[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #7265 [Firefox Patch Issues]: Only display Canvas message for first parties; simply log third parties (was: Canvas extraction message should provide path to full url)

To: undisclosed-recipients:;
Subject: Re: [tor-bugs] #7265 [Firefox Patch Issues]: Only display Canvas message for first parties; simply log third parties (was: Canvas extraction message should provide path to full url)
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Fri, 15 Feb 2013 23:02:49 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 15 Feb 2013 18:02:57 -0500
In-reply-to: <049.8cc66cb739b60e0a9715a6068bf5a2bf@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <049.8cc66cb739b60e0a9715a6068bf5a2bf@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx

#7265: Only display Canvas message for first parties; simply log third parties
--------------------------------------------+-------------------------------
 Reporter:  mikeperry                       |          Owner:  mikeperry
     Type:  enhancement                     |         Status:  new      
 Priority:  major                           |      Milestone:           
Component:  Firefox Patch Issues            |        Version:           
 Keywords:  tbb-fingerprinting, tbb-bounty  |         Parent:           
   Points:                                  |   Actualpoints:           
--------------------------------------------+-------------------------------

Comment(by mikeperry):

 In #7084, proper points out this message is frequent and annoying. He's
 right. Perhaps only displaying it for first party URLs would be an
 improvement. We can then just silently block and log third parties to the
 error console.

 It might also be that we have a false positive in this patch and that one
 of these APIs that cause this prompting isn't actually being used to
 extract image data. It does seem weird that it is so prevalent. For
 example, why does github trigger this message?

-- 
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/7265#comment:2>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #7084 [Firefox Patch Issues]: âCanvas image extraction promptâ displays useless message
Next by Author: Re: [tor-bugs] #8234 [Tor bundles/installation]: mac os x ff17 crashes
Previous by thread: Re: [tor-bugs] #8243 [Tor]: Getting the HSDir flag should require more effort
Next by thread: [tor-bugs] #8244 [Tor]: The HSDirs for a hidden service should not be predictable indefinitely into the future
Index(es):
- Author
- Thread