Slashdot Mirror
Firefox 59 Will Stop Websites Snooping on Where You've Just Been (zdnet.com)
Firefox 59 will reduce how much information websites pass on about visitors in an attempt to improve privacy for users of its private browsing mode. From a report: When you click a link in your browser to navigate to a new site, the site you go on to visit receives the address of the site you came from, via the so-called "referrer value." While this helps websites understand where visitors are coming from, it can also leak data about the individual browsing, because it tells the site the exact page you were looking at when you clicked the link, said Mozilla. Browsers also send a referrer value when requesting other details like ads, or other social media snippets integrated in a modern website, which means these embedded content features also know exactly what page you're visiting.
This privacy issue has been known for as long as browsers have been around. Nevertheless, this is good news.
The headline implies this change will prevent sites from knowing what site you linked from. That's incorrect. From the article:
To prevent this type of data leakage, from Firefox 59, the private browsing option will remove path information from referrer values sent to third parties, effectively stripping out additional data and only leaving the web domain.
If you RTFA (I know, I know; I must be new around here), you'll see this is only for Private Mode, and leaves the domain portion intact. You can still see if they loaded from your domain.
I use a privoxy http proxy for all the browsing on my home network. I have privoxy configured to block the referrer when it is cross-site. However, from one page to another within the same site, privoxy is configured to allow the referrer to pass unaltered, for the exact reason you say.
Why wouldn't this be the default?
Same site allow referrer. Anything else completely block it.
This will ruin my fun of constantly going to pornhub then moving right to the Christian Coalition site to fill their logs up with porn referrals
Sent from my TARDIS
if youre checkin http_referrer for valid requests, youre doing it wrong anyway. referrer can be faked easily therefore absolutely not reliable.
When you click a link in your browser to navigate to a new site, the site you go on to visit receives the address of the site you came from, via the so-called "referrer value."
This is how the web has always worked and it's a public specification. There's nothing so called or nefarious here.
You'll break sites that only show you the full content when coming from Google but throw up an interterrestrial when direct linking if you do that, setting referrer to be only domain if doing cross-site is probably the best option.
There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.
I have 184 tabs open at the moment and my Firefox processes are using a total of ~900MB of RAM, what are you doing to get it to 15GB?!?
There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.
Meh, in private browsing mode they really should kill the referrer from any top level page. If it's an <img>, <iframe> or <video> tag it's cool... but if I go from foo.com to bar.com via an <a href> it shouldn't secretly tell bar.com I came from foo.com. Transparency in what information you're exposing is essential to security and most people aren't aware it's happening.
Live today, because you never know what tomorrow brings
...You'll break sites that only show you the full content when coming from Google but throw up an interterrestrial when direct linking if you do that...
Which is why I use the Toggle-Proxy add-in (one of the extensions that stopped working in Firefox and one of the reasons why I moved to Waterfox). If I see the very infrequent site that offers the interstitial as you say, I just turn off the proxy and go direct. But it is my choice when I want to do that.
You probably meant interstitial, as inter-terrestrial could be somewhat delayed.
If you deny hotlinking, and a user of another website supporting Open Graph protocol links to a document on your site, then the link will look unusually plain because the site won't be able to display the thumbnail declared in og:image . What mechanism have you put in place to allow hotlinking only in the context of thumbnails intended to attract visits to documents on your site, such as og:image, and deny it otherwise? Or do you just opt out of offering thumbnails for other authors to use when citing your documents?
To counter "unused RAM is wasted RAM", make your complaints explicitly about the user-observable symptom: "Firefox causes my computer to thrash swap when I do X, Y, and Z." If you have made a report that explicitly mentioned page file usage, what was the reply?
Then what image should a document on one site use to represent the document on another site to which it is linking?
If that is the case I'd say they should block the header in all cases except if the domain matches the domain the request is for.
Account -> Discussions -> Disable Sigs
Google itself removes the referer (an url with a query) when I use open source statistics software like Piwik, for "privacy reasons", except they do show what people searched for on their own analytics services, so in reality it was just to give the middle finger to competition, using the near monopoly of the search engine. So I'd like Firefox to return the favor and not hand the complete referer to any 3rd parties loaded on websites. Just do this in the header to Google:
Referer: -_-*,,|,
To prevent this type of data leakage, from Firefox 59, the private browsing option will remove path information from referrer values sent to third parties, effectively stripping out additional data and only leaving the web domain.
