Recenze doplňku CanvasBlocker
CanvasBlocker od kkapsner
Odpověď od uživatele kkapsner
Odpověď vývojáře
zveřejněno před 6 letyThe hashes change for me if I hit "Re-test your browser". Depending on the CB settings the hashes may stay the same (Random number generator). Please open an issue at https://github.com/kkapsner/CanvasBlocker/issues with your settings. Then we investigate the problem further.
Edit in response to your edit: if the hash does not change for you with CanvasBlocker it might be a bug and I want to investigate it further. But this review page is a very bad communication channel for such things (e.g. I did not get any notification that you edited your review and you have no way to actually respond). That's why you should create an issue at Github. It's not about "shuffling people off". It's about better communication and actually solving the problem and/or getting better insight.
The EFF investigation is 10 years old (CB is "only" 5 years old) and I think some improvements were made in the meantime. I can only repeat myself: on https://panopticlick.eff.org/ I get different hashes when I click "Re-test your browser".
I have two ideas why you get the same hash:
1. you have privacy.resistFingerprinting enabled which also protects canvas (see https://github.com/kkapsner/CanvasBlocker/issues/158 and https://github.com/ghacksuserjs/ghacks-user.js/issues/767 for further information)
2. you have the persistent random number generator enabled (stealth preset)
In response to your edit2: it's OK if you do not want to report a Github. At the moment I have no issue open at Github were the protection is not working - I try to solve them as quick as possible. Sometimes it's a CB bug and sometimes it's a misconfiguration or misunderstanding. If you know of other persons with failed protection maybe they want to help me to solve this issue. Without the complete details of the system and some sort of reproduction scenario I have no way of knowing what is going wrong.
I do not know which bad experiences you had with Github but it's simply a development platform and the kind of responses/interaction can vary very much between repositories. It all depends on people.
I had several issue with exactly the same symptom (hash not changing - like https://github.com/kkapsner/CanvasBlocker/issues/199 with Panopticlick or the most recent one being https://github.com/kkapsner/CanvasBlocker/issues/425). All of them were resolved or I had do close them because I did not get an answer for my following up questions that I have to prompt to solve the issue.
I do not say that Panopticlick does not maintain accurate results. I simply say that some people try to solve the problem in the last 10 years and made progress (the most know is the TOR Browser and the Firefox uplift privacy.resistFingerprinting). I know that CanvasBlocker is not perfect and there will be other fingerprinting techniques and attack vectors in the future that CB does not cover at the moment. But at the moment (and especially with the Canvas hashes on Panopticlick) it's working fine.
The "random number generator" is a setting withing the CanvasBlocker settings - I could show you a screenshot of where to find it if we were on Github...
It is set to "persistent" if you selected the "stealth" preset upon installation.
I do not see a point why Mozilla would want to buy my add-on. If they would want to incorporate it into their browser they simply could to it as it's open source and the licence allows the usage for non commercial usage (and they do charge money for Firefox). There are loads of good add-ons that work and that are not integrated into Firefox. That's the idea and beauty of Firefox: you can customize it.
Edit in response to your edit: if the hash does not change for you with CanvasBlocker it might be a bug and I want to investigate it further. But this review page is a very bad communication channel for such things (e.g. I did not get any notification that you edited your review and you have no way to actually respond). That's why you should create an issue at Github. It's not about "shuffling people off". It's about better communication and actually solving the problem and/or getting better insight.
The EFF investigation is 10 years old (CB is "only" 5 years old) and I think some improvements were made in the meantime. I can only repeat myself: on https://panopticlick.eff.org/ I get different hashes when I click "Re-test your browser".
I have two ideas why you get the same hash:
1. you have privacy.resistFingerprinting enabled which also protects canvas (see https://github.com/kkapsner/CanvasBlocker/issues/158 and https://github.com/ghacksuserjs/ghacks-user.js/issues/767 for further information)
2. you have the persistent random number generator enabled (stealth preset)
In response to your edit2: it's OK if you do not want to report a Github. At the moment I have no issue open at Github were the protection is not working - I try to solve them as quick as possible. Sometimes it's a CB bug and sometimes it's a misconfiguration or misunderstanding. If you know of other persons with failed protection maybe they want to help me to solve this issue. Without the complete details of the system and some sort of reproduction scenario I have no way of knowing what is going wrong.
I do not know which bad experiences you had with Github but it's simply a development platform and the kind of responses/interaction can vary very much between repositories. It all depends on people.
I had several issue with exactly the same symptom (hash not changing - like https://github.com/kkapsner/CanvasBlocker/issues/199 with Panopticlick or the most recent one being https://github.com/kkapsner/CanvasBlocker/issues/425). All of them were resolved or I had do close them because I did not get an answer for my following up questions that I have to prompt to solve the issue.
I do not say that Panopticlick does not maintain accurate results. I simply say that some people try to solve the problem in the last 10 years and made progress (the most know is the TOR Browser and the Firefox uplift privacy.resistFingerprinting). I know that CanvasBlocker is not perfect and there will be other fingerprinting techniques and attack vectors in the future that CB does not cover at the moment. But at the moment (and especially with the Canvas hashes on Panopticlick) it's working fine.
