WebRTC and Canvas

General discussion about Slimjet, or other issues related to web browser in general.
Locked
dev
Posts: 761
Joined: Mon Apr 21, 2014 10:30 pm

Re: WebRTC and Canvas

Post by dev »

Let them spy... if you've up to nothing bad you've got nothing to hide :D
Top
reactorr
Posts: 68
Joined: Sat Mar 21, 2015 2:45 pm

Re: WebRTC and Canvas

Post by reactorr »

Canvas fingerprinting
http://no-info.no-ip.info/canvas/

This is an image used to identify your with canvas fingerprinting
Top
User avatar
oftentired
Posts: 1769
Joined: Tue May 13, 2014 3:14 am

Re: WebRTC and Canvas

Post by oftentired »

I have to agree with dev, I don't see it as a problem and I don't see it as very intrusive.
Top
Autocascade
Posts: 12
Joined: Sun May 17, 2015 6:35 pm

Re: WebRTC and Canvas

Post by Autocascade »

There is a chrome extension that's not in the store yet but you can download it from Github. It took my Panopticlick fingerprint from 1 in 6,000,000 to 1 in 2,600 essentially making me look like a few thousand other people out there.

https://github.com/ghostwords/chameleon/releases
Top
reactorr
Posts: 68
Joined: Sat Mar 21, 2015 2:45 pm

Re: WebRTC and Canvas

Post by reactorr »

DISABLE CANVAS :@
Top
reactorr
Posts: 68
Joined: Sat Mar 21, 2015 2:45 pm

Re: WebRTC and Canvas

Post by reactorr »

Image

Audio Context true
RTP-based Data Channels true
SCTP-based Data Channels true

PLEASE DISABLE :/
Top
flashpeak
Site Admin
Posts: 371
Joined: Mon Apr 21, 2014 3:57 pm

Re: WebRTC and Canvas

Post by flashpeak »

Don't worry about that. The goal is to prevent your IP address and unique device id from being leaks. The data channels are actually disabled as well. But the exported javascript interface is still available but not actually functioning. This web page only detects the existence of the javascript methods but doesn't verify whether it actually functions.
reactorr wrote:Image

Audio Context true
RTP-based Data Channels true
SCTP-based Data Channels true

PLEASE DISABLE :/
Stephen Cheng
FlashPeak Inc.
Top
reactorr
Posts: 68
Joined: Sat Mar 21, 2015 2:45 pm

Re: WebRTC and Canvas

Post by reactorr »

flashpeak wrote:Don't worry about that. The goal is to prevent your IP address and unique device id from being leaks. The data channels are actually disabled as well. But the exported javascript interface is still available but not actually functioning. This web page only detects the existence of the javascript methods but doesn't verify whether it actually functions.
Great!. thank you so much.
Top
reactorr
Posts: 68
Joined: Sat Mar 21, 2015 2:45 pm

Re: WebRTC and Canvas

Post by reactorr »

Chrome Stable Update
43.0.2357.130

High CVE-2015-1266: Scheme validation error in WebUI. Credit to anonymous.
High CVE-2015-1268: Cross-origin bypass in Blink. Credit to Mariusz Mlynski.
Medium CVE-2015-1267: Cross-origin bypass in Blink. Credit to anonymous.
Medium CVE-2015-1269: Normalization error in HSTS/HPKP preload list. Credit to Mike Ruddy.

http://googlechromereleases.blogspot.co ... pdate.html
Top
Locked

Return to “General”