Hopefully this is just the first step toward a proper solution. Step 2 is to apply the same policy for intra-site links, to prevent sites from filtering on the exact page address. Step 3 is to always send the requested resource's domain, regardless of the source.
"The state is that great fiction by which everyone tries to live at the expense of everyone else." - Bastiat
Processes listed by name showing all FF processes, tabcount addon showing tab count, not sure what more you want...
https://photos.app.goo.gl/MWnO...
https://photos.app.goo.gl/XjFr...
There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.
1.5, not 15, and that was before, now it is usually twice that. Currently there are 6 Firefox processes running, using 695, 380, 354, 335, 305, and 201 MB respectively (so ONLY ~2.3GB now), after restarting about an hour ago. I have 4 windows open with probably 70 tabs spread across them, which I admit is a lot, but this is what I have always done. The vast majority of those tabs are not even loaded, because I haven't looked at them since the last time I had to kill the processes to get it working again.
I have two extensions, Ad-Block Plus (Easylist and NoCoin) and Ghostery (which is blocking pretty much everything it can). I have three plug-ins, all of which are set to "Ask to activate"
Fun thing about the latest update, I can click exit and the application windows close, but the processes do not, they are still happily chugging away in the background using 3 GB of RAM. If There is a YouTube Video playing when I kill it, it will continue to play the audio, even though there is no open FF window.
Forgot to mention, FF 58.0.1 (64 Bit)
Unlike many people, I've actually read Firefox's privacy policy.
It turns out that Firefox's privacy policy is quite disturbing, especially when considering how often we're told that Firefox supposedly "cares" about our privacy.
The Firefox privacy policy dated September 28, 2017 makes it clear that Firefox user data can be collected by Firefox and can be sent to various third parties, including Google, some "Adjust" company, some "Leanplum" company, and SalesForce.
For example, there are very worrying sections like (emphasis has been added):
and:
and:
and:
and:
Some people will foolishly claim that privacy violations like these are "acceptable" because they can supposedly be "disabled".
No, they're not acceptable at all!
Intrusive data collection/transmission like this shouldn't have to be disabled; the code implementing this data collection and transmission shouldn't even exist in the first place! There should be nothing to disable because Firefox should not be able to collect this data, and it should not be able to transmit it anywhere.
Reading Firefox's privacy policy has made me very distrustful of Firefox and Mozilla, and especially of the people who wrongly claim that Firefox somehow "respects its users' privacy".
Old Opera (the Presto engine, versions 7-12) had an option to disable this years ago. (Of course years ago, since it is no longer available.)
Glad to see someone else using Matomo (formerly Piwik) instead of third-party analytics.
Seeing as you've shown interest in helping viewers find documents on your site, have you tried signing up for the major web search engines' webmaster tools, such as Google Search Console? I was under the impression that these tools offered search queries even without having to install a search engine's analytics script on your site. (Source: "What is Search Console?"; "Help Center - Bing Webmaster Tools")
Another tip: Does your site use HTTPS? If so, the Referer is more likely to have useful information than if your site uses cleartext HTTP. The major search engines have shifted to HTTPS since the Firesheep and PRISM revelations, and browsers tend to strip out Referer for cross-scheme links. Once you set up HTTPS with Let's Encrypt on your site, let search engines know to prefer the HTTPS version by with three steps:
Let me know when key binding support for new-style addons is fixed.
TFS, TFA don't say.
It little behooves the best of us to comment on the rest of us.
Which provider other than Google would you recommend that Firefox instead use when the user chooses to query the safety reputation of a particular website or downloaded file? Or how do you find why do you find offering the choice to query the safety reputation of a particular website or downloaded file inherently harmful?
Which provider other than Google would you recommend that Firefox instead use when the user chooses to reveal the user's location to a site? Or why do you find offering the choice to reveal the user's location to a site inherently harmful?
