Skip to content
Branch: master
Commits on Aug 17, 2014
Commits on Apr 6, 2014
  1. Finishing touches to report.

    KatrinaHoffert committed Apr 6, 2014
    Added the images and citations that were mostly forgotten about.
    Handed it in on Moodle.
  2. Some edits

    kariva committed Apr 6, 2014
Commits on Apr 5, 2014
  1. Minor changes and proofread

    Nathan Abramyk Nathan Abramyk
    Nathan Abramyk authored and Nathan Abramyk committed Apr 5, 2014
    I gave the report a read and everything seems in order.
    I changed one bit about Firefox not allowing plugin enumeration, which
    I’m pretty sure is Internet Explorer.
Commits on Apr 4, 2014
  1. Added some stuff to the report

    JeffPereyma committed Apr 4, 2014
Commits on Mar 28, 2014
Commits on Mar 26, 2014
  1. Don't refresh automatically -- can be too fast,

    KatrinaHoffert committed Mar 26, 2014
    Background script hasn't noticed changes yet.
Commits on Mar 25, 2014
  1. Made injected code slightly cleaner.

    KatrinaHoffert committed Mar 25, 2014
    Traditional object notation used instead of setting all the properties
  2. I'm wrong, JS does allow getters and setters.