Search engines passing query in plain text?

deadorbit · April 3, 2024, 3:41pm

Wondering what your guys’ thoughts are on search engines using GET vs POST and the security implications. In my testing Startpage is the only search engine that doesn’t embed your search string into the <title> tag and also uses POST so your query is not passed in the URI. When you use the other search engines the exact query you perform is stored in your history.

https://search.brave.com/search?q=life%20expectancy%20of%20cats
https://duckduckgo.com/?t=h_&q=life+expectancy+of+cats
https://www.startpage.com/sp/search
https://search.yahoo.com/search?p=life+expectancy+of+cats
https://www.google.com/search?q=life+expectancy+of+cats
https://www.bing.com/search?q=life+expectancy+of+cats

BionicBison · April 3, 2024, 5:01pm

Pretty sure this is only a matter of whether your search query gets stored in your local history, as everything after the domain name is encrypted by HTTPS as far as someone listening on the network goes. Also, DuckDuckGo does let you change this in their privacy settings. If this is still a concern to you, you can choose to just disable your history or clear it after each session.

Encounter5729 · April 4, 2024, 12:43am

Startpage doesn’t

eqrlzo8t · April 4, 2024, 1:49am

Startpage has 2 modes you can choose: GET and POST. POST is the default iirc.

deadorbit · April 4, 2024, 4:03am

Thank you for pointing that out!

Topic		Replies	Views
"Good" Google search results in the bin? Off Topic	0	176	April 16, 2024
"A look at search engines with their own indexes" Privacy article	9	1615	December 22, 2023
Startpage update (no longer uses Google results) Tool Suggestions completed	8	1094	October 13, 2023
PriEco: New open source web search engine Project Showcase	38	2575	December 28, 2023
Would using Google Search without Javascript be considered private? Questions	2	203	August 12, 2023

Search engines passing query in plain text?

Related Topics