webRequest leak #414
Comments
|
The Mozilla bug has now been marked RESOLVED FIXED, with reference to https://bugzilla.mozilla.org/show_bug.cgi?id=1453751#c45 |
|
This is The exact STR from the description produces the expected results. However, replacing step 4 with "visit #414, right-click the httpbin link in the description > Save Link As...", the real user-agent is still shown. |
|
Scratch that last comment - that case works fine in Waterfox 68.0a2 if I change the manifest.json host permission to |
|
I use privoxy for changing the UA String. I witnessed myself many bugs with internal browser solutions for changing it. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Waterfox 56.0.3
new profile
Steps to reproduce
go to about:debugging, make sure "Enable add-on debugging" is checked
install the example user-agent rewriter WebExtension - https://github.com/mdn/webextensions-examples/tree/master/user-agent-rewriter
go to Tools > Web Developer > Browser Toolbox > Network
visit https://httpbin.org/html
look at User-Agent header of all network requests
Expected results: all requests to httpbin.org should show Firefox 41 user-agent
Actual results:
httpbin.org favicon is requested twice, and the first request - which hits the network - shows the real user-agent.
This leak also means that content blockers like uMatrix can't fully do their job - gorhill/uMatrix#925
Related Mozilla bug - https://bugzilla.mozilla.org/show_bug.cgi?id=1433700
The text was updated successfully, but these errors were encountered: