Showing questions tagged: Show all questions

whatsapp privacy

So Mozilla supports privacy rights- and I've supported Mozilla for that reason- but they want Whatsapp to be censored for "misinformation" ? How does that go togeth… (read more)

So Mozilla supports privacy rights- and I've supported Mozilla for that reason- but they want Whatsapp to be censored for "misinformation" ? How does that go together? Whatsapp was supposed to be encrypted and not even Whatsapp was supposed to know the content of messages. How would they know about misinformation? And how do they get to decide what's misinformation now?

Asked by Elke's Firefox 2 months ago

Last reply by TyDraniu 2 months ago

Enhanced Tracking Protection Blocks x.com in Windows

I've added https://x.com as an exception site but it is still blocked. This is outright censorship which is something [edited] do. Tell me how to fix your browser s… (read more)

I've added https://x.com as an exception site but it is still blocked.

This is outright censorship which is something [edited] do.

Tell me how to fix your browser so I may access x.com again or I stop using Firefox forever.

Asked by Taco X 2 months ago

Last reply by jscher2000 - Support Volunteer 6 days ago

PR_CONNECT_RESET_ERROR on https://vehicleenquiry.service.gov.uk/

Just for info this site works fine on other browsers on same machine, and on other machines. It is a Firefox issue. Running version 127.0.1 on Linux. Message is Secur… (read more)

Just for info this site works fine on other browsers on same machine, and on other machines. It is a Firefox issue.

Running version 127.0.1 on Linux.

Message is

Secure Connection Failed

An error occurred during a connection to vehicleenquiry.service.gov.uk. PR_CONNECT_RESET_ERROR

Error code: PR_CONNECT_RESET_ERROR

   The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.
   Please contact the website owners to inform them of this problem.

Asked by Ronald Duncan 1 week ago

Last reply by cor-el 1 week ago

Problem: Persistent 150 KB of Cached Web Content

Problem: Persistent 150 KB of Cached Web Content For several years, I have gone to “Settings” / “Privacy & Security” / “Cookies and Site Data,” clicked the Clear Dat… (read more)

Problem: Persistent 150 KB of Cached Web Content For several years, I have gone to “Settings” / “Privacy & Security” / “Cookies and Site Data,” clicked the Clear Data…” button, checked both “Cookies and Site Data,” and “Cached Web Content,” and clicked “Clear”, and consistently gotten BOTH “Cookies and Site Data,” and “Cached Web Content” down to “0” zero. Recently, I have been unable to “Cached Web Content” to go below “150 KB of disk space.”

         I have NOTHING listed in “Manage Cookies and Site Data” or “Exceptions -- Cookies and Site Data.”
         I have tried reinstalling, but the problem has persisted.
         On the assumption that this is malware problem, I have continued to use Mozzella VPN, but stopped using the program for browsing, etc.  Should I stop using it altogether until the problem is fixed?
         Can you tell me how to get rid of the last “150 KB” of “Cached Web Content”?

Asked by J.R.W4 1 week ago

Last reply by cor-el 1 week ago

Firefox displaying different bank PID number

I use Firefox to access my bank account, and it autofills the personal id number, and, when I click, the 6 digit code, which I allow it to store, because no one else has … (read more)

I use Firefox to access my bank account, and it autofills the personal id number, and, when I click, the 6 digit code, which I allow it to store, because no one else has access to this PC. BUT, I had to take it in for repair, and give them my Windows login details. When I got the computer back, I went to the bank login page, and the autofill was a different personal id number. Does this mean that somebody used Firefox on my machine to login to their account? Or could a reboot have meant that Firefox randomly changed the PID number? Thank-you for your help.

Asked by fzk17 1 week ago

Last reply by cor-el 1 week ago

Firefox Sandbox implications of User Namespaces being disabled

One of the typical configuration in linux is to turn off the user namespaces and/or network namespaces. This is because most of the exploits in linux have been related to… (read more)

One of the typical configuration in linux is to turn off the user namespaces and/or network namespaces. This is because most of the exploits in linux have been related to namespaces vulnerabilities.

If there is a Firefox ver 127.0.2, running on Linux in which the user namespace is turned off then the following is observed in the Troubleshooting information, i.e. about:support Seccomp-BPF (System Call Filtering) true Seccomp Thread Synchronisation true User Namespaces for privileged processes true User Namespaces false Content Process Sandboxing true Media Plugin Sandboxing true

So how come with the username turned off, the content process and media plugin is still sandboxed? Also is having user namespace turned off, as given above, a security risk?

