Sampei.Nihira Posted October 21, 2018 Share Posted October 21, 2018 More info: https://www.wilderssecurity.com/threads/researchers-warn-against-tracking-via-tls-session-resumption.409398/ https://forum.palemoon.org/viewtopic.php?f=13&p=154897#p154897 Do you to create this entry in about: config? Link to comment Share on other sites More sharing options...
Mcinwwl Posted October 21, 2018 Share Posted October 21, 2018 Well, I did, let's see what happens Guess this gets added to some addon like Privacy Badger soon... Link to comment Share on other sites More sharing options...
Sampei.Nihira Posted October 21, 2018 Author Share Posted October 21, 2018 (edited) Works also New Moon and Basilisk. Test (post #2): https://www.wilderssecurity.com/threads/researchers-warn-against-tracking-via-tls-session-resumption.409398/#post-2788141 Edited October 21, 2018 by Sampei.Nihira Link to comment Share on other sites More sharing options...
Sampei.Nihira Posted November 15, 2018 Author Share Posted November 15, 2018 (edited) https://www.privateinternetaccess.com/blog/2018/11/supercookey-a-supercookie-built-into-tls-1-2-and-1-3/ Edited November 15, 2018 by Sampei.Nihira Link to comment Share on other sites More sharing options...
Mathwiz Posted November 15, 2018 Share Posted November 15, 2018 security.tls.enable_0rtt_data is false (value recommended by above site) by default in Basilisk (both latest Win 7+ build, 2018.11.07, and @roytam1's latest build). I had created the security.ssl.disable_session_identifiers Boolean and set it to true when this discussion started. It does slow down browsing a bit, but I haven't seen anything more serious than that. I don't recommend setting privacy.firstparty.isolate to true unless you have an add-on that can substitute content typically downloaded from CDNs (JQuery, etc.) as it will break many web sites. I did set security.ssl.enable_false_start to false as recommended at the above web site. I'll report back if it causes any issues. Link to comment Share on other sites More sharing options...
Sampei.Nihira Posted November 16, 2018 Author Share Posted November 16, 2018 (edited) OK. Try setting up Cloudflare DNS (1.1.1.1). A bit of reactivity is recovered. Edited November 16, 2018 by Sampei.Nihira Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now