(no title)

>If you visit a website (Assuming you don't go via some anonymizer proxy), they can track you, and they can pass your details to any 3rd party who wishes to also track you.

Sure, server-side logging is always possible, but (AFAIK) advertisers and data miners have little interest in this information because it requires trusting the website owner not to forge results, which is obviously a very stupid idea when your business revolves around purchasing and selling ad impressions. Precluding the practical methods of this type of data mining (ideally by requiring whitelisting of Javascript and all access to third party resources, but disabling third party cookies is a good practical step) could greatly reduce the amount of surveillance that users are subject to, by eliminating the most common incentives to perform it.

>If you don't want to be 'tracked', stop generating HTTP requests, or do them through an anonymizer service.

I hope you realize that the effectiveness of services like Tor is greatly reduced if you aren't using the same techniques to reduce your surveillance "attack surface" that people are advocating for regular, non-anonymous browsing. It's really not hard to see why; considering the tracking cookie example: A unique cookie makes it clear to a site operator that the requests coming from all these different exit nodes are really originating from the same user. A third party tracking cookie can then make it clear to that third party that the same user is visiting sites A, B, and C over Tor. All it takes at this point is small handful of screwups (from mentioning personal information to something as innocuous as reading a news article that is only relevant to people living in a certain location) to greatly reduce the search space required to identify you. "Uses xmonad and likely lives in New York City" could be more than enough to tie a large amount of your Tor browsing activity to a small set of suspects, in this case.

A single website can only track you inside their own pages. The problem with third-party cookies is that they enable cross-site tracking, which is much more privacy invading. First-party cookies don't help with that, since a cookie dropped by siteA won't be sent to siteB.

Now, sure there are other ways of doing cross-site tracking, like Etags, fingerprinting and such, but why shouldn't we try to plug those leaks too instead of giving up?

  * You request website A, which includes 3rd party code from C. C drops a cookie
  * You request website B, which includes 3rd party code from C. C knows you previously visited A.

  * You request website A, which includes 3rd party code from C. Website A sends details of your visit via a backchannel to C.
  * You request website B, which includes 3rd party code from C. Websites B sends details of your visit via backchannels, and C knows you previously visited A.

Even if server-side tracking is as effective as cookie tracking (and I would argue it will not be), there’s a difference between the site tracking me, and the site enlisting my browser to aid it in tracking me. If I am to be tracked, let the site do so by expending its own cycles and storage, not mine.