Mozilla wants to integrate some Tor browser privacy settings into Firefox

Mozilla Firefox logoMozilla engineers are working on importing into Firefox some of the extra privacy settings found in the Tor Browser.

The Tor Browser is a modified version of Firefox ESR (Extended Support Release) that features many privacy-enhancing features.

The Tor Project added these extra tools to prevent malicious actors from fingerprinting Tor traffic and Tor users navigating the Web.

Some of the common ways through which a third-party can fingerprint the Tor users, even if they can't detect their real IP address, is by collecting second-stage information such as supercookies, HTML5 canvas details, screen size, color depth, timezone settings, WebGL details, mouse movements, and so on.

This information is put together to create a very accurate fingerprint of the user when they access other websites, even if their real IP address is never revealed.

Online advertising agencies and crooks running exploit kits also employ fingerprinting for normal Web traffic in order to select and categorize users.

Preventing fingerprinting attacks is a priority for the Tor Project, along with other exploits law enforcement have tried against its users.

As first spotted by gHacks, Mozilla has created the Tor Uplift project in an attempt to bolster Firefox's defenses against fingerprinting attacks. The Foundation plans to import some of Tor's privacy and anti-fingerprinting features into Firefox.

Some of these have already made their way into Firefox Nightly (v50). These are tools to prevent attackers from listing what types of plugins and mimeTypes the user's browser supports, and if the user's browser is using a landscape or other orientation.

There's also a feature that removes the "Open with..." menu option from Firefox, and more Mozilla plans to add more in the future.

These features aren't visible in Firefox's settings or the about:config page. A user needs to navigate to a new tab, type in about:config in the URL bar, right-click anywhere on the page background and select the New -> Boolean option.

Here they must type privacy.resistFingerprinting and set the default value to true. Now the hidden feature is active and can be turned off when not needed anymore.

To prevent new downloads from bringing up the "Open with..." option, while on the about:config page, users must search for the browser.download.forbid_open_with option and set it to true as well.

Source: Softpedia

Tags: browsers, Firefox, Mozilla, security

Comments
Add comment

Your name:
Sign in with:
or
Your comment:


Enter code:

E-mail (not required)
E-mail will not be disclosed to the third party


Last news

 
Consumer group recommends iPhone 8 over anniversary model
 
LTE connections wherever you go and instant waking should come to regular PCs, too
 
That fiction is slowly becoming a reality
 
The Snapdragon 845 octa-core SoC includes the Snapdragon X20 LTE modem
 
Human moderators can help make YouTube a safer place for everyone
 
Google says Progressive Web Apps are the future of app-like webpages
 
All 2018 models to sport the 'notch'
 
The biggest exchange in South Korea, where the BTC/KRW pair is at $14,700 now
The Samsung Galaxy A5 (2017) Review
The evolution of the successful smartphone, now with a waterproof body and USB Type-C
February 7, 2017 /
Samsung Galaxy TabPro S - a tablet with the Windows-keyboard
The first Windows-tablet with the 12-inch display Super AMOLED
June 7, 2016 /
Keyboards for iOS
Ten iOS keyboards review
July 18, 2015 /
Samsung E1200 Mobile Phone Review
A cheap phone with a good screen
March 8, 2015 / 4
Creative Sound Blaster Z sound card review
Good sound for those who are not satisfied with the onboard solution
September 25, 2014 / 2
Samsung Galaxy Gear: Smartwatch at High Price
The first smartwatch from Samsung - almost a smartphone with a small body
December 19, 2013 /
 
 

News Archive

 
 
SuMoTuWeThFrSa
     12
3456789
10111213141516
17181920212223
24252627282930
31      




Poll

Do you use microSD card with your phone?
or leave your own version in comments (4)