Just wanted to share some information pertaining to the Configurable security policies (see http://www.mozilla.org/projects/security/components/configPolicy.html) regarding controlling access to certain javascript variables which can identify users [who wish to hide such information]. You can control the release of these variables on a per-domain basis using this format: user_pref("capability.policy.default.Navigator.appName", "noAccess"); user_pref("capability.policy.default.Navigator.appCodeName", "noAccess"); user_pref("capability.policy.default.Navigator.appVersion", "noAccess"); user_pref("capability.policy.default.Navigator.appMinorVersion", "noAccess"); user_pref("capability.policy.default.Navigator.platform", "noAccess"); user_pref("capability.policy.default.Navigator.userAgent", "noAccess"); user_pref("capability.policy.default.Navigator.securityPolicy", "noAccess"); user_pref("capability.policy.default.Navigator.cpuClass", "noAccess"); user_pref("capability.policy.default.Navigator.onLine", "noAccess"); [i might have some of these wrong but they appeared to work] You can test the release of this information at http://www.gemal.dk/browserspy/spy.html (click on BASIC INFORMATION) This is useful because it allows you to block this (among other) things without disabling javascript alltogether for that site. If anyone knows how to actually _modify_ these variables without altering the source please let me know and see the thread http://groups.google.com/groups?hl=en&safe=off&frame=right&th=e85f6619ea470387
