Adds meta referrer support and enables it by default. Also adds referrer attribute support and enables it by default.<\/p>"},"ratings":{"1":0,"2":0,"3":0,"4":0,"5":0},"assets_icons":[],"assets_banners":[],"assets_blueprints":{},"all_blocks":[],"tagged_versions":["1.0.0","2.0.0","2.0.1"],"block_files":[],"assets_screenshots":[],"screenshots":[]},"plugin_section":[],"plugin_tags":[46328,396,5203,4131,3080],"plugin_category":[36,54],"plugin_contributors":[93222],"plugin_business_model":[],"class_list":["post-36380","plugin","type-plugin","status-closed","hentry","plugin_tags-noreferrer","plugin_tags-privacy","plugin_tags-referer","plugin_tags-referrer","plugin_tags-rel","plugin_category-analytics","plugin_category-security-and-spam-protection","plugin_contributors-andersju","plugin_committers-andersju"],"banners":[],"icons":{"svg":false,"icon":"https:\/\/s.w.org\/plugins\/geopattern-icon\/noreferrer.svg","icon_2x":false,"generated":true},"screenshots":[],"raw_content":"\n
Plugin homepage<\/a><\/p>\n\n When you click on a link, your browser normally tells the destination page what page you were on when you clicked the link. This is called the HTTP referer<\/a> [sic!]. This also happens when your browser loads things like images, fonts and external CSS\/JS.<\/p>\n\n This is bad for privacy. For sensitive sites, it can be terrible<\/em> for privacy. However, with HTML5, there are now ways to stop referrers from being sent.<\/p>\n\n This plugin, by default, adds As defined in the HTML5 spec<\/a>, As defined in the Referrer Policy Draft<\/a>, The plugin modifies elements right before they are displayed. It doesn't modify anything in the database. Existing attributes, including any existing The The This plugin, by default, also sets Referrer Policy<\/a> to Please note<\/strong> that this could<\/em> affect plugins that foolishly rely on the refer(r)er header, as well as third-party tools you might use.<\/p>\n\n If you enable this, whitelisting internal links and other elements is possible thanks to the referrer attribute<\/a>; however, support for this has not yet made it into the stable version of any browser.<\/p>\n\n Inspired by the Drupal module No referrer<\/a>.<\/p>\n\nrel=\"noreferrer\" link type and referrer attribute<\/h4>\n\n
rel=\"noreferrer\"<\/code> to external links in posts, pages and comments, and referrer=\"no-referrer\"<\/code> to images and iframes.<\/p>\n\nrel=\"noreferrer\"<\/code> \"indicates that no referrer information is to be leaked when following the link\".<\/p>\n\nreferrer=\"no-referrer\"<\/code> \"specifies that no referrer information is to be sent along with requests made from a particular settings object to any origin\".<\/p>\n\nrel<\/code> attributes (such as the one set by wp_rel_nofollow()<\/code>), are preserved. It is possible to whitelist domains if you do<\/em> want to send referrer information to them.<\/p>\n\nrel=\"noreferrer\"<\/code> link type is supported by Firefox (since version 33<\/a>), Chrome\/Safari (added to WebKit in November 2009<\/a>) and Microsoft Edge in Windows 10.<\/p>\n\nreferrer<\/code> attribute is not yet supported by the stable version of any browser (July 2015).<\/p>\n\nReferrer Policy meta tag<\/h4>\n\n
never<\/code> via a meta<\/code> tag. This is even better for privacy: it tells the browser not to send referrer information at all<\/em> and applies to both links as well as requests generated by the page (CSS, images, etc.). While still just a W3C draft, it is supported by Firefox (since version 37<\/a>), Chrome and Safari (added to WebKit in November 2011<\/a>), and by Microsoft Edge in Windows 10 (source<\/a>).<\/p>\n\nNotes<\/h4>\n\n