Análises para CSS Exfil Protection
CSS Exfil Protection por Mike Gualtieri
50 análises
- Avaliado em 5 de 5por Utilizador do Firefox 14852166 , há 6 anos
- Avaliado em 4 de 5por Utilizador do Firefox 14850664 , há 6 anos
- Avaliado em 5 de 5por Utilizador do Firefox 14157356 , há 6 anos
- Avaliado em 5 de 5por Utilizador do Firefox 13215575 , há 6 anos
- Avaliado em 5 de 5por alekksander , há 6 anos
- Avaliado em 5 de 5por Utilizador do Firefox 14678799 , há 6 anos
- Avaliado em 4 de 5por Utilizador do Firefox 14613566 , há 6 anos
- Avaliado em 5 de 5por Utilizador do Firefox 14559273 , há 6 anos
- Avaliado em 4 de 5por Utilizador do Firefox 14416076 , há 6 anosIs there a way to disable this on certain domains? It breaks certain sites styling (4chan.org/g/).
Resposta do programador
publicado a há 6 anosNot at the moment, but it's planned. I checked 4chan and styling works OK in Chrome, but not Firefox so there must be something specific in Firefox that's causing an issue. I'll look into why this may be happening.
Edit 11/19/2018: FYI - A new version of the plugin has been released today (1.0.10) that should fix the issue you were experiencing. Resposta do programador
publicado a há 7 anosI did not, but maybe I should. I've thought about reaching out to a project like Brave that includes privacy protections in the default configuration. Either way, I would want to review the Firefox source first and determine how such an implementation would be handled. There are advantages to including such protections within the browser itself; but, the negative is that it breaks compatibility with the CSS specification standard. The flaw isn't necessarily within the browser, but in CSS itself.- Avaliado em 5 de 5por Utilizador do Firefox 12654054 , há 7 anosMuch thanks for writing this add-on!
- Avaliado em 5 de 5por MrDontCare , há 7 anos
- Avaliado em 5 de 5por Langoliers , há 7 anosI had no idea this was an issue until reading about it recently. Thanks so much for this extension, appears to be working based on the test page. Hopefully I'll never find a website compromised and using CSS in this manner, however, at least I will have a number sign to show how many and also protection against it.
Thanks for that!
Also, I haven't found the compiled version for Chrome, is it on the chrome store? My friend uses chrome, thanks.Resposta do programador
publicado a há 7 anosThanks for the review! You should be able to find it on the Chrome store by searching 'CSS Exfil Protection'. I also have a direct link from the vulnerability tester page: https://www.mike-gualtieri.com/css-exfil-vulnerability-tester - Avaliado em 4 de 5por Utilizador do Firefox 13262486 , há 7 anosThanks for this. But when I disable JS on a website having this addon makes the website send 2 requests for each css request - one as CSS and tries to send one as a XHR request (even though JS is disabled for the website). Why is this?
- Avaliado em 4 de 5por Utilizador do Firefox 12793954 , há 7 anosHello, could you make it enable/disable on icon click instead of opening the popup?
Resposta do programador
publicado a há 7 anosThanks for the suggestion! I plan to add a few new features into the popup area so for the time being I need to keep the icon click for opening the popup. If you need to disable the plugin because it's not working on a site, please let me know what site is causing problems and I'll get a fix out asap! - Avaliado em 5 de 5por Utilizador do Firefox 13587401 , há 7 anos
- Avaliado em 5 de 5por Donald Reed , há 7 anosThanks for this interesting project! Unfortunately it causes issues on some sites so it would be nice to have a whitelist per site instead of disabling it everywhere.
Resposta do programador
publicado a há 7 anosThanks for the comment and review! A whitelist is a great idea I'll work into a future release. In the meantime, could you leave a comment on my website with the site(s) that are causing issue? I'd like to see if this is due to a bug / false positive, or if it is legitimately blocking styles which would cause issue.