However if the network namespace is turned off, i.e. max_net_namespaces is set to zero, then it renders the browser unusable. Nothing works. Why is that?

Is there some documentation somewhere where these namespaces and their impact is explained in detail?

Asked by ixian 2 weeks ago

Last reply by Paul 2 weeks ago

ecurity Vulnerability: Password Prompt Ignored on Cancel Click

Dear FireFox, I am writing this E-mail to address a critical issue. So i wanted to set up a password for my firefox browser so that only I can access it. i set a primary … (read more)

Dear FireFox, I am writing this E-mail to address a critical issue. So i wanted to set up a password for my firefox browser so that only I can access it. i set a primary password, and it asks me to enter the password when i open my browser. However, when the message appears asking me to enter the password, you can just click "cancel" option or press 'x' it ignores the password and lets me in the browser, essentially rendering the purpose of the password useless. thus anyone can access my browser. i request you to fix this problem. Regards -SpideyKnight

Asked by Spidey Knight 2 weeks ago

Last reply by cor-el 2 weeks ago

Blocking Ads

I do not have any ad blockers and have disabled "Block pop-up windows" in Firefox and turned off "Enhanced Tracking Protection" for sites but I still get the message that… (read more)

I do not have any ad blockers and have disabled "Block pop-up windows" in Firefox and turned off "Enhanced Tracking Protection" for sites but I still get the message that I am blocking ads.

Asked by George Martin 2 weeks ago

Last reply by cor-el 2 weeks ago

MFA Setup with DUO Fails Secure Code Check

I'm trying to setup MFA with DUO Mobile app, and I get past the part where I scan the QR code successfully. However, when it requests that I then enter the code generate… (read more)

I'm trying to setup MFA with DUO Mobile app, and I get past the part where I scan the QR code successfully. However, when it requests that I then enter the code generated by the app it rejects the code each and every time. My DUO app (on iPhone) is updated to the most current version as of today (6/30/2024), and my iPhone is updated to most current iOS version for iPhone 13, as of today. However, after multiple attempts the issue persists.

Asked by Flash 2 weeks ago

Last reply by cor-el 2 weeks ago

security not secure my certifacate expired

i need help to get new certificate https://www.internet.umwalimusacco.rw/# Peer’s Certificate has expired. HTTP Strict Transport Security: false HTTP Public Key Pinning… (read more)

i need help to get new certificate https://www.internet.umwalimusacco.rw/#

Peer’s Certificate has expired.

HTTP Strict Transport Security: false HTTP Public Key Pinning: false

Certificate chain:


BEGIN CERTIFICATE-----

MIIGTzCCBTegAwIBAgIQDW/zNeNx8RGCBhu7RvQmDDANBgkqhkiG9w0BAQsFADBg MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR8wHQYDVQQDExZSYXBpZFNTTCBUTFMgUlNBIENBIEcx MB4XDTIzMDYzMDAwMDAwMFoXDTI0MDYyOTIzNTk1OVowJDEiMCAGA1UEAxMZaW50 ZXJuZXQudW13YWxpbXVzYWNjby5ydzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAL3TIuqmiAlkyYAG+072DwypqtGqR1LxpFErQMSgSN60eKGRkg8yeTIl FOfSVxUJWE1geOgxBS0sEmmIKXlaFXTUBhqCRIB6jv+OitZMqBK3VmB7km9av/2R eF7OZfbUUCmoQHfJrJAfU3qrEUAk+Mk+LhJUaUiqwfgxiFziB8MCPlGRnws9Ii6s 0pltodS6BoPIJiF6UmUyU/SQT6QabYfTnvCD4UoL1iWZHW6xFZlbqHacsMrXBTbE rdMswlLTuaLndcuJyuf22IKK20jnZHCVyk+/+WiES1u/S4A3qlDqIp4+wGyrVXpc vWWW/tM321lqPSEXg6E07bnj5/N7Z/UCAwEAAaOCAz8wggM7MB8GA1UdIwQYMBaA FAzbbIJJD0pnCrgU7nrESFKI61Y4MB0GA1UdDgQWBBSCCcvkepKe2jbdGp/9G1Vi PFYB5DBDBgNVHREEPDA6ghlpbnRlcm5ldC51bXdhbGltdXNhY2NvLnJ3gh13d3cu aW50ZXJuZXQudW13YWxpbXVzYWNjby5ydzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMD8GA1UdHwQ4MDYwNKAyoDCGLmh0dHA6 Ly9jZHAucmFwaWRzc2wuY29tL1JhcGlkU1NMVExTUlNBQ0FHMS5jcmwwPgYDVR0g BDcwNTAzBgZngQwBAgEwKTAnBggrBgEFBQcCARYbaHR0cDovL3d3dy5kaWdpY2Vy dC5jb20vQ1BTMHYGCCsGAQUFBwEBBGowaDAmBggrBgEFBQcwAYYaaHR0cDovL3N0 YXR1cy5yYXBpZHNzbC5jb20wPgYIKwYBBQUHMAKGMmh0dHA6Ly9jYWNlcnRzLnJh cGlkc3NsLmNvbS9SYXBpZFNTTFRMU1JTQUNBRzEuY3J0MAkGA1UdEwQCMAAwggF/ BgorBgEEAdZ5AgQCBIIBbwSCAWsBaQB3AHb/iD8KtvuVUcJhzPWHujS0pM27Kdxo Qgqf5mdMWjp0AAABiQ3qfqgAAAQDAEgwRgIhANGvUsVm/6O4hVYUjDrW2hUVJZAn /sfyixA9uE8y8gjrAiEAoIBnPqseqkldYQ5SlcWLcoIyQRjLctWg7pDiltnC8C8A dgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYkN6n7RAAAEAwBH MEUCIQDHo32qLX3LwUY45Hup7Yve0u2yN8cARu3TEmwflD/BuQIgB2mSMR2DBpan SCyGrxUFVR7+83D3UjMty1Fg0OqAgVUAdgDatr9rP7W2Ip+bwrtca+hwkXFsu1GE hTS9pD0wSNf7qwAAAYkN6n6lAAAEAwBHMEUCIDTpwZtX7h491dIhdw8lz/2UnLpu Hu2w29KfHarUJkLEAiEA9mto8ZKG8J2117M7sLLelMIuWwWKLFi/K81OmtNDfIkw DQYJKoZIhvcNAQELBQADggEBAClNPHbav2t0+M6Fphe+aB8ocxL/iOLLDbJYx9OW u27UUKi9cE2Bm+bAW+G8T8DSkzukqAGmTlguSR5mVwsIwaqH/xZqKSPCkcLUNzCR 0+5r8L1M2ZkMT20o2UTsB9UJGN8Sdt6rweQCx7GNAvuC1y/a9uvUljdb241sLSz/ 0thmQBF+UlHR6pqsaQeZeLmLQKhAARbdxyHjz+mfhP+ZUpEoAX1mJuBNANHt8Rdj MgXz75qavZlO9PqmJQJixhkCLIw2MdKoXxkY89Qm8q+OJQepnop8peOnIWbYUd7V /fzuC9qfpQjYfv/dCGN46AFwdj9K5V9v4vffRnr2gSja6QQ=


