Changes between Version 3 and Version 4 of Ticket #17569, comment 25


Ignore:
Timestamp:
Sep 18, 2017, 6:48:50 PM (2 years ago)
Author:
cypherpunks
Comment:

Legend:

Unmodified
Added
Removed
Modified
  • Ticket #17569, comment 25

    v3 v4  
    55But yes, what the Tor Browser design document states is still completely valid - however in the face of new emerging threats I don't think we should ignore them since they definitely impact usability here: So if someone was on one of those sites that had that XMR miner and were using the Medium security setting, then they'll have a 100% cpu use on one of their cores and that will affect their browsing experience. If they realize that this is partly due to JIT they'll lower the security setting, so this could discourage some from using medium security setting. If they don't, then they're still stuck with a 100% cpu core usage.
    66
    7 One potential compromise here is to add uBlock Origin but with only the filer list that handles those JS miners + the filter lists on badware and malware, and everything else would be disabled.
     7One potential compromise here is to add uBlock Origin but with only the filer list that handles those JS miners (list is called [https://github.com/uBlockOrigin/uAssets/blob/master/filters/dark-patterns.txt `dark-patterns`]) + the filter lists on badware and malware, and everything else would be disabled.
    88
    99Note how this compromise only addresses usability and a bit of security and not privacy, which is already handled perfectly by design by the Tor Browser.