Suche
Beiträge, die mit WebBrowser getaggt sind
"It is now time to fix it for good. A new solution has been proposed: partitioning visited link history. This approach fundamentally changes how browsers store and expose visited link data. Instead of maintaining a global list, web browsers will store visited links with a triple-key partition:
- Link URL. The destination of the visited link.
- Top-Level Site. The domain of the main browsing context.
- Frame Origin. The origin of the frame rendering the link.
A link is only styled as :visited if it was visited from the same top-level site and frame origin (...) This approach guarantees isolation and works well with the web's same-origin policy. The system records only navigations initiated by link clicks or scripts—excluding direct address bar entries or bookmark navigations.
Key benefits of this model include: strong protection against cross-site history leaks, solving for good of many known side-channel attacks, support for meaningful styling within trusted, same-context domains, conforming to established web privacy principles and data protection regulations.
This feature is already implemented in Chrome (v132, behind a #partition-visited-link-database-with-self-links flag). I am confident that in 2025 we are going to have this privacy headache solved once and for all."
https://blog.lukaszolejnik.com/fixing-web-browser-history-leaks/
#CyberSecurity #WebSecurity #Privacy #WebBrowser #WebBrowserHistory
- Link URL. The destination of the visited link.
- Top-Level Site. The domain of the main browsing context.
- Frame Origin. The origin of the frame rendering the link.
A link is only styled as :visited if it was visited from the same top-level site and frame origin (...) This approach guarantees isolation and works well with the web's same-origin policy. The system records only navigations initiated by link clicks or scripts—excluding direct address bar entries or bookmark navigations.
Key benefits of this model include: strong protection against cross-site history leaks, solving for good of many known side-channel attacks, support for meaningful styling within trusted, same-context domains, conforming to established web privacy principles and data protection regulations.
This feature is already implemented in Chrome (v132, behind a #partition-visited-link-database-with-self-links flag). I am confident that in 2025 we are going to have this privacy headache solved once and for all."
https://blog.lukaszolejnik.com/fixing-web-browser-history-leaks/
#CyberSecurity #WebSecurity #Privacy #WebBrowser #WebBrowserHistory
Fixing web browser history leaks
Web browsing history powers helpful features like styling visited links differently, allowing users to see where they've been before. While this usability feature provides navigational benefits, it also introduces a privacy risk.Lukasz Olejnik (Security, Privacy & Tech Inquiries)
Umzug zu LibreWolf anstelle von Firefox.
Inklusive Profil mitnehmen und Standardbrowsereinstellungen, wenn nicht von selbst geschehen.
https://blog.alster.space/umzug-zu-librewolf.html
#FireFox #LibreWolf #WebBrowser #Internet #WWW #FireFoxSync #Debian #XFCE #XDG