END CERTIFICATE-----
BEGIN CERTIFICATE-----

MIIEszCCA5ugAwIBAgIQCyWUIs7ZgSoVoE6ZUooO+jANBgkqhkiG9w0BAQsFADBh MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMSAwHgYDVQQDExdEaWdpQ2VydCBHbG9iYWwgUm9vdCBH MjAeFw0xNzExMDIxMjI0MzNaFw0yNzExMDIxMjI0MzNaMGAxCzAJBgNVBAYTAlVT MRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5kaWdpY2VydC5j b20xHzAdBgNVBAMTFlJhcGlkU1NMIFRMUyBSU0EgQ0EgRzEwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQC/uVklRBI1FuJdUEkFCuDL/I3aJQiaZ6aibRHj ap/ap9zy1aYNrphe7YcaNwMoPsZvXDR+hNJOo9gbgOYVTPq8gXc84I75YKOHiVA4 NrJJQZ6p2sJQyqx60HkEIjzIN+1LQLfXTlpuznToOa1hyTD0yyitFyOYwURM+/CI 8FNFMpBhw22hpeAQkOOLmsqT5QZJYeik7qlvn8gfD+XdDnk3kkuuu0eG+vuyrSGr 5uX5LRhFWlv1zFQDch/EKmd163m6z/ycx/qLa9zyvILc7cQpb+k7TLra9WE17YPS n9ANjG+ECo9PDW3N9lwhKQCNvw1gGoguyCQu7HE7BnW8eSSFAgMBAAGjggFmMIIB YjAdBgNVHQ4EFgQUDNtsgkkPSmcKuBTuesRIUojrVjgwHwYDVR0jBBgwFoAUTiJU IBiV5uNu5g/6+rkS7QYXjzkwDgYDVR0PAQH/BAQDAgGGMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjASBgNVHRMBAf8ECDAGAQH/AgEAMDQGCCsGAQUFBwEB BCgwJjAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQuY29tMEIGA1Ud HwQ7MDkwN6A1oDOGMWh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydEds b2JhbFJvb3RHMi5jcmwwYwYDVR0gBFwwWjA3BglghkgBhv1sAQEwKjAoBggrBgEF BQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzALBglghkgBhv1sAQIw CAYGZ4EMAQIBMAgGBmeBDAECAjANBgkqhkiG9w0BAQsFAAOCAQEAGUSlOb4K3Wtm SlbmE50UYBHXM0SKXPqHMzk6XQUpCheF/4qU8aOhajsyRQFDV1ih/uPIg7YHRtFi CTq4G+zb43X1T77nJgSOI9pq/TqCwtukZ7u9VLL3JAq3Wdy2moKLvvC8tVmRzkAe 0xQCkRKIjbBG80MSyDX/R4uYgj6ZiNT/Zg6GI6RofgqgpDdssLc0XIRQEotxIZcK zP3pGJ9FCbMHmMLLyuBd+uCWvVcF2ogYAawufChS/PT61D9rqzPRS5I2uqa3tmIT 44JhJgWhBnFMb7AGQkvNq9KNS9dd3GWc17H/dXa1enoxzWjE0hBdFjxPhUb0W3wi 8o34/m8Fxw==


END CERTIFICATE-----

Asked by hategekap7 2 weeks ago

Last reply by cor-el 2 weeks ago

Unauthorized LTI Launch Request 401?

I am trying to access the online library website for my college. I had no trouble all week then all of a sudden I keep getting this message: "Unauthorized LTI Launch Req… (read more)

I am trying to access the online library website for my college. I had no trouble all week then all of a sudden I keep getting this message: "Unauthorized LTI Launch Request 401

   Please check the configuration settings used for the LTI/OAuth/OpenID access.
   Your browser's "Block 3rd party cookies" or "Prevent cross-site tracking" setting can also cause this error."

I already changed the cookies settings to allow this website and my school's website. I don't understand the issue and why it popped up out of nowhere. I use firefox latest update on Windows 11. I do use a vpn but I used it the whole time, even when the site was working and I have tried turning it off. It doesn't help.

Asked by Emariehasadhd 2 weeks ago

Last reply by cor-el 2 weeks ago

About extension/add-on privilages

Are Firefox extensions sandboxed from the rest of the operating system? Suppose I have installed a malicious extension/add-on on my system. Would it be possible for the … (read more)

Are Firefox extensions sandboxed from the rest of the operating system? Suppose I have installed a malicious extension/add-on on my system. Would it be possible for the extension to access and tamper with my operating system? I do not care if it tampers with the browser tabs or data inside the browser as long as it does not have a way to tamper with my OS. Using MacOS Sonoma

Asked by FivespeedDoc 2 weeks ago

Last reply by TyDraniu 2 weeks ago

I can no longer use my camera on firefox

I can no longer use my camera on firefox, firefox displayed some message about camera when we were trying to chat, but I missed it, I have granted relevant permissions on… (read more)

I can no longer use my camera on firefox, firefox displayed some message about camera when we were trying to chat, but I missed it, I have granted relevant permissions on the site, that we use reularly. The camera icon on the address bar appears red, and I noticed that in Windows security, it lists firefox access requests, but shows no way to grant these requests.

I am not tech minded so please if anyone could keep it simple, I would appreciate it.

Asked by sparrow08 3 weeks ago

Last reply by jonzn4SUSE 2 weeks ago

Add-In Permissions

One of the add-in permissions is "Access your data for sites in the “named” domain". I looked at that and thought, "That certainly cannot include passwords"; BUT the exp… (read more)

One of the add-in permissions is "Access your data for sites in the “named” domain". I looked at that and thought, "That certainly cannot include passwords"; BUT the explanation for this permission is: "The extension could read the content of web pages you visit in the specified domain, as well as data you enter into those web pages, such as usernames and passwords. "

I was stunned.

