:

I have numerous website tabs opened in Opera, that start up before I connect my ADSL, so the webpages load from cache and the cookies don't get updated as there's no connection. One of the opened pages is facebook, so when online I refresh it and check the facebook cookies from within the browser, there's 12 of them, all but one updated, showing "lasted visited" time of when I reloaded the page. So I log out of facebook, and the time of the cookies is updated.

Then a couple of minutes later I refresh a random page, happen's to be a DM page about the Queen and quess what, ALL 12 facebook cookies have updated time lasted visited to exactly when I refreshed the page.

[Ed Anger]

I clear my data after each session on Interwho. 

[mongers]

I clear my data after each session on Interwho. 

Yes but what this appears to do is, if at any stage you've used facebook during a session and even if you've then logged out, the cookies will continue to track some of your browsing behaviour until you 'wipe your data'.

[Ed Anger]

I clear my data after each session on Interwho. 

Yes but what this appears to do is, if at any stage you've used facebook during a session and even if you've then logged out, the cookies will continue to track some of your browsing behaviour until you 'wipe your data'.

They can follow me to the Hostess cakes page then. That doesn't bother me.

[PDH]

They can follow me to the Hostess cakes page then. That doesn't bother me.

Ding Dongs or Ho Hos?

[Ed Anger]

They can follow me to the Hostess cakes page then. That doesn't bother me.

Ding Dongs or Ho Hos?

Twinkies, Ho-Ho's, Donette's and those fruit pies.

I don't know how I stay a slim 170 pounds.

[Razgovory]

You know, an Idea occurred to me.  I may try to create a Facebook page for a lamp post in down town Jefferson City and see if anyone tries to friend it.  Perhaps a twitter account as well.  "Follow this lamp post on Twitter, it doesn't really go anywhere".

[Ed Anger]

You know, an Idea occurred to me.  I may try to create a Facebook page for a lamp post in down town Jefferson City and see if anyone tries to friend it.  Perhaps a twitter account as well.  "Follow this lamp post on Twitter, it doesn't really go anywhere".

@ JefCityLamp Post: I'm On!
@ JefCityLamp Post: I'm Off!

@ JefCityLamp Post: I'm On!
@ JefCityLamp Post: I'm Off!


@ JefCityLamp Post: I'm On!
@ JefCityLamp Post: I'm Off!


@ JefCityLamp Post: I'm On!
@ JefCityLamp Post: I'm Off!

[sbr]

http://www.bbc.co.uk/news/technology-15091674

Facebook fixes ID cookie glitch

Facebook has said that it has "fixed" cookies that could have tracked users after they logged out of the site.

The issue was brought to light by an Australian blogger who has conducted a year-long analysis of the social network's use of cookies.

He concluded the company might still be able to track members' web browsing after they logged out, albeit only on websites that integrate with Facebook.

The Australian privacy commissioner is reportedly investigating the issue.

In a statement, the firm told the BBC that it had done nothing wrong.

"There was no security or privacy breach—Facebook did not store or use any information it should not have. Like every site on the internet that personalises content and tries to provide a secure experience for users, we place cookies on the computer of the user.

"Three of these cookies on some users' computers inadvertently included unique identifiers when the user had logged out of Facebook. However, we did not store these identifiers for logged out users. Therefore, we could not have used this information for tracking or any other purpose. In addition, we fixed the cookies so that they won't include unique information in the future when people log out."
Cookie law

The blogger who first highlighted the issue, Nik Cubrilovic, wrote about the issues in detail on his blog on Sunday.

He said that he had informed Facebook about the issue a year ago but there was no response from the firm until his blog post was widely reported across the net.

In an update to his blog Mr Cubrilovic acknowledged the changes that Facebook had made.

"Facebook has changed as much as they can change with the logout issue. They want to retain the ability to track browsers after logout for safety and spam purposes, and they want to be able to log page requests for performance reasons," he said.

"I would still recommend that users clear cookies or use a separate browser," he added.

Most cookies perform basic tasks like storing your login details or personal preferences.

But some track the sites users visit, which means that they may be presented with adverts for products or services they researched on the web once they visit other unrelated sites.

Consumer concerns over this type of cookie led to a new EU directive, with online firms across Europe currently working out how they can allow users to opt out of these bits of code.

[Ed Anger]

I guess they can't see the redtube video I watched of this girl banging another girl with a strap-on then. I wanted Facebook to know that I watched that.

[Razgovory]

I guess they can't see the redtube video I watched of this girl banging another girl with a strap-on then. I wanted Facebook to know that I watched that.

I like how those sites now have a thing that asks you if you want to add it to your Facebook.  Yeah, I want my mother to know what porn I watching.

[Razgovory]

You know, an Idea occurred to me.  I may try to create a Facebook page for a lamp post in down town Jefferson City and see if anyone tries to friend it.  Perhaps a twitter account as well.  "Follow this lamp post on Twitter, it doesn't really go anywhere".

@ JefCityLamp Post: I'm On!
@ JefCityLamp Post: I'm Off!

@ JefCityLamp Post: I'm On!
@ JefCityLamp Post: I'm Off!


@ JefCityLamp Post: I'm On!
@ JefCityLamp Post: I'm Off!


@ JefCityLamp Post: I'm On!
@ JefCityLamp Post: I'm Off!

I'm afraid people will think I'm some sort of hipster who does this kind of stuff ironically.  I got the idea from a sign at the mall that said "don't forget to friend Jefferson City Mall", which struck me as kind of strange.  Well, I'm not going anywhere if don't find my glasses.

[Caliga]

I don't get these barcode thingies all over the place now that they want you to scan with your iPhone or Droid.  I can do that (I have a Droid), but why would I want to?

[Darth Wagtaros]

Its part of the process to get us used to trading things with The Mark upon them.  Soon Obama will reveal himself to be Nicholo Carpathian and the End Times will begin in earnest.