顯示問題標籤 顯示所有問題

Fingerprinting with Media Devices

I apologize if this has already been brought up. It seems that the browser has access to a list of my media devices, without needing any special permissions. On Am I Uniq… (閱讀更多)

I apologize if this has already been brought up.

It seems that the browser has access to a list of my media devices, without needing any special permissions. On Am I Unique, they can grab the unique ID of my builtin macbook camera & microphone. I believe the culprit is MediaDevices.enumerateDevices(). I do have privacy.resistFingerprinting set to True.

Perhaps you could put it behind a permission request, like MediaDevices.getUserMedia()?

Thank you for your time.

Asked by life.rider09 6 天前

Browser Fingerprinting

I recently switched to Firefox, it has a good at performance. Though, When I check My browser for Fingerprinting through https://panopticlick.eff.org/ , https://amiunique… (閱讀更多)

I recently switched to Firefox, it has a good at performance. Though, When I check My browser for Fingerprinting through https://panopticlick.eff.org/ , https://amiunique.org/ and https://www.deviceinfo.me/ It shows that my Firefox has Unique Fingerprint besides Firefox Strict Tracking Protection enabled.

How can I protect from Browser Fingerprinting or delete it ?

Asked by Ayyappan 4 天前

Opinion wanted

I am using Opensuse 15.0 and also 15.1. Haven't made a complete move over yet. There is a recurring situation when 4GB rx and 4GB tx movement that I cannot account for hi… (閱讀更多)

I am using Opensuse 15.0 and also 15.1. Haven't made a complete move over yet. There is a recurring situation when 4GB rx and 4GB tx movement that I cannot account for hits my 15.0 about once a month. Today it happened again. Using vnstat, I found it happened between 10.00 - 11.00. :

h  rx (MiB)   tx (MiB)      h  rx (MiB)   tx (MiB)      h  rx (MiB)   tx (MiB) 

13 0.00 0.00 21 3.67 0.57 05 0.00 0.00 14 0.00 0.00 22 24.49 2.24 06 0.00 0.00 15 34.60 1.85 23 0.00 0.00 07 0.00 0.00 16 175.23 9.05 00 0.00 0.00 08 193.93 9.07 17 0.00 0.00 01 0.00 0.00 09 0.00 0.00 18 0.00 0.00 02 0.00 0.00 10 3,939.97 4,090.57 19 0.00 0.00 03 0.00 0.00 11 31.14 2.34 20 0.00 0.00 04 0.00 0.00 12 7.60 1.06 I was merely surfing, no download. Searched the cookies, one site i cannot recognize came out; "consensu.org". Did a search, there were several, example: https://cmp.teads.mgr.consensu.org/index.html, that served blank pages in firefox. Is there anything odd here? Is there a way I can extract all the cookies with date & time so that I can check against previous occurrences of the 4GB data movements (I have a few records).

Asked by lims3148 3 天前

Display entire extension name in address bar

Unlike some people who don't want to see the extension name in the address bar, I want to see the *entire* extension name. Threat model: one of my extensions gets a rogu… (閱讀更多)

Unlike some people who don't want to see the extension name in the address bar, I want to see the *entire* extension name. Threat model: one of my extensions gets a rogue update and puts up a screen that looks just like a screen (e.g., the login page) of another extension (e.g., my password manager).

When the extension name is too long, Firefox currently displays: Extension... <last word of extension name>

To be secure I currently need to click on the above so that it expands, in order to verify it's the correct extension.

Can this be done in CSS, or would a feature change be needed to Firefox?

Asked by garland1 3 天前

CSP issue in firefox

Hi Team, We are facing issue while exporting documents from our portal which is embedded into an iframe of some external portal. We see the following error in the console… (閱讀更多)

Hi Team,

We are facing issue while exporting documents from our portal which is embedded into an iframe of some external portal.

We see the following error in the console :

Content Security Policy: The page’s settings blocked the loading of a resource at blob:https://abc.def.com/1gg3810-ae25-42ae-ghghb-123456789 (“frame-src”).

This issue comes only in firefox. We are able to export documents in other browsers. We think that the problem comes due to the portal is embedded into an iframe. when we execute the download URL in a separate tab, it allows to download the document.

We are using below CSP policy :

default-src * blob: 'self' 'unsafe-eval' 'unsafe-inline'; font-src * data:; img-src * data:; frame-src * blob: data: 'self'; object-src *

Thanks

Asked by gupta.harish2624 1 天前