That means that addins that get this permission have access to my banking/medical/etc. usernames & passwords. This is not acceptable. Can a permission be developed that would be: "Access your data for sites in the “named” domain" (except usernames/passwords).

The permission "Access your data for all websites" is significantly worse in that it applies to all sites.

Asked by pabsfx-config 2 weeks ago

Last reply by TyDraniu 2 weeks ago

HSTS cookies

OK, I have Firefox (Windows 10 AMD64, desktop) configured to delete history when I close it. So, I see that regular webiste cookies are deleted. But are the HSTS websit… (read more)

OK, I have Firefox (Windows 10 AMD64, desktop) configured to delete history when I close it.

So, I see that regular webiste cookies are deleted.

But are the HSTS website "super cookies" deleted?

https://ipleak.com/articles/what-is-hsts-super-cookies What are HSTS Super cookies and why are they dangerous?


thanx.

Asked by TooFar 3 weeks ago

Last reply by TyDraniu 2 weeks ago

Selectively allowing mixed content on Firefox 127

Hello, I appreciate very much the recent security changes in Firefox 127, about mixed content. I think it really does improve both security and privacy, but I have HTTPS… (read more)

Hello,

I appreciate very much the recent security changes in Firefox 127, about mixed content. I think it really does improve both security and privacy, but I have HTTPS websites in a local network (private IP addresses) that load some images from a local IP camera over HTTP. I do not have control over these IP camera images, so as a temporary workaround I am allowing the whole website to be delivered over plain HTTP.

It's not a huge security issue, because it's on a local network which I access over the Internet via a VPN, but I would prefer to keep the website on HTTPS and allow mixed content for this specific IP address, so to keep the protection fully enabled when I browse the Internet.

Is there a way to enter a specific IP address in an exception list, so to selectively allow mixed content? Or, in alternative, is it possible to specify that all web requests from private IP addresses (RFC 1918) should allow mixed content?

Many thanks,

Piero

Asked by Piero 3 weeks ago

Last reply by Agent virtuel 3 weeks ago

Have to click on "log in" in many apps like they don't recognize me.

Hi. About 2-3 weeks ago all of my websites that I use to started making me log in. I seemed to have lost all of my saved passwords so I typed them all back in. Now, m… (read more)

Hi. About 2-3 weeks ago all of my websites that I use to started making me log in.

I seemed to have lost all of my saved passwords so I typed them all back in.

Now, most of them make me press the log on button and then my userid and password are primed in there so all I have to do is press enter.

I find this kind of frustrating. I don't recall changing any settings. Any ideas to change this?

Thank you.

Asked by Jane 3 weeks ago

Last reply by cor-el 3 weeks ago

How do I disable passkey support?

I don't want to use passkeys, and it seems that every site is checking browser support and wasting my time with passkey prompts before allowing me to log in with a passwo… (read more)

I don't want to use passkeys, and it seems that every site is checking browser support and wasting my time with passkey prompts before allowing me to log in with a password. How do I disable passkey support in Firefox?

Asked by Shad Sterling 3 weeks ago

Last reply by cor-el 3 weeks ago

In a hacked computer, using Firefox, I see the content-security-policy for chatgpt includes chrome-extension://iaiigpefkbhgjcmcmffmfkpmhemdhdnj Would this extension be installed in the computer?

Below is the content-security-policy Firefox loads for chatGPT: default-src 'self'; script-src 'self' 'nonce-eec8ce04-1f27-4481-8ed6-b8f877eef280' 'wasm-unsafe-eval' cha… (read more)

Below is the content-security-policy Firefox loads for chatGPT:

