Private Browsing Mode Integration

[ozan4550]

An issue arised when using the plugin on the browser profile I use for everything. Security measures taken by sites requiring high security may require(now or in near future) your user agent or fingerprint to be mostly consistent for access. Therefore a setting in options for a private browsing specific mode and keeping the spoofing off in regular browsing could prove useful instead of whitelisting all the sites that may need consistency. Just donated for the lovely addon. Keep it up^^

[dillbyrne]

Hello @ozan4550 . Many thanks for your support. The private browsing permission which RAS already uses in the manifest file only allows the addon to function in private browsing mode or not.

In any case a site doing this is probably not going to fingerprint you based on your user agent since that will change with every new version of the browser. They will target machine specific things that would not be likely to change such as the canvas fingerprint and or fonts and so on.

I'm not sure there is anything I can do in your specific case but If I was in your situation I would copy my firefox profile and tailor that copy to be used with a specific set of sites and then use my normal firefox profile for everything else.

Any browser profile in RAS whether it is a specific spoofed one or the real one will eventually change as newer versions are released.

[ozan4550]

Ah so is it impossible for an extension to detect whether the browser is in private browsing or not? I just thought the extension could be improved to have a setting where random headers would get activated when switched over to private browsing. I'll just close the issue if that's something impossible.

[dillbyrne]

@ozan4550 Actually it is possible to track private browsing after further investigation https://developer.mozilla.org/en-US/Add-ons/SDK/High-Level_APIs/private-browsing

That said mixing random headers that are inconsistent with the profile would make a user stand out. I'm specifically talking about UA related headers such as accept headers, this is why I keep all related information isolated to each profile.

The other headers that can be sent randomly such as if none match and via and XFF headers won't show a mismatched profile when used but can contribute some noise that can compliment a proxy to hide your actual IP.

There are other addons that send mixed data for many things involving your perceived profile but it will be obvious you are spoofing.