In most cases we do not log anything.
In nginx this means
access_log off;
In case we have to log more (for example for debugging), we only log errors (requests with a status code in the 4xx or 5xx) range.
This is the nginx log format we use for that:
map $status $only_errors {
~^[23] 0;
default 1;
}
log_format matrix '[$time_local] "$request" $status "$http_user_agent" "$ssl_protocol/$ssl_cipher"';
If you klick on a link to an external website your browser will usually send a referer header, to tell the destination site where you came from. (Yes, that typo is actually in the spec.) It’s possible to instruct browsers not to do that, which is what we always do.
In nginx we always send this response header:
Referrer-Policy: no-referrer
This commands browsers not to send a referer header in any case when using our provided Element/Web Instance or this website.
This does not necessarily apply if you use a 3rd party hosted webchat client.
If you prefer Tor Browser to use our website or chat, you’re encouraged to do so. Likewise if you’re using any Matrix client of your choice via Tor as a SOCKS proxy. Currently we do not (yet) provide an .onion service.
If you prefer to use a different chat webinterface than the one we provide, you’re welcome to do so. We also support client autoconfiguration.
We send a Permissions-Policy Header that instructs browsers to turn off Federated Learning of Cohorts (FLoC).
Permissions-Policy: interest-cohort=()