Regarding the LSO issue that everyone is tense about:
I've been saying for a long time that users should keep standard cookies BUT block or remove LSO. Flash is not the only type of LSO. LSO can store itself in shared areas of your system, thus it is accessible to all user accounts. Sneaky sneaky...
In addition, there are some LSO that can respawn deleted info. Say you clean your regular cookies and your flash objects, but miss some other type of LSO - that missed object can read its own backup data and restore all of the other items you deleted. Basically, it is all reborn and available again.
I do not yet know which sites have implemented this yet. I strongly suspect Amazon has done so a few months ago.
The reason you can't find much info about LSO is due to the big sites trying to keep it hush hush. Don't just rely on wikipedia to tell you the whole story. Try using multiple search engines to locate info about 'supercookie'. Then have a look into DOM storage.
There are countries who have laws about privacy, but those laws are hard to enforce accross borders (hosting farms...). Also, if you look deep within site ToS verbiage, there is often some disclaimer in there that you as a user imply your consent by virtue of the fact that you are accessing the site. Caveat Emptor!
The easy life is gone. Privacy is dead.
Some users claim they've had no problem with LSO. To that, my reply is "Yet". The lucky bastijiz are only alive by co-incidence.
Keeping yourself private does require effort and resources. There is no quick solution anymore. The question is: which sites are experimenting and which sites have fully implemented the supercookie, respawning LSO, DOM, and browser profiling.
Slapped had a good link to share. Hope you all took a look....
| 
