maintainer-feedback requested: [Bug 237414] www/firefox-esr: navigator.userAgent is vulnerable to fingerprinting
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Sat Apr 20 12:56:41 UTC 2019
Bugzilla Automation <bugzilla at FreeBSD.org> has asked freebsd-gecko mailing list
<gecko at FreeBSD.org> for maintainer-feedback:
Bug 237414: www/firefox-esr: navigator.userAgent is vulnerable to
fingerprinting
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=237414
--- Description ---
Having tested there:
https://ghacksuserjs.github.io/TorZillaPrint/TorZillaPrint.html
----Output-----
[header] http_user_agent
[navigator] userAgent Mozilla/5.0 (X11; FreeBSD i386; rv:60.0) Gecko/20100101
Firefox/60.0
[navigator] appCodeName Mozilla
[navigator] appName Netscape
[navigator] product Gecko
[navigator] appVersion 5.0 (X11)
[navigator] oscpu Windows NT 6.0; Win64; x64
[navigator] platform Win64
[navigator] buildID 20100101
[navigator] productSub 20100101
---browser, version, os---
[css] browser
[error messages] browser Firefox
---------
userAgent shows 'X11; FreeBSD i386' while oscpu seems to be faked to 'Windows
NT 6.0; Win64; x64' and ist as such not consistent.
This is *very* bad as it makes one pretty unique for browser fingerprinting
More information about the freebsd-gecko
mailing list