search

Divested-Mobile / Mull-Fenix

Build scripts for a web browser built upon Mozilla technology
https://divestos.org/pages/our_apps#mull
GNU Affero General Public License v3.0
610 stars 16 forks source link

Why is the number of screen touchpoints being spoofed to zero? #16

Closed t3dium closed 3 years ago

t3dium commented 3 years ago

Surely this'd make the browser extremely fingerprintable when using an android user agent + screen resolution...

SkewedZeppelin commented 3 years ago

That is privacy.resistFingerprinting. This should probably be reported upstream to gecko. Also slightly relevant: https://github.com/mozilla-mobile/fenix/issues/21225

SkewedZeppelin commented 3 years ago

Surely this'd make the browser extremely fingerprintable

By itself maybe, but more users using Mull is more users in the same buckets.

t3dium commented 3 years ago

but more users using Mull is more users

Maybe so, but the sole percentage of users using even just firefox is still only a couple percent as opposed to other browers. Mull, even less so. I've tested this issue on other firefox browser for e.g fennec, and it didn't come up.

This can easy be fixed by replacing privacy.resistFingerprinting with a browser addon like canvasblocker or chameleon, in which case canvas and other data can be spoofed whilst keeping touchscreen info.

SkewedZeppelin commented 3 years ago

fixed by replacing privacy.resistFingerprinting

Not going to happen.