search

claustromaniac / poop

Firefox extension that prevents sending Origin headers when they are least likely to be necessary, to protect your privacy.
https://addons.mozilla.org/firefox/addon/privacy-oriented-origin-policy/
GNU General Public License v3.0
45 stars 4 forks source link

Blacklist implementation #16

Closed crssi closed 5 years ago

crssi commented 5 years ago

This is not "showstopper" request, more like a reminder for future improvement.

crssi commented 5 years ago

Oh dear... I am being stupid.... nothing new. :smile: , but need to explain further.

I was refering connections to maxcdn.bootstrapcdn.com from for example https://www.ucdialplans.com. But I had a relaxed mode and script NOT ticked. If script IS ticked, then connections to maxcdn.bootstrapcdn.com are cleaned.

I am not sure if ticking script is generally safe from breakages, since I haven't test it yet. Will do that in the next weeks and will report back.

crssi commented 5 years ago

^^ All the tests to logins, internal apps, banking, payments and whatnot comes to my mind, passes good. From what I see, blacklist implementation is not needed, but lets wait a few weeks of browsing and monitoring, before jumping into a final conclusion.

crssi commented 5 years ago

For now I haven't found any need for blacklist implementation. If anything changes then I will reopen issue with a sample.

Thank you Cheers