[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: browser fingerprinting - panopticlick

To: or-talk@xxxxxxxx
Subject: Re: browser fingerprinting - panopticlick
From: 7v5w7go9ub0o <7v5w7go9ub0o@xxxxxxxxx>
Date: Fri, 29 Jan 2010 20:20:18 -0500
Cc: or-talk@xxxxxxxxxxxxx
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Sun, 21 Feb 2010 19:58:42 -0500
In-reply-to: <4B638510.8050203@xxxxxxxxxxxxxx>
References: <4ef5fec61001271330i381cfc99i632a97b7cc820e3b@xxxxxxxxxxxxxx> <20100129145511.GC18510@xxxxxxxxxxxx> <4B6354C1.8070007@xxxxxxxxxxx> <4B638510.8050203@xxxxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx

Andrew Lewman wrote:
> On 01/29/2010 04:36 PM, Michael Holstein wrote:
>>> The main cause was the screen resolution.
> 
> https://blog.torproject.org/blog/effs-panopticlick-and-torbutton
> 
>> Running TOR and leaving javascript enabled sort of defeats the 
>> point, doesn't it?
> 
> Not really.  Most of the websites are useless without javascript 
> enabled.  Torbutton protects against known attacks via javascript 
> (yes there's something to be said about unknown attacks...).
> 

(Sigh)...Exactly right; and add flash to that prerequisite.

As we slowly transition to web 2.0, probably the next step is putting
the TOR browser in a VM full of bogus, randomized userid/sysid/network
information - carefully firewalled to allow TOR access only (TOR would
be running somewhere outside the browser VM).

***********************************************************************
To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxxx with
unsubscribe or-talk    in the body. http://archives.seul.org/or/talk/

Prev by Author: Re: browser fingerprinting - panopticlick
Next by Author: Create a SAFE TOR Hidden Service in a VM (Re: Please Help Me Test my Hidden Service Pt. 2)
Previous by thread: Re: browser fingerprinting - panopticlick
Next by thread: Re: browser fingerprinting - panopticlick
Index(es):
- Author
- Thread