On Fri, Sep 06, 2002 at 02:17:38PM +0200, Oskar Sandberg wrote: > On Fri, Sep 06, 2002 at 12:46:44PM +0100, Matthew Toseland wrote: > < > > > > We all agree that we cannot ask most all users to install browser > > > plugins, because maintaining such for X browsers on Y platforms is not > > > realistic. But most users probably don't give a hoot about complicated > > > attacks against their anonymity - wouldn't be easier to just make a > > > plugin for mozilla, and referr the small minority that do care (and who > > > are mostly computer litterate) to that? > > Mozilla is relatively easy to configure to be safe - turn off scripting, > > set the option to only allow images from the origin server. But it does > > have one really annoying anonymity-risking feature, which is that it > > feeds timed out requests into google, and I haven't found any way to > > stop this. I haven't looked at the code much though. > > I think desired behavior would be something like the way browsers treat > SSL pages - warning whenever it is loads a page besides the current. This > would require a plugin, but it can't be hard (I even think an old IE > plugin did it some time the past). What about SSL wrapping the connection, as suggested occasionally by various people? > > > -- > > Oskar Sandberg > oskar at freenetproject.org > > _______________________________________________ > devl mailing list > devl at freenetproject.org > http://hawk.freenetproject.org/cgi-bin/mailman/listinfo/devl >
-- Matthew Toseland mtoseland at blueyonder.co.uk amphibian at sourceforge.net Freenet/Coldstore open source hacker. Looking for $coding (I'm cheap) -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: <https://emu.freenetproject.org/pipermail/devl/attachments/20020906/0d9235c1/attachment.pgp>