search

kkapsner / CanvasBlocker

A Firefox extension to protect from being fingerprinted.
https://canvasblocker.kkapsner.de
Mozilla Public License 2.0
1.12k stars 85 forks source link

Credit / Debit cards blocked by canvas blocker Firefox 70.0.1 (64-bit) #409

Closed Artmanoils closed 4 years ago

Artmanoils commented 4 years ago

Credit / Debit cards blocked by canvas blocker Firefox 70.0.1 (64-bit)

Description

Credit / Debit cards blocked by CanvasBlocker. Solution disable CanvasBlocker, close old window, open new window, problem resoved

Unable to carry out any transactions online with CanvasBlocker enabled

Expected Behavior

Should not prevent online transactions

Current Behavior

Possible Solution

Steps to Reproduce (for bugs)

1. 2. 3. 4.

Context

Your Environment

Your Settings

{ "logLevel": 1, "urlSettings": [ { "url": "^https://www\\.google\\.com/recaptcha/api2/(?:b?frame|anchor).*$", "protectWindow": false } ], "hiddenSettings": {}, "expandStatus": { "blockMode": false }, "displayHiddenSettings": false, "whiteList": "", "sessionWhiteList": "", "blackList": "", "blockMode": "fake", "protectedCanvasPart": "readout", "minFakeSize": 1, "maxFakeSize": 0, "rng": "nonPersistent", "protectedAPIFeatures": {}, "useCanvasCache": true, "ignoreFrequentColors": 0, "minColors": 0, "fakeAlphaChannel": false, "webGLVendor": "", "webGLRenderer": "", "webGLUnmaskedVendor": "", "webGLUnmaskedRenderer": "", "persistentRndStorage": "", "persistentIncognitoRndStorage": "", "storePersistentRnd": false, "persistentRndClearIntervalValue": 0, "persistentRndClearIntervalUnit": "days", "lastPersistentRndClearing": 1574332662365, "sharePersistentRndBetweenDomains": false, "askOnlyOnce": "individual", "askDenyMode": "block", "showCanvasWhileAsking": true, "showNotifications": true, "highlightPageAction": "none", "highlightBrowserAction": "color", "displayBadge": true, "storeNotificationData": false, "storeImageForInspection": false, "ignoreList": "", "ignoredAPIs": {}, "showCallingFile": false, "showCompleteCallingStack": false, "enableStackList": false, "stackList": "", "protectAudio": true, "audioFakeRate": "100", "audioNoiseLevel": "minimal", "useAudioCache": true, "audioUseFixedIndices": true, "audioFixedIndices": "14", "historyLengthThreshold": 2, "protectWindow": true, "protectDOMRect": true, "domRectIntegerFactor": 4, "blockDataURLs": true, "protectNavigator": true, "navigatorDetails": {}, "displayAdvancedSettings": false, "displayDescriptions": false, "theme": "auto", "dontShowOptionsOnUpdate": false, "isStillDefault": false, "storageVersion": 0.5 }

crssi commented 4 years ago

Do the problem resolves if you disable protectWindow?

kkapsner commented 4 years ago

On which site are you not able to do an online transaction? I did not face any problems with it. Does whitelisting the page help? Do you see a fingerprint icon in the address bar? If you click on it, which APIs are faked?

Artmanoils commented 4 years ago

Problem only resolves if I disable Canvas Blocker, and then reopen a new window and restart transaction.

On Thu, 21 Nov 2019, 12:07 crssi, notifications@github.com wrote:

Do the problem resolves if you disable protectWindow?

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/kkapsner/CanvasBlocker/issues/409?email_source=notifications&email_token=AN2YHGOCRFVTDHRWZD7KY5LQUZ2ZLA5CNFSM4JQBCQ3KYY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOEE2AC3I#issuecomment-557056365, or unsubscribe https://github.com/notifications/unsubscribe-auth/AN2YHGOHAL5DB24FSFP3QS3QUZ2ZLANCNFSM4JQBCQ3A .

Artmanoils commented 4 years ago

Hi, not sure what the whitelist is? Fingerprint icon was in address bar. Didn't note which API's were fake, will monitor next time it occurs.

octopus.energy in uk was a site that was blocked for last 2 months, and directchannel.uk .com, however, I've just paid sainbuysbank.co.uk credit card using debit card without problems. The payment systems were failing at the point when card details, cvs, and full amount were completed and the data transfer to connect with bank was completed and prior to next stsge is bank security confirmation. it appeared that no information transferred, it simply stopped.

Does this help? If you wish, I can monitor and give better feedback when the problem next occures.

Regards

Nic Braithwaite

On Thu, 21 Nov 2019 15:01 kkapsner, notifications@github.com wrote:

On which site are you not able to do an online transaction? I did not face any problems with it. Does whitelisting the page help? Do you see a fingerprint icon in the address bar? If you click on it, which APIs are faked?

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/kkapsner/CanvasBlocker/issues/409?email_source=notifications&email_token=AN2YHGLFRFKNIKHGDNJFPOLQU2PD3A5CNFSM4JQBCQ3KYY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOEE2QOIQ#issuecomment-557123362, or unsubscribe https://github.com/notifications/unsubscribe-auth/AN2YHGOKEGTVBRA3Q3NEMSTQU2PD3ANCNFSM4JQBCQ3A .

On Thu, 21 Nov 2019 15:01 kkapsner, notifications@github.com wrote:

On which site are you not able to do an online transaction? I did not face any problems with it. Does whitelisting the page help? Do you see a fingerprint icon in the address bar? If you click on it, which APIs are faked?

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/kkapsner/CanvasBlocker/issues/409?email_source=notifications&email_token=AN2YHGLFRFKNIKHGDNJFPOLQU2PD3A5CNFSM4JQBCQ3KYY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOEE2QOIQ#issuecomment-557123362, or unsubscribe https://github.com/notifications/unsubscribe-auth/AN2YHGOKEGTVBRA3Q3NEMSTQU2PD3ANCNFSM4JQBCQ3A .

kkapsner commented 4 years ago

If you put a page on the whitelist it will not be protected by CB. By clicking on the finterprinting icon you see the APIs that were faked and there you can also whitelist the page (hover over the url and click the checkmark)

When we have the API that causes the problem we can see if there is a problem with CB or if not.

Artmanoils commented 4 years ago

Cheers, will try. Regards, Nic

On Thu, 21 Nov 2019, 22:04 kkapsner, notifications@github.com wrote:

If you put a page on the whitelist it will not be protected by CB. By clicking on the finterprinting icon you see the APIs that were faked and there you can also whitelist the page (hover over the url and click the checkmark)

When we have the API that causes the problem we can see if there is a problem with CB or if not.

— You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub https://github.com/kkapsner/CanvasBlocker/issues/409?email_source=notifications&email_token=AN2YHGPREQ4KQFXVLJFN4TTQU4AVDA5CNFSM4JQBCQ3KYY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOEE3Z55Y#issuecomment-557293303, or unsubscribe https://github.com/notifications/unsubscribe-auth/AN2YHGOVUDOHPOSDLMUU65LQU4AVDANCNFSM4JQBCQ3A .

kkapsner commented 4 years ago

I'm not sure how to go further with this issue... it seems the problem is gone (3 weeks is a long time...) and was most likely something on the web page. So I will close it. But if the problem reappears and you have more details I can simply reopen it.