Simon Willison’s Weblog

non-consensual http user tracking using caches. Interesting security issue involving HTTP caching headers