[tbb-bugs] #19844 [Applications/Tor Browser]: Prevent browser history leaks from CSS mix-blend-mode API in Tor Browser
Tor Bug Tracker & Wiki
blackhole at torproject.org
Fri Aug 12 19:26:02 UTC 2016
#19844: Prevent browser history leaks from CSS mix-blend-mode API in Tor Browser
--------------------------------------+--------------------------
Reporter: isis | Owner: tbb-team
Type: enhancement | Status: closed
Priority: Medium | Milestone:
Component: Applications/Tor Browser | Version:
Severity: Normal | Resolution: invalid
Keywords: tbb-linkability | Actual Points:
Parent ID: | Points:
Reviewer: | Sponsor:
--------------------------------------+--------------------------
Changes (by isis):
* status: needs_information => closed
* resolution: => invalid
Comment:
Replying to [comment:3 gk]:
> Replying to [comment:1 cypherpunks]:
> > lcamtuf's demo does not work for me with Tor Browser 6.0.3.
> >
> > Even I visit the test sites (reddit, amazon, etc.) on the same tab,
the demo cannot find any visited site and suspects that I'm in incognito.
> >
>
> I have the same result with a vanilla 6.0.3. However, the game changes
if I am leaving private browsing mode allowing to record browsing history
on disk. isis, does that match your experience?
Yep. Also, I can confirm that it doesn't work in fresh copies of
TB-6.0.3.
Since protecting against the non-private-browsing-mode case seems outside
the design scope, I'm closing
this. (Feel free to reopen if you feel that's wrong.)
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/19844#comment:4>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tbb-bugs
mailing list