New browser capabilities and features are designed to improve the user experience or compatibility with technologies.
Sometimes, these features may also be used for shady activities such as user tracking.
Mozilla is aware of the issue but has not made a decision yet as to what to do about it. The organization plans to gather telemetry data on intermediate CA caching, especially how often it is useful to users.
http://www.ghacks.net/2017/02/22/firefo ... a-caching/
(The test doesnt start in Pale Moon with nativ useragent)
Firefox Fingerprinting using intermediate CA caching
Re: Firefox Fingerprinting using intermediate CA caching
And not caching intermediate CA certs will allow fingerprinting to occur by other parties... with greater accuracy, since the browser will be forced to look up and verify certs each time you visit a site with the same intermediate. Not to mention it being slower and requiring many more connections.
So, it's going to happen no matter what you do, and I'm pretty sure caching certs is the lesser of two evils
So, it's going to happen no matter what you do, and I'm pretty sure caching certs is the lesser of two evils
"Sometimes, the best way to get what you want is to be a good person." -- Louis Rossmann
"Seek wisdom, not knowledge. Knowledge is of the past; wisdom is of the future." -- Native American proverb
"Linux makes everything difficult." -- Lyceus Anubite
"Seek wisdom, not knowledge. Knowledge is of the past; wisdom is of the future." -- Native American proverb
"Linux makes everything difficult." -- Lyceus Anubite
-
dark_moon
Re: Firefox Fingerprinting using intermediate CA caching
Damn, i forget that.
Youre right
Youre right