Mildly Infuriating @lemmy.world Sunny' 🌻 @slrpnk.net 7mo ago

The Duration Time on this Cookie...

Remember to use ad blockers and DNS filters ladies and gentlemen!

Have no idea what Otto[.]de is, nor do I have any plans to find out. But god damn thats a long as time. Its the equivalent of 9993 years if anyone was wondering...

Source; Cookie of a sketchy free VPN that I'm investigating.

53 comments

Otto.de is a big German online retailer.
- Bought a table from them once. Was not a good table.
  
  Bought a table from IKEA once, was not a good table either. You get what you pay for.
  
  I worked for them once. Was not a good experience.
browsers by default wont allow infinite cookies
- Which is great, but do you know if that the case for Android apps too? As that is the case in this scenario?
  
  how do you mean so? as in it's a web app? They have access to persistant storage.
If you don't have your browser set to delete all cookies you haven't made exceptions for, every time you close it, I don't know what to tell you. Except... "you should do that".
- I use Firefox temporary containers. So not only are they deleted 5 mins after I close a tab, but different tabs don't share cookies unless I explicitly allow it or the tabs are opened from one source (e.g. open link in new tab)
  
  Sounds good. Is that an option on desktop and mobile as well? Do I need addons?
- Why?
  
  Privacy. By using containers and deleting cookies frequently, you can minimize the amount of tracking and data collecting these scum sucking corpos are doing.
  
  otherwise cookies might stay on your computer for 9993 years.
Speaking about sketchy and durations...

The certificate for slrpnk.net expired on 5/6/2024.

Error code: SEC_ERROR_EXPIRED_CERTIFICATE
- How is that relevant here tho ? Not trying to be rude i just don't get it .
  
  OP fixed their certificate in the meantime so now I can actually see the image (without jumping through hoops to make firefox ignore the certificate error).
  
  3650000 days looks like a honest mistake, should probably be exactly one year. Which is long, but not an eternity.
I guess they are not using php.

First time I encountered a Y2038 bug in the wild. And apparently they still did not fix it for some inane reason.
- There's a long time to 2038, we can start to find solutions around the years 2026-2037
There isn't any reason for a site to limit the lifetime of most cookies. I have no idea why that field isn't optional.

Get an extension that will erase the cookies that you don't care about, do not abide by everything anybody on the web asks you for. And yeah, get an ad-blocker.
- At least here in the EU the ePrivacy directive and to a lesser extent the GDPR generally require that cookies have a limited lifetime depending on their function, to eg. prevent companies just attaching a stable identifier to every random passerby essentially forever. @[email protected], if you're feeling particularly mildly infuriated you could email the German Data Protection Authority, there's a good chance the cookie could attract the Eye of Sauron
  
  I'm not annoyed, I'm not using this VPN service, only doing research. However, I would appreciate it if you could link me to what you refer to with GDPR and ePrivacy setting a limited cookie lifetime!
  
  Jes but the company showed in OPs Image is a cookie of a German company. Otto de is like a German Amazon. And it is a GmbH so it's probably registered in Germany.
- I have no idea why that field isn't optional.
  
  It is. But leaving it off means that the cookie will be removed when the browser is shut down.
It is just a sketchy online company. You shootouts never buy there.
- OTTO is an age-old German mail order company, they started up in 1949. About 16bn yearly revenue. Second largest online retailer overall in Germany after amazon, larger than amazon in Europe when it comes to clothing. Which TBH actually surprised me I thought zalando had that one nailed down.
  
  They also own their own parcel service (Hermes). Are they sketchy? Yes, I mean they're turbo capitalists so of course they are. More so than amazon, nope.
  
  Wait, they own Hermes? That explains quite a lot...
  
  They were, like Quelle, one of those mail order companies well before Internet and Amazon. They were once even quite acceptable.
  
  They turned to the very worst, though. If you have a problem, then YOU have the problem. Parcel missing? Well, good luck. Goods are damaged? Nope.
GmbH has been shitting up the web for ~20 years now. First tracking cookie I ever blocked.
- ...you do know what GmbH stands for, right?
  
  It's like LLC or Corp.
  
  Hmm... the username. They know.
  
  I’ll take that information to the atm machine.
- FYI, GmbH isnt a specific company. GmbH is a German abbreviation, but in English refers to "company with limited liability".
  
  I know, I’m just joking about the way windows vista used to name tracking cookies. Rather, how sites named their tracking cookies. Given the replies, I take it no one else found it as funny as I used to.
- Frrr, boycott GmbH 🔥🔥

53 comments