The "random number generator" is a setting withing the CanvasBlocker settings - I could show you a screenshot of where to find it if we were on Github...
It is set to "persistent" if you selected the "stealth" preset upon installation.
I do not see a point why Mozilla would want to buy my add-on. If they would want to incorporate it into their browser they simply could to it as it's open source and the licence allows the usage for non commercial usage (and they do charge money for Firefox). There are loads of good add-ons that work and that are not integrated into Firefox. That's the idea and beauty of Firefox: you can customize it.
464 recenzí
- Hodnocení: 5 z 5od uživatele Uživatel Firefoxu - 19173908, před 2 dny
- Hodnocení: 5 z 5od uživatele Saint.77, před 8 dnyOne of the essential plugins for everyone that care about anonymity when you surf on the web. If you stay on one of the 2 lowest settings you can increase your anonymity dramatically on the web without breaking functionality, so you can surf the web pretty much like everyone else without even noticing it while still staying hard to identify if you for example combine this with VPN. This alone will help but its one of several other key plugins you should install to shield yourself against tracking on the web.
- Hodnocení: 5 z 5od uživatele Lilith D. Bracken, před 13 dnyGreat privacy-focused extension that helps protect against fingerprinting. It blocks or fakes the data that websites use to track your device without your consent. I like that you can customize how strict it is for each site, so if something breaks, it’s easy to adjust. It runs quietly in the background and doesn’t slow things down. A must-have for anyone who cares about online privacy and wants more control over what sites can learn about their system.
- Hodnocení: 3 z 5od uživatele Uživatel Firefoxu - 19490358, před měsícem
- Hodnocení: 5 z 5od uživatele Edgar Almeida, před měsícemSeems to work, if you test it at browserleaks(dot)com / canvas with the plugin on, keeps giving new signatures at each refresh, if you turn the plugin off, the signature will remain the same
- Hodnocení: 5 z 5od uživatele 魔王, před 2 měsíci
- Hodnocení: 1 z 5od uživatele Kal, před 2 měsíciDoesn't seem to work. Visited the EFF page (coveryourtracks.eff.org) to check fingerprinting and no luck.
- Hodnocení: 5 z 5od uživatele Zertrax, před 2 měsíciWorks very well. If you want to test this addon whether it works or not, just visit the page which is mentioned in the description. (for example: browserleaks website)
It's just a shame that I only recently discovered canvas fingerprinting, even though it's been around for so long. Keep your privacy up folks. - Hodnocení: 5 z 5od uživatele whatever, před 2 měsíci
- Hodnocení: 1 z 5od uživatele VOIIIXI, před 2 měsíci
- Hodnocení: 1 z 5od uživatele CHANO, před 3 měsíciI became suspicious when there is no tally count, so I went to coveryourtracks.eff. ran the fingerprinting scan and found the app was doing absolutely nothing at all but sitting in my browser collecting info.I will be removing it.And running a system malware scan.
- Hodnocení: 5 z 5od uživatele Uživatel Firefoxu - 19145735, před 3 měsíci
- Hodnocení: 1 z 5od uživatele NameOfDisplay, před 4 měsíciI like the concept of the addon but this is basically useless until the developer explains literally anywhere how to add sites to the whitelist and the settings page doesn't absolutely suck.
Only really useful if you are the developer and understand all of the obtuse menu options. - Hodnocení: 4 z 5od uživatele Mikaela, před 4 měsíci
- Hodnocení: 5 z 5od uživatele BrunoFontes.Net, před 4 měsíci
- Hodnocení: 3 z 5od uživatele Uživatel Firefoxu - 19062474, před 4 měsíciNo instructions on how to use it. Not intuitive to use. I have not a clue if it is doing anything because of this. I will leave it on incase it is working. It would be better as an app to work all the time my device is on rather than just inside my browser.
- Hodnocení: 5 z 5od uživatele thevoid, před 5 měsíci
- Hodnocení: 5 z 5od uživatele Сырное, před 5 měsíci
- Hodnocení: 4 z 5od uživatele Uživatel Firefoxu - 12814982, před 5 měsíciAn sich ein wirklich klasse AddOn, was Webseiten definitiv zu schaffen macht.
Leider bremmst es den Browser je nach Seite extrem aus.
Gerade Karten-Webseiten wie z.B. Google Maps sind teilweise unbenutzbar, wenn der CanvasBlocker zuschlägt.
Der Blocker von Firefox selbst, ist hier etwas harmloser, dafür aber auch von der Block-Qualität schlechter. - Hodnocení: 5 z 5od uživatele Rinshun, před 5 měsíci
- Hodnocení: 5 z 5od uživatele Uživatel Firefoxu - 18642424, před 5 měsíci
- Hodnocení: 1 z 5od uživatele Uživatel Firefoxu - 14186837, před 5 měsíciMade my rating on EFF's CoverYourTrack tool worse!