Mobile app version of vmapp.org
Login or Join
Hamaas447

: How to keep a visitor 100% anonymous Maybe a broad question, but how can you keep a visitor to your site 100% anonymous on your server. The site is written in PHP. No trace of what he or

@Hamaas447

Posted in: #Php #Privacy

Maybe a broad question, but how can you keep a visitor to your site 100% anonymous on your server. The site is written in PHP.

No trace of what he or she has visited on your site. Any suggestions?

10.03% popularity Vote Up Vote Down


Login to follow query

More posts by @Hamaas447

3 Comments

Sorted by latest first Latest Oldest Best

 

@Angie530

If you are concerned that your application's visitor data may fall into the wrong hands, you should never collect any data an attacker could use against your visitors: this means your application should not be publicly available, because an attacker who gains access to your server or the network your server hosts on will always be able to monitor incoming and outgoing connections.

Make your application available only via TOR hidden service if you care about your visitors' privacy.

10% popularity Vote Up Vote Down


 

@Dunderdale272

One main thing is going to be disable or limit access logging. You would have to configure your Web server not to log any user's IP addresses.

Also ensure access is not logged elsewhere in the system or the data center, no external applicances like reverse proxies are active, and so on.

Also as @JonahBron points out, don't use sessions. Best don't serve any cookies at all.

Encourage your users to use additional anonymization services on client side, like TOR.

Related interesting reading: Wikileaks' Hosting

10% popularity Vote Up Vote Down


 

@Sent6035632

Disable your server logs, don't use sessions.

10% popularity Vote Up Vote Down


Back to top | Use Dark Theme