tl;dr if you can navigate to chrome://site-engagement in your browser and you see a list of sites, this “internal” scoring can be used by fingerprinting scripts to better identify you
tl;dr if you can navigate to chrome://site-engagement in your browser and you see a list of sites, this “internal” scoring can be used by fingerprinting scripts to better identify you
I can happily report that from the Cromite Android browser, there is no Site Engagement list, so AFAIK it’s only “impossible to disable” from Chrome itself.
And I’m not sure about their conclusion either, because “allow fancy spoofing warnings for better security, or disable them entirely for better privacy” seems like I heck of a dichotomy. Why not just go with the ugly full page ones and let that be all?
I can see warning fatigue being a problem and trying to avoid the use of the interstitial pages because of that. That don’t want to display the big warning when they’re not confident as then people might ignore those in other contexts (cert errors, phishing/dangerous sites, etc).