Would suck if you were, for example, a "web dissident" in China and visited an HTTPS site that uses this tech.
All the security forces would have to do is visit the site then log all the IPs to which they send their copies of the images to.
Using this they could also narrow it down to the exact page being used rather than the IP address