default-src 'self'; script-src 'self' 'nonce-eec8ce04-1f27-4481-8ed6-b8f877eef280' 'wasm-unsafe-eval' chatgpt.com/ces https://*.chatgpt.com https://*.chatgpt.com/ https://*.oaistatic.com https://api.openai.com https://chat.openai.com https://chatgpt.com/ https://chatgpt.com/backend-anon https://chatgpt.com/backend-api https://chatgpt.com/graphql https://chatgpt.com/public-api https://chatgpt.com/voice https://jidori.g1.internal.services.openai.org https://oaistatic.com https://snc.apps.openai.com https://snc.chatgpt.com/backend/se https://tcr9i.chat.openai.com https://tcr9i.chatgpt.com/ wss://*.chatgpt.com wss://*.chatgpt.com/; script-src-elem 'self' 'nonce-eec8ce04-1f27-4481-8ed6-b8f877eef280' 'sha256-RvbVrdDS11FSnQaULCOgXPA5u0nMP2Im1d2pGiRBGC4=' 'sha256-eMuh8xiwcX72rRYNAGENurQBAcH7kLlAUQcoOri3BIo=' auth0.openai.com challenges.cloudflare.com chatgpt.com/ces https://*.chatgpt.com https://*.chatgpt.com/ https://*.oaistatic.com https://api.openai.com https://apis.google.com https://chat.openai.com https://chatgpt.com/ https://chatgpt.com/backend-anon https://chatgpt.com/backend-api https://chatgpt.com/graphql https://chatgpt.com/public-api https://chatgpt.com/voice https://docs.google.com https://jidori.g1.internal.services.openai.org https://js.live.net/v7.2/OneDrive.js https://oaistatic.com https://snc.apps.openai.com https://snc.chatgpt.com/backend/se https://tcr9i.chat.openai.com https://tcr9i.chatgpt.com/ https://www-onepick-opensocial.googleusercontent.com wss://*.chatgpt.com wss://*.chatgpt.com/; img-src * 'self' blob: data: https: https://docs.google.com https://drive-thirdparty.googleusercontent.com https://ssl.gstatic.com; style-src 'self' 'unsafe-inline' chatgpt.com/ces https://*.chatgpt.com https://*.chatgpt.com/ https://*.oaistatic.com https://api.openai.com https://chat.openai.com https://chatgpt.com/ https://chatgpt.com/backend-anon https://chatgpt.com/backend-api https://chatgpt.com/graphql https://chatgpt.com/public-api https://chatgpt.com/voice https://jidori.g1.internal.services.openai.org https://oaistatic.com https://snc.apps.openai.com https://snc.chatgpt.com/backend/se https://tcr9i.chat.openai.com https://tcr9i.chatgpt.com/ wss://*.chatgpt.com wss://*.chatgpt.com/; font-src 'self' data: https://*.oaistatic.com https://fonts.gstatic.com; connect-src 'self' *.oaiusercontent.com api-iam.intercom.io api-js.mixpanel.com browser-intake-datadoghq.com chatgpt.com/ces fileserviceuploadsperm.blob.core.windows.net http://0.0.0.0:* http://localhost:* https://*.chatgpt.com https://*.chatgpt.com/ https://*.oaistatic.com https://api.onedrive.com https://api.openai.com https://chat.openai.com https://chatgpt.com/ https://chatgpt.com/backend-anon https://chatgpt.com/backend-api https://chatgpt.com/graphql https://chatgpt.com/public-api https://chatgpt.com/voice https://content.googleapis.com https://docs.google.com https://events.statsigapi.net https://featuregates.org https://graph.microsoft.com https://jidori.g1.internal.services.openai.org https://oaistatic.com https://snc.apps.openai.com https://snc.chatgpt.com/backend/se https://tcr9i.chat.openai.com https://tcr9i.chatgpt.com/ https://www.googleapis.com o33249.ingest.sentry.io statsigapi.net wss://*.chatgpt.com wss://*.chatgpt.com/ wss://*.intercom.io wss://*.webpubsub.azure.com; frame-src challenges.cloudflare.com https://*.sharepoint.com https://content.googleapis.com https://docs.google.com https://onedrive.live.com https://tcr9i.chat.openai.com https://tcr9i.chatgpt.com/ js.stripe.com; worker-src 'self' blob:; media-src blob: 'self' *.oaiusercontent.com fileserviceuploadsperm.blob.core.windows.net https://cdn.openai.com https://persistent.oaistatic.com; frame-ancestors chrome-extension://iaiigpefkbhgjcmcmffmfkpmhemdhdnj; report-to chatgpt-csp-new; report-uri https://browser-intake-datadoghq.com/api/v2/logs?dd-api-key=pub1f79f8ac903a5872ae5f53026d20a77c&dd-evp-origin=content-security-policy&ddsource=csp-report&ddtags=version%3Achatgpt-csp-new

Notice that it includes " frame-ancestors chrome-extension://iaiigpefkbhgjcmcmffmfkpmhemdhdnj"

Would this extension be installed in the computer, kind of like the extensions that are loaded from Chrome (i.e., C:\Users\myUser\AppData\Local\Google\Chrome\User Data\extensions_crx_cache)?

Thanx

Asked by cybertrapped 1 month ago

Last reply by cor-el 3 weeks ago