Helping people with computers... one answer at a time.
Websites can collect a fair amount of information about you. In this first step we look at what every website sees no mater what it does.
When I visit a web site that collects visitor statistics - I understand they can see my IP which will tell them I am a Verizon customer with a Mac/Intel operating system, the area where I may live, what browser I use, if I'm new to the site, and click information on the site- but can the site collect the following information:
- My computer name (the name I assigned to my computer)?
- Profile information???
- My browsing history (any/all sites I've visited and when) or can they just tell the number of items in my history?
- Email addresses associated with my computer?
I've reviewed similar questions but I'm not sure I truly understand what information a web-server can collect from my connection/browser.
This turns into a fairly complex answer pretty quickly. It's both more, and a lot less, than you might think.
This article will start by covering what every website sees.
I'll use a simple web site, like this one as an example. Here's an actual log entry that shows what's provided when someone visits the URL http://ask-leo.com/who_is_leo.html:
There are several interesting bits of information there:
22.214.171.124: the IP address of a visitor.
[22/Sep/2008:15:36:26 -0500]: the date, time and time zone offset that the visitor came by.
GET /who_is_leo.html HTTP/1.1: the operation (GET), the page requested, and the protocol version to be used.
200: the return code. In this case 200 means success.
12120: the size of the response - in this case the size of the file "who_is_leo.html" without any of the embedded images which are retrieved with separate requests.
"Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:126.96.36.199) Gecko/2008070208 Firefox/3.0.1": this fairly long and obscure string known as the "User Agent" string identifies the browser used (FireFox 3), my operating system (Windows XP), and occasionally some other things that the browser chooses to put in there.
As you can see it's both a lot, and not really so much.
Your IP address doesn't really say much. I've written about this repeatedly, but unless you're the police with a court order, the best a web site owner can tell is your ISP, and roughly where on the planet you are - sometimes as accurate as your neighborhood, and sometimes only as close as your continent.
What a website cannot do is use this information alone to identify you by name, phone or address.
And it certainly cannot tell things like your computer name, profile, history or email addresses.
There are two interesting exceptions to that.
Sites can typically remember what you've told them. So, for example, if you tell a site your username is "Fred", say by logging in, then that site can, indeed, remember that if it chooses to do so. This is typically by using cookies.
Tracking. Tracking's a loaded term, but the fact is that there's a lot of it going on, often in places and ways you don't necessarily consider: more cookies, toolbars and now even ISPs are getting into the act.
So far we've seen the bare minimum that every website gets whether or not they ask for it.
I start to look more deeply into cookies and tracking in What are browser cookies and how are they used?