Opened 11 years ago

Last modified 11 years ago

#815 closed defect (User disappeared)

Torbutton leaks on firefox restart with multiple tabs

Reported by: djineric Owned by:
Priority: Low Milestone:
Component: Torbutton-Tor client Version: 0.1.2.19
Severity: Keywords:
Cc: djineric, arma, mikeperry Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

Firefox 3.0.1 + with the Torbutton extension.

vulnerability - information leaks with multiple tabs.

The leak occurs, if:

(a) a user has been browsing in a mixed-mode, where there are

multiple tabs open, some of them loaded when Tor was enabled, some when
it was disabled; and

(b) firefox crashes;

then if, when restarting firefox, the user selects 'restore session',
firefox tries to reload all the pages without regard to anonymity.

[Automatically added by flyspray2trac: Operating System: All]

Child Tickets

Change History (5)

comment:1 Changed 11 years ago by arma

I believe it's really hard to keep track, across restarts, of which tab
was loaded via Tor and which wasn't.

The current workaround is that you should load everything via Tor when
Firefox restarts. There's a torbutton option for that. (Hopefully it is
set to 'yes do that' by default. Is it?)

Are you arguing that loading some of the tabs via Tor can harm the others,
for example if they provide cookies that you didn't intend to send via Tor?

comment:2 Changed 11 years ago by mikeperry

Flyspray just ate my comment. testing.....

comment:3 Changed 11 years ago by mikeperry

Nice. Well, anyways Roger is right. This is governed by two torbutton settings
that should be set by default under the 'Startup' tab in security settings.

Torbutton should be loading saved tabs via 'Non-Tor' by default, and should
"Prevent the session store from saving Tor-loaded tabs." Could you please let
us know the value of these settings? I did test them with Firefox 3.0, perhaps
there is something specific about your setup.

comment:4 Changed 11 years ago by arma

Paul Shields sent me email with this:

"That was the behaviour in firefox 3.0.1 the first time it crashed; but in
subsequent crashes, it opened opened Tor-loaded tabs. The settings hadn't
changed however. (was this anomalous saving of Tor-loaded tabs?)

This morning, the 3.0.2 upgrade was installed, and it went back to the
default behaviour. I will keep an eye on it, and reply here."

Perhaps in the future he will actually put his comments into the comment
section. :)

comment:5 Changed 10 years ago by mikeperry

flyspray2trac: bug closed.
We fixed a few session store issues in Bug 834. Its possible this is fixed, if it ever was a bug in the first place and not just misconfiguration.

Note: See TracTickets for help on using tickets.