: How to keep a visitor 100% anonymous Maybe a broad question, but how can you keep a visitor to your site 100% anonymous on your server. The site is written in PHP. No trace of what he or
Maybe a broad question, but how can you keep a visitor to your site 100% anonymous on your server. The site is written in PHP.
No trace of what he or she has visited on your site. Any suggestions?
More posts by @Hamaas447
3 Comments
Sorted by latest first Latest Oldest Best
If you are concerned that your application's visitor data may fall into the wrong hands, you should never collect any data an attacker could use against your visitors: this means your application should not be publicly available, because an attacker who gains access to your server or the network your server hosts on will always be able to monitor incoming and outgoing connections.
Make your application available only via TOR hidden service if you care about your visitors' privacy.
One main thing is going to be disable or limit access logging. You would have to configure your Web server not to log any user's IP addresses.
Also ensure access is not logged elsewhere in the system or the data center, no external applicances like reverse proxies are active, and so on.
Also as @JonahBron points out, don't use sessions. Best don't serve any cookies at all.
Encourage your users to use additional anonymization services on client side, like TOR.
Related interesting reading: Wikileaks' Hosting
Terms of Use Create Support ticket Your support tickets Stock Market News! © vmapp.org2024 All Rights reserved.