[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #10352 [TorBrowserButton]: Private Browsing Mode data not properly cleared by New Identity

Subject: [tor-bugs] #10352 [TorBrowserButton]: Private Browsing Mode data not properly cleared by New Identity
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Wed, 11 Dec 2013 02:40:52 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 10 Dec 2013 21:40:59 -0500
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#10352: Private Browsing Mode data not properly cleared by New Identity
------------------------------------+---------------------
 Reporter:  mikeperry               |          Owner:
     Type:  defect                  |         Status:  new
 Priority:  blocker                 |      Milestone:
Component:  TorBrowserButton        |        Version:
 Keywords:  tbb-testcase, ff24-esr  |  Actual Points:
Parent ID:                          |         Points:
------------------------------------+---------------------
 It looks like the Mozilla documentation we used in #9570 was incomplete.
 It turns out that much of the private browsing mode context is not cleared
 upon all windows being closed on New Identity if you are using the default
 configuration ('browser.privatebrowsing.autostart' set to true). It is
 also not cleared by our existing usage of the cookie and cache clearing
 APIs are also leaving data from Private Browsing Mode sessions in tact.

 All of this data does get cleared if you are storing history (which is why
 I missed this so far :/)

 It also appears that the Torbutton Cookie Protections window is also
 always empty if you are using the default configuration
 ('browser.privatebrowsing.autostart' set to true).

 Good test pages for verifying this are:
 http://samy.pl/evercookie/
 http://www.stevesouders.com/blog/2012/09/10/clearing-browser-data/

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/10352>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Follow-Ups:
- Re: [tor-bugs] #10352 [TorBrowserButton]: Private Browsing Mode data not properly cleared by New Identity
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #10352 [TorBrowserButton]: Private Browsing Mode data not properly cleared by New Identity
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #10352 [TorBrowserButton]: Private Browsing Mode data not properly cleared by New Identity
  - From: Tor Bug Tracker & Wiki
- Re: [tor-bugs] #10352 [TorBrowserButton]: Private Browsing Mode data not properly cleared by New Identity
  - From: Tor Bug Tracker & Wiki

Prev by Author: Re: [tor-bugs] #10285 [Firefox Patch Issues]: Write test pages for certain FF24 features
Next by Author: Re: [tor-bugs] #7822 [Pluggable transport]: Create an ezpt pluggable transports wrapper
Previous by thread: [tor-bugs] #10351 [Tor Sysadmin Team]: Determine if brandegei is migrated or not.
Next by thread: Re: [tor-bugs] #10352 [TorBrowserButton]: Private Browsing Mode data not properly cleared by New Identity
Index(es):
- Author
- Thread