Quote:
Originally Posted by Pasanonic
As I understand it the website can never see the webwise UID
|
My understanding (but I'm open to correction) is that the webwise UID is stripped off the cookie by the Phorm kit before the page gets back to the web site.
However, if you visit a web site via a Phormed ISP, thus acquiring the Webwise cookie, then subsequently visit that same website via a non-Phormed ISP, thus bypassing the cookie-stripper, the web site will get the UID. However, what I was suggesting is that the web site uses client-side script to read the UID AT THE CLIENT END. It can then be used to generate a warning, or, if the web site is malicious, to simply copy the UID to a non-Phorm cookie for harvesting by the web server.