[Documentation] "Insecure anonymous session" feature
I'm not sure what's behind "Insecure" in "Insecure anonymous session" setting introduced in v4.0.3?
I found the following comment "Implication: The GSF ID is generated on your own device rather than our dispenser server so your IP address and device info is sent to Google's server."
I would rather understand it as "not privacy-friendly" rather than "insecure", no? But even for the privacy part, aren't apps downloaded directly from Google with your own IP in all cases? If your token is shared or unique to your device, Google can make statistics from your IP, so there's no difference, is there?
As for "device info", what kind of info are sent exactly? Can't we send dummy info instead?
I think it would be worth documenting the feature in the wiki, unless it's already there and I missed it?
Thanks for your work!