Fingerprinting protection mode unintentionally breaks several popular sites #2965
Comments
|
Same issue for Dropbox for PDF documents. Any PDF document link doesn't load just shows the loading ticker. Disabling Fingerprint loads the document. |
|
probably fixable by having fingerprinting protection enabled for 3rd party only. however i don't think this is high priority since fp is off-by-default with a warning that it will break sites. |
|
Same issue in Google sheets |
|
the biggest downside of having canvas/webgl fp block on for third-party only is that we will report as not blocking fingerprinting on sites like panopticlick and browserleaks. |
|
Could block canvasfp based on curated 1p block-list? 3p seems the big threat, the check whether you are vuln 1p tests are few and well known enough to manage a list. |
|
@diracdeltas: would it help to know the URL of the script (the "third party") that does the canvas operations we detect, as opposed to the site URL (the first party)? |
that's what i meant; i think we already have a way to detect the third party URL |
|
report of issue w/ messenger.com #3719 (comment) |
|
reported issue w/ maps.google.com #2341 |
|
May include fonts.google.com |
|
includes photos.google.com |
|
Could the Shield Exceptions allow for wildcards in domains? example: "*.google.com" |
|
+1 from community on icloud.com |
|
Same problem with charts made with this library: https://fvancop.github.io/ChartNew.js/demo_program/index.html I'm using this in one of my projects, and the fingerprinting protection blocks the canvas and breaks the page. |
|
if anyone here wants to compile a list of known sites that break due to fp protection based on the comments in github and support, that would help greatly in implementing an exception dialog. |
|
+1 from users @ckaylinpercipio @newmanea They experienced issues opening Google Sheets files: |
|
Re: iCloud I still have to turn off fingerprinting to access iCloud as of June 20, 2017. I first reported seeing this in August of 2016 as i recall it. Anyway, I am wondering if Fingerprinting can be broken down into sub-parts and those that break iCloud could be identified. Maybe even say a Fingerprinting Security Level system could be established with Level 1 being the lowest level of FP security and the highest being open-ended so the levels can be compared. I am also if Brave can send the most common font set to the sire and retranslate the returning html to what Brave needs thereby masking the site with respect to fonts. Perhaps this technique can be tried with those components of fingerprinting that are most often uniquely identifying of a user. I would worry about the overhead, but perhaps with the increased speed of CPUs and hardware and systems in general this isn't a major issue. I would suspect that anything that could be requested for fp purposes that could be masked by substituting the most generic response would enhance fingerprinting protection. In summary, here are some ideas:
Maybe something here will be helpful? |
|
Closing in favor of brave/brave-browser#1025 |
Did you search for similar issues before submitting this one?
yes
Describe the issue you encountered:
After globally enabling fingerprinting protection mode, I noticed some popular sites are broken
Expected behavior:
The user opts-in for protection (and they are warned about this) so being broken might truly be the expected behavior. However, it might not be obvious to the user that something is wrong.
We have an opportunity to consider changing the expected behavior to one of the following:
Windows 10
0.11.2
The text was updated successfully, but these errors were encountered: