[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: Torbutton: a.User Agent, b.Cookies Management
- To: or-talk@xxxxxxxxxxxxx
- Subject: Re: Torbutton: a.User Agent, b.Cookies Management
- From: grarpamp <grarpamp@xxxxxxxxx>
- Date: Mon, 21 Dec 2009 02:14:06 -0500
- Delivered-to: archiver@xxxxxxxx
- Delivered-to: or-talk-outgoing@xxxxxxxx
- Delivered-to: or-talk@xxxxxxxx
- Delivery-date: Mon, 21 Dec 2009 02:14:09 -0500
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:content-type; bh=zk1HLBH/Vw7IG8evc47Gbjc46eczZ1G2N0SnG3F8qfo=; b=NYQBAjkOKiD8bX8BP6yi1xNcawB7B7FzzNs6Re6+Q37/xGN19dn+0GciW4S0uW3rxU MoJSOke45vMAzw9kZazyDe8ka/4YaJFY9mwLw41CjmMX5RWqDfbPFzjzG9Fy8CGzstc7 zLshaoycraeZQS/0VtAua+aPlMBdK5VIwv9nk=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; b=cWCwuudjRJ3WEvO5gLZ2TFtHGvdel1HW+1yD59LMOiCO7UhW+Crw0uFOhXJBryunMR oEX99n4+nz5Zhkmo8U29E4E+PLkAMs+rDEPX6Xwl27x6vLRlTCCOM3LbcWiWumGjuZca 4jktvLuliOVXP4gxBBJLRGRF2kxO8bwEQwwMU=
- In-reply-to: <N1B-4dJ-KPFL0F@xxxxxxxxxxxxx>
- References: <N1B-4dJ-KPFL0F@xxxxxxxxxxxxx>
- Reply-to: or-talk@xxxxxxxxxxxxx
- Sender: owner-or-talk@xxxxxxxxxxxxx
> When googling for Torbutton's UA, the results are uncommon
You need to post the UA you're talking about and their sources.
For reference, as of today, some current UA's via tcpdump are:
MSIE xp pro sp0 -> sp2 -> sp3 + all available windows updates
Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; .NET
CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR
3.0.04506.648; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)
FF_WIN as above
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.1.6)
Gecko/20091201 Firefox/3.5.6 (.NET CLR 3.5.30729)
FF_FBSD 8-STABLE
Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.9.1.6) Gecko/20091218
Firefox/3.5.6
> using an outdated Fire-fox string should be frowned upon.
Agreed. But consideration needs given to the realworld
percentage of strings in use. It's not 100% all current releases
out there but some delay factor. Though that could warrant
keeping up anyways as torbutton will age too.
> whether or not the "rv" and "gecko" bits to the UA string
> should be disposed of for Torbutton use.
No. You want the actual strings in use by real systems as above. Not
some mangled standout. Though the null string has interesting
properties for possibly futzing up a site's log parsing.
> Not every tor user uses Torbutton
It's certainly not necessary to use it.
> option of personal customization of the UA string and a few default
--
> use another browser extension for changing the UA
Not necessary due to built in browser config options.
tmtowtdi.
> b. Cookies Management
I'd rather get back the FF ctrl-shift-delete and boom, state is
gone with a little drive light/noise as confirmation.
Now it pops up an annoying mandantory ack dialog that I
can't option out without editing the source :(
If I wanted cookies disabled, there's a config for that.
I'd kill for a tiny bottom right status bar light / keystroke toggle
for disable/enable: cookies, java, javacript
And I am taking suggestions on an extension that will allow me
to do all of:
- Force any given cookie to always have the same user or site set
value, ignoring any new values set by the site.
- Prevent any given cookie from being set in the browser in
the first place.
- Allow any given cookie to be set in the browser [for observation]
but not sent to the site.
- Save and restore given cookies to disk regardless of site set
expiration or session only values.
***********************************************************************
To unsubscribe, send an e-mail to majordomo@xxxxxxxxxxxxxx with
unsubscribe or-talk in the body. http://archives.seul.org/or/talk/