Browser vendors can comb the top 10000 websites of the world easily enough and see what features are being used the most.
That won't work for features used more often in the long tail below the top 10000 or behind the login page of the top 10000. This might be the case, for example, for the Encrypted Media Extensions used to enforce audio and video rental terms.
When many, many, many Firefox users keep on reporting again and again and again that Firefox suffers from severe performance and memory usage problems, do you know what the Firefox developers should do? Focus on the performance and memory usage problems that the users are talking about!
When many, many, many Firefox users keep on saying that they don't want their XUL extensions to break, do you know what the Firefox developers should do? Focus on not breaking browser functionality that Firefox users deem to be essential!
What if the memory usage problems are from having XUL extensions?
How about a new tab before navigating, I would imagine that would not send the referer. Is this correct?
[($)]
Thought experiment: restart your browser with extensions disabled and compare usage.
I am using ublock origin after reading somewhere that adblock plus was a performance hog.
1) They need to listen to what their users are voluntarily saying.
"After a Firefox update, this site doesn't let me use it after I've logged in."
2) If they don't understand what their users are saying, then they can ask the users some questions to clarify the situation.
"We aren't members of that site. What error messages is it showing in the Error Console?"
Except I don't see how non-technical end users are likely to be able to answer that usefully.
Sorry, read that as 5 processes at 3GB each. Still that's a LOT. Try switching to ublock origins and privacy badger, both ABP and Ghostery are run by ad networks now and have ad whitelisting, ublock and privacy badger are both open source and maintained by trustworthy groups. You can also try the 32bit version, not a lot of need for 64bit IME (though I guess ASLR would make 64bit more secure so perhaps worth the bloat).
There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.
Nope, Fark, slashdot, ARS Technica, rv.net, management pages for the Netscalers around the world, normal pages. I did reboot last night so a lot of those pages are dormant but I've been working for 5 hours so there's been plenty of activity.
There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.
Not only that, if Slashdot had linked the original Firefox blog post instead of the insipid rehash from ZDNet with an auto-playing video, the GP would have seen that they are actually setting the Referrer-Policy to "strict-origin-when-cross-origin" which doesn't affect same-domain referrals unless they downgrade from HTTPS to HTTP.
Quite frankly, this should be the default already. I have it set that way on all my sites, and today I learned that you can set it client-side on Firefox.
The fact that mozilla tried to really list all the data that it takes and where to send it is good and your post looks like scary, but all of those items have a reasons:
> Google’s SafeBrowsing service
duh! if you want to know if the site/file is in a blacklist, you do need to sent it to some place to be checked. It can be disabled, but of course most people want this enabled
>Location data to Google's geolocation service
duh again, if you see a pop-up from firefox asking that the site wants to see your location, if you press "allow", your IP is sent to some place to map the IP to a location... you can press "not allow" and you will not share anything
>On iOS and Android: Firefox by default sends mobile campaign data to Adjust, our analytics vendor
"Adjust" tracks firefox installs and usage platforms, so firefox can see what works and not works (tables vs cheap phones vs expensive phones, or country, or mobile OS preference)... it is not for tracking what people do online.
Yes, that "Google advertising ID" is scary, but thats the way tracking in mobile works, specially if related with other marking campaigns... and this is for mozilla data analyzes, not to be shared to google. Think this as a newrelic, but instead of performance and errors, place mozilla campaign Id, so they know what campaign pays the most and where/in what devices
>On iOS and Android: Firefox by default sends data about what features you use in Firefox to Leanplum, our mobile marketing vendor, ... again, not for tracking you, but to track features usage or lack of usage
"Leanplum" looks its like Adjust/Newrelic, but for the internal firefox features. probably tells how many people uses webgl, pocket, add-ons, movies, audio, so they can understand better how differently people uses the mobile vs the desktop
>Your email address is sent to our email vendor, SalesForce Marketing Cloud,
"SalesForce Marketing Cloud" is their email provider for the marketing and email announcements... so it basically sends email... and yes, any email server will see your email! most companies do not even list this in their "privacy policy"... because its is the way email works! If you disable email notifications, they probably do not even share your email with then.
