I can’t believe I’m having to write this code in a fucking web server. What a mockery of the web, human rights, and the GDPR.

Fuck you, Google!

#FLoC #Google #SurveillanceCapitalism


@aral how long until a modification breaks this? giving it a month.

· · Web · 2 · 0 · 1

I wonder if there's a way to get nginx to send it for every website it serves, w/o editing each config?
I'm sure they'll break this in time anyhow.
@nergal @aral

@gemlog @nergal @aral

It might be something like:

add_header Permissions-Policy interest-cohort=();

I haven't checked yet, but tonight will ben Nginx time.

@gemlog @nergal Don’t know. Will boost for you. I’ve been much happier since I’ve replaced all my nginx installs with Site.js ;)

@aral @nergal
Well, it's a question for apache and any server really, but they'll be all different.
I don't have that many sites and I could hand-bomb each config, I just imagine chrome will subtly change how they deal with the header or 'enhance' it with options that break my edits and it will need to be done all over again. Seems guaranteed really.

@gemlog @nergal @aral In an http, server, or location block, put add_header Permissions-Policy 'interest-cohort=()';

Yes, claro, but I want to put it in a single place and have all websites use it, not just the one I edit.
@nergal @aral

@gemlog @nergal @aral Yup, in that case you’d put it in your http block.

Yes, but my sites-enabled has a dozen config files on a couple of different servers. It's ok, thanks.
@nergal @aral

@gemlog @nergal @aral Assuming you’ve got the fairly standard nginx config file layout, you should have /etc/nginx/nginx.conf looking something like

http { ... include /etc/nginx/sites-enabled/*.conf; }

That’s where you’d want to put it.

Ah, *that* file. thanks! I was trying to avoid editing all the things in sites-enabled :-) I forgot about that file as I've never touched it before. Thanks bud.


I've just made this change across all my self-hosted websites! Google Chrome *should* now be ignoring them for it's FLoC.

@mr64bit @nergal @aral @gemlog

@gemlog @nergal @aral I have one set of headers sent every time with every HTTPS request on all my virtual hosts. I added the header in that config file.

Yes, I restarted nginx/php7 and checked a random site and voila! :-)

@nergal @aral

@nergal They might. But not without (yet again) revealing their true face.

Sign in to participate in the conversation

Linux geeks doing what Linux geeks do...