[tor-bugs] #22320 [Applications/Tor Browser]: Referrer not hidden when comming from a .onion address

Tor Bug Tracker & Wiki blackhole at torproject.org
Wed May 24 21:03:01 UTC 2017


#22320: Referrer not hidden when comming from a .onion address
-------------------------------------------------+-------------------------
 Reporter:  pege                                 |          Owner:  tbb-
                                                 |  team
     Type:  defect                               |         Status:
                                                 |  needs_review
 Priority:  Medium                               |      Milestone:
Component:  Applications/Tor Browser             |        Version:
 Severity:  Normal                               |     Resolution:
 Keywords:  ff52-esr, tbb-7.0-must,              |  Actual Points:
  TorBrowserTeam201705R                          |
Parent ID:                                       |         Points:
 Reviewer:                                       |        Sponsor:
-------------------------------------------------+-------------------------

Comment (by arthuredelstein):

 Here's the patch:
 https://github.com/arthuredelstein/tor-browser/commit/22320

 I manually tested this and confirmed that when the pref
 "network.http.referer.hideOnionSource" is true, no referer is sent in the
 headers when leaving an onion site. But when the pref is false, a referer
 containing the .onion domain is sent.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/22320#comment:5>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list