All this telemetry is there to help mozilla develop the browser, not to track you. Without it, how they would know if people use many tabs or few tabs? if after releasing a new feature, the memory usage increased everywhere and that they should try to track some leak? if people still use flash and how important is is (ads or the full site in flash). All those "privacy problems" you listed are really needed
When one reads the privacy policy, ones needs to try to understand how and why it is used, not simply cry "wolf" and start spreading FUD
Higuita
most people probably do not use any of the 10000 top sites, as that is just a small fraction of all the sites in the internet. Also, how to determine the 10000 top sites? check what IE reports? then it would probably not map what firefox users see, but what IE users see. That info does not show up by magic.
example: how many people use webm ? is it ok to support that, or is just trash being bundled in the browser? do they use the alternatives to it? or do not use anything? Is feature XYZ slowing down sites? or consuming more ram? have we more crashes since last release?
if you remove all this, you start developing blindly and then get users to complain that the browser is old, slow, eats too much ram or always crashing
many of the telemetry they got is in this site: https://telemetry.mozilla.org/ ... you can see it too!
Higuita
if somebody wants to show a link to my site with a thumbnail, then they're going to have to generate that on their server and serve the image to their users.
That's rehosting, which some authors find even worse than hotlinking because they don't receive the insight about their audience that comes from a list of sites in which the preview image is embedded.
Just tried this, with no active extensions I currently have 7 instances, 675, 510, 248, 245, 88, 36, 20 MB, so ~1.8 GB of RAM, I had closed a few tabs since last time, it also hasn't been running as long as it was when I added things up earlier. Still much worse than it was before the big update a few months ago,
I'd try creating a fresh profile then, launch firefox.exe -P and create a new profile, see if that doesn't help.
There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.
What they really need to disable is third party cookies. Period.
This stops a lot of the tracking. No more advertisements on another site for something you have just searched for on google.
It breaks a few web sites that rely on them, unfortunately. Mostly discussions forums. It does break my credit union's billpay and a host provisioning site at my work, too. IMO, sites that rely on third party cookies are poorly designed.
-- Julien Pierre http://www.madbrain.com/blog
I'm 99% certain I've killed off all this telemetry crap in previous versions of FF, but I recently noticed it's writing crap in the datareporting directory... I _don't think_ it's transmitting it anywhere, but it's still annoying that it has to keep writing all this stuff out. And apparently not cleaning up after itself either.
So any news on that?!!
... However, a few web sites require it to work correctly. :(
Ant(Dude) @ Quality Foraged Links (AQFL.net) & The Ant Farm (antfarm.ma.cx / antfarm.home.dhs.org).
You do realise that free ram is wasted ram.
Provided it's actually free RAM, as opposed to RAM that belongs to another process that would end up swapped out to disk if Firefox were to allocate and use it.
How about letting the users be responsible for the sites they visit? Why should the browser be doing your due diligence for you?
"Freedom in the USA is not the ability to do what you want. It is the ability to stop others from doing what THEY want"
Why should the browser be doing your due diligence for you [with respect to websites that distribute malware]?
Because non-technical users, who outnumber technical users, have seen that as a desirable feature in a web browser.
Thanks. You got some good knowledge.
But you missed one of the most important phrases in their privacy policy:
" {...} which has its own privacy policy.
" {...} which has its own privacy policy.
" {...} which has its own privacy policy.
(Give or take a policy )
Now, to complete interpretation of this policy, these others must be interpreted too.
true, but most of the info is mostly useless by itself, firefox only sends some selected info, when it wants and without other extra info (cookies and likes)... this is very far from tracking all requests, all with tracking cookies.
The 2 most problematic info is the email and the url in safebrowsing. The email, there is nothing to do, that is the way email work, every server that the mail uses can see your email and use it to do spam, even if illegal in many places.
The url in safebrowsing, may be used to track that your ip access that url, but it not clear at all if it is always the same person, as it can be a gateway or dhcp from the isp can screw things for tracking... but that one you can disable if you feel it is still too much
You may thing that the "google ads id" is important, but too little and mostly useless info is send and google already knows that id is using firefox... unless you block all google servers and ads!
Higuita