[tbb-bugs] #21607 [Applications/Tor Browser]: Investigate WebVR API 1.1 for fingerprinting/linkability risks

Tor Bug Tracker & Wiki blackhole at torproject.org
Thu Jul 13 02:05:18 UTC 2017

#21607: Investigate WebVR API 1.1 for fingerprinting/linkability risks
 Reporter:  gk                        |          Owner:  tbb-team
     Type:  enhancement               |         Status:  new
 Priority:  Medium                    |      Milestone:
Component:  Applications/Tor Browser  |        Version:
 Severity:  Normal                    |     Resolution:
 Keywords:  ff59-esr                  |  Actual Points:
Parent ID:                            |         Points:
 Reviewer:                            |        Sponsor:

Comment (by joebt):

 Investigating any new browser change is always good, but will webvr even
 work with WebGL blocked by default in NoScript?

 There's always a chance something could leak or be detectable, even if
 virtual reality doesn't work for users.  A brief search of NoScript's site
 and the web didn't turn up any discussion of NoScript adding a block webVR

 In TBB - Fx 52.2, about:config pref "dom.vr.oculus.enabled" is true, by
 It looks like 6 other similar prefs are set false, for now.

 For those already checking it out in Fx nightlies, doesn't it show up
 under plugins manager, where it can be disabled?

Ticket URL: <https://trac.torproject.org/projects/tor/ticket/21607#comment:1>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

More information about the tbb-bugs mailing list