[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: Firefox video tag
- To: or-talk@xxxxxxxxxxxxx
- Subject: Re: Firefox video tag
- From: Erilenz <erilenz@xxxxxxxxx>
- Date: Wed, 1 Jul 2009 06:34:25 -0400
- Delivered-to: archiver@xxxxxxxx
- Delivered-to: or-talk-outgoing@xxxxxxxx
- Delivered-to: or-talk@xxxxxxxx
- Delivery-date: Wed, 01 Jul 2009 06:31:59 -0400
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to :subject:mime-version:content-type:content-disposition; bh=lrSYCoWRqiXn5ly10EfhDE1ddrDAKdNHwx1bcjfYbvQ=; b=Zku5nQNOF0js5nJNQG6EDcZPsXDV639ASAckK3hDNZQRIqE7v6az4c336UVIoa53FE XJAju+li5n7DX8n5MTmQAOzXqtW0CtN98nYEzEk1ggu4I577Ps9oQ8tjIzwon9Xt92fL mK/b1VD6K+SaMrx+OPpv8SuAUj+frG2H3K2BY=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:mime-version:content-type :content-disposition; b=EfGUixC3JGgNBuuJ8PEEfeTZuM6TflrGaRJIuOHMbvzCUEY8v6AfWqZMo5wi/MEXCx 2UzVRgzHAVh29GK42HWSsC0Wtg9W/ucjpkHBM4KNT09E9yVR9N/5nemfV0oHPKbTrMmE SxJAQPc7J5bJDmg+k6PmF6Vuzj25sTDD2CoiE=
- Reply-to: or-talk@xxxxxxxxxxxxx
- Sender: owner-or-talk@xxxxxxxxxxxxx
* on the Tue, Jun 30, 2009 at 09:56:05PM -0400, Gregory Maxwell wrote:
>> Firefox 3.5 was released today. Has anyone investigated the new video tag that
>> it supports with regards to whether or not it can cause leaks with Tor?
> <video> and <audio> should have exactly the same attack surface as <img> has.
> Thats one of the benefits that firefox's approach of building the
> codecs internally rather than invoking an external media framework
> (like safari does) should have.
> I've been hoping very much that tor would not ultimately need to filter these???
So as long as Firefox doesn't invoke an external media player for any video type it
supports, it's safe for Tor? Perhaps it's worth keeping an eye on it in case they
introduce a new video type which uses an external player which bypasses the proxy