Opened 9 years ago

Closed 8 years ago

#2365 closed defect (worksforme)

HTTP_ACCEPT headers are not being spoofed

Reported by: sou-druh Owned by: mikeperry
Priority: Very High Milestone: Torbutton: 1.3
Component: TorBrowserButton Version: Torbutton: 1.3.0-alpha
Severity: Keywords:
Cc: Actual Points:
Parent ID: Points: 6
Reviewer: Sponsor:

Description

I enabled "Spoof US English Browser" in Torbutton Preferences but I still get following headers

text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8 UTF-8,* gzip, deflate ab,en-us;q=0.7,en;q=0.3

(which are the "correct" one) when accessed https://panopticlick.eff.org/index.php?action=log. "User Agent" is being spoofed as expected.

I have Firefox 4b8 with Torbutton 1.3.1-alpha. It worked fine with Firefox 3.6 & Torbutton 1.2.5.

Child Tickets

Change History (5)

comment:1 Changed 9 years ago by mikeperry

Hrmm. It's possible that this may be correctable with an about:config tweak, but I think the FF4 behaviour may have changed wrt to these settings, in their attempts to deal with fingerprinting issues..

comment:2 Changed 9 years ago by mikeperry

Points: 6

Repro: 2
Fix: 1 or 4

comment:3 Changed 9 years ago by mikeperry

This may also be a dup of bug #628.

comment:4 Changed 8 years ago by sou-druh

This is what I get now with FF 4.0, Torbutton from Git and clean FF profile:

text/html, */* UTF-8,* gzip, deflate

But still getting

text/html, */* UTF-8,* gzip,deflate ab,en-us;q=0.7,en;q=0.3

even with FF 3.6.15 and the same Torbutton. Perhaps I have messed up profile? I am not sure whether we should close this one or not...

comment:5 Changed 8 years ago by mikeperry

Component: TorbuttonTorBrowserButton
Resolution: worksforme
Status: newclosed

I am not interested in fixing fingerprinting issues in FF < 4.0. If you're ok with this behaviour now in FF4 (it looks good to me), leave this closed. Otherwise, reopen and change component to TorBrowserButton.

Note: See TracTickets for help on using tickets.