[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #18046 [Tor Browser]: how to protect anonymity of users using menu / bookmarks bars?

Subject: Re: [tor-bugs] #18046 [Tor Browser]: how to protect anonymity of users using menu / bookmarks bars?
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Mon, 08 Feb 2016 10:08:57 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Mon, 08 Feb 2016 05:09:09 -0500
In-reply-to: <058.9ceeb26e4c1dbcbf41f399667fde60b8@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <058.9ceeb26e4c1dbcbf41f399667fde60b8@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#18046: how to protect anonymity of users using menu / bookmarks bars?
-------------------------------------------+---------------------------
 Reporter:  zorlaguzellikolmaz             |          Owner:  tbb-team
     Type:  defect                         |         Status:  closed
 Priority:  Medium                         |      Milestone:
Component:  Tor Browser                    |        Version:
 Severity:  Normal                         |     Resolution:  duplicate
 Keywords:  tbb-fingerprinting-resolution  |  Actual Points:
Parent ID:                                 |         Points:
  Sponsor:                                 |
-------------------------------------------+---------------------------

Comment (by gk):

 Replying to [ticket:18046 zorlaguzellikolmaz]:
 > I am concerned that users adding a menu bar or a bookmarks bar to their
 tor browser may be reporting smaller and trackable window heights to
 websites. I am not sure if this is the case, but I suspect so.

 Yes, it is.

 > I'd make the case that reporting a set window size to websites
 regardless of what the actual Tor window is is the safest option. An extra
 button between minimize and maximize could resize the window to the
 expected size when needed.

 I think this is not going to work apart from the fact that basically no
 user will ever understand this additional button given that this is not
 how they are trained to use browsers and other applications.

 > Another reason to consider this option is that well-meaning users trying
 to move the window sometimes wind up resizing it without intent, or in
 trying to resize it dispell the warning and work in another size window.
 This is difficult to avoid with trackpads, which are prone to drag-and-
 drop errors. And then the user must choose between restarting the browser
 and losing work or potentially not even realise it and continue working in
 a compromised manner.

 This is a concern, yes. We are working on a solution to this in #14429.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/18046#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #16456 [Tor Browser]: screen size fingerprint with findbar panel/bookmarks toolbar
Next by Author: Re: [tor-bugs] #18254 [Tor Browser]: option to disable a security prompt when it pops up
Previous by thread: Re: [tor-bugs] #18046 [Tor Browser]: how to protect anonymity of users using menu / bookmarks bars?
Next by thread: Re: [tor-bugs] #16456 [Tor Browser]: screen size fingerprint with findbar panel/bookmarks toolbar
Index(es):
- Author
- Thread