Closed
Bug 553124
Opened 14 years ago
Closed 14 years ago
After bug 147777 lands, private browsing doesn't need to disable coloring of visited links any more
Categories
(Firefox :: Private Browsing, defect)
Firefox
Private Browsing
Tracking
()
RESOLVED
WONTFIX
Firefox 3.7a4
People
(Reporter: ehsan.akhgari, Assigned: ehsan.akhgari)
References
Details
Attachments
(1 file, 1 obsolete file)
|
19.91 KB,
patch
|
bzbarsky
:
review+
|
Details | Diff | Splinter Review |
With bug 147777, the privacy concerns of enabling visited link coloring in private browsing mode no longer apply, so they should be removed.
|
||
Updated•14 years ago
|
Version: 3.5 Branch → Trunk
|
Assignee | |
Comment 1•14 years ago
|
||
This is basically a backout of these two revisions: http://hg.mozilla.org/mozilla-central/rev/db0c3219ed3d http://hg.mozilla.org/mozilla-central/rev/0de77eb4c268 except that it removes the related tests entirely. Asking for review from bz on the layout parts and from sdwilsh on the places parts.
Attachment #437070 -
Flags: review?(sdwilsh)
Attachment #437070 -
Flags: review?(bzbarsky)
|
||
Comment 2•14 years ago
|
||
Comment on attachment 437070 [details] [diff] [review] Patch (v1) WIN! r=sdwilsh
Attachment #437070 -
Flags: review?(sdwilsh) → review+
|
|
Assignee | |
Comment 3•14 years ago
|
||
The previous patch missed a part which caused it not to compile, but that wasn't in places, so I'm carrying forward Shawn's review here.
Attachment #437070 -
Attachment is obsolete: true
Attachment #437093 -
Flags: review?(bzbarsky)
Attachment #437070 -
Flags: review?(bzbarsky)
|
||
Comment 4•14 years ago
|
||
Wait. Can someone remind me again what the idea of private browsing mode is and why we didn't want to color the links before but do now?
|
|
Assignee | |
Comment 5•14 years ago
|
||
(In reply to comment #4) > Wait. Can someone remind me again what the idea of private browsing mode is > and why we didn't want to color the links before but do now? Private browsing is about not saving local tracks of what user has done on the web. A side goal is preventing websites from telling whether the user is inside private browsing mode or not. Without bug 147777, if a website which sets an effectively permanent cookie can use the privacy leak to figure out if you've visited it before. Now, if you're not sending out cookies, there's a good chance that the website can figure out if you're inside the private browsing mode. With bug 147777, this is no longer an issue, so we can disable this code now.
|
|
||
Comment 6•14 years ago
|
||
Ah, I see. OK.
|
|
||
Comment 7•14 years ago
|
||
Comment on attachment 437093 [details] [diff] [review] Patch (v2) r=bzbarsky
Attachment #437093 -
Flags: review?(bzbarsky) → review+
|
|
Assignee | |
Comment 8•14 years ago
|
||
http://hg.mozilla.org/mozilla-central/rev/9786ae3984b3 This actually removes some automated tests, so marking it in-testsuite-. ;-)
Status: ASSIGNED → RESOLVED
Closed: 14 years ago
Flags: in-testsuite-
Resolution: --- → FIXED
Target Milestone: --- → Firefox 3.7a4
(In reply to comment #0) > With bug 147777, the privacy concerns of enabling visited link coloring in > private browsing mode no longer apply, so they should be removed. So, for the record, I wouldn't quite go that far. Bug 147777 doesn't attempt to address attacks that involve user interaction. I'm not saying this change doesn't make sense (or that it does) -- it depends on how conservative you want private browsing mode to be, and I'm not really in a position to judge that.
|
|
Assignee | |
Comment 10•14 years ago
|
||
(In reply to comment #9) > (In reply to comment #0) > > With bug 147777, the privacy concerns of enabling visited link coloring in > > private browsing mode no longer apply, so they should be removed. > > So, for the record, I wouldn't quite go that far. Bug 147777 doesn't attempt > to address attacks that involve user interaction. > > I'm not saying this change doesn't make sense (or that it does) -- it depends > on how conservative you want private browsing mode to be, and I'm not really in > a position to judge that. Would we be any safer without this patch? I mean, are there attacks which can be protected against by the code which this patch removed and cannot be protected against by the code landed as part of bug 147777?
Yes, there are such attacks. For example, the site could have a link twice, styled such that in one place it's visible only if visited (and when unvisited, it's the same color as the background), and the reverse for the other place. Then they can determine whether the user visited the site by seeing which one the user clicks on.
|
|
Assignee | |
Comment 12•14 years ago
|
||
(In reply to comment #11) > Yes, there are such attacks. For example, the site could have a link twice, > styled such that in one place it's visible only if visited (and when unvisited, > it's the same color as the background), and the reverse for the other place. > Then they can determine whether the user visited the site by seeing which one > the user clicks on. You're right. In that case, I tend to lean on the side of preserving the previous behavior, which means backing this patch out and resolving this bug as WONTFIX. I'll do that tomorrow.
|
|
Assignee | |
Comment 13•14 years ago
|
||
Backed out the patch. http://hg.mozilla.org/mozilla-central/rev/81086dc562b0
Resolution: FIXED → WONTFIX
You need to log in
before you can comment on or make changes to this bug.
Description
•