Opened 6 years ago

Closed 3 years ago

#10144 closed defect (worksforme)

"Never allow" doesn't work in the canvas popup

Reported by: cypherpunks Owned by: mikeperry
Priority: High Milestone:
Component: Applications/Tor Browser Version:
Severity: Normal Keywords: tbb-usability
Cc: Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

Dear Tor Developer,

I've visited "Jesse's Cafe Americain" using Tor browser at this address http://jessescrossroadscafe.blogspot.com/ for several years and always get the warning from Tor that this website "attempted to access image data on a canvas" (an ID security breach).

At the bottom of the warning box there is a selection button allowing me to choose to "allow" this behavior or to "never allow" this behavior. I always choose "never allow" and that has always worked until my recent upgrade to Tor 2.3.25-14. Now, the warning still appears, the selection box still appears with both options, but the "never allow" option can't actually be activated. When I click "never allow" the "allow" default doesn't change and the warning box disappears with the "allow" option unchanged.

As part of the fix, I suggest you change the warning box option to default on "never allow" and force users to select "allow" at their own risk. Thank you for all you do,

  • L. H. Melvin

Child Tickets

Change History (10)

comment:1 Changed 6 years ago by nickm

Component: - Select a componentTorBrowserButton
Owner: set to mikeperry

comment:2 Changed 6 years ago by cypherpunks

Priority: normalmajor

Any progress on this issue? It's really annoying that this canvas warning box almost always appears on youtube.com.

comment:3 in reply to:  2 Changed 6 years ago by gk

Replying to cypherpunks:

Any progress on this issue? It's really annoying that this canvas warning box almost always appears on youtube.com.

Your problem is #7265. Please, don't raise priority just because you feel annoyed about a problem, thanks.

Version 0, edited 6 years ago by gk (next)

comment:4 Changed 6 years ago by gk

Status: newneeds_information

Is this still an issue with the latest TBB?

comment:5 Changed 6 years ago by arma

I think it is still an issue for me with 3.5.2.1. That is, I get the canvas popup complaint pretty often while normal browsing. And I still have no idea what I should do when I get the popup.

comment:6 in reply to:  5 Changed 6 years ago by gk

Replying to arma:

I think it is still an issue for me with 3.5.2.1. That is, I get the canvas popup complaint pretty often while normal browsing. And I still have no idea what I should do when I get the popup.

As I said, this is #7265. This bug is about "Never allow" not working (which is actually working for me which is the reason why I was asking whether the problem of the original bug reporter still persists). Are you saying "Never allow" is not working for you either?

comment:7 Changed 4 years ago by bugzilla

Component: TorBrowserButtonTor Browser
Keywords: tbb-usability added
Severity: Normal
Summary: TOR 2.3.25-14: "Attempted to access image data on a canvas ..." ID security breach enabled in release -14"Never allow" doesn't work in the canvas popup
Version: Tor: unspecified

comment:8 Changed 3 years ago by bugzilla

Resolution: fixed
Status: needs_informationclosed

Works, but can't be reverted back in Permissions, though.

comment:9 Changed 3 years ago by gk

Resolution: fixed
Status: closedreopened

comment:10 Changed 3 years ago by gk

Resolution: worksforme
Status: reopenedclosed
Note: See TracTickets for help on using tickets.