"Script" from discourse-cdn-sjc1.com


Today, the forum would not load until I allowed “Script” from discourse-cdn-sjc1.com (I’m using uMatrix). I’m pretty sure that’s a change from when I last visited (~ a Month ago), as I use the same browser/settings today.

As I took from Privacy Policy - nothing is private that might not be in your controll, as the forum is not hosted by you.
Still, it might be worth mentioning/discussing?!


Ugh. Yes and no. Our forum is hosted by us, but I was not aware that the forum software is pulling resources from their own CDN. I’ll look into it.

Thanks for the heads-up.


Today the forum would’nt load until I allowd script from discourse-cdn-sjc2.com .

Then I had to log in (unsually, I’m logged in allready).

It seems that now I can remove the allowance and things still work!
(It’ll keep you updated if things change).


[Edit: it seems like that: I need to allowd it, the reload the page -> Forum will load;
I then can disallow it agine, things will still work;

But if I leave the forum (follow a link or close the tab), once I return, I need to allow it again.


This is both weird and annoying. I’ll keep an eye on it.


It is not only the CDN I suppose the avatars loaded from their server could be used for tracking as well. That’s what Gravatar is doing. The possibility is at least there for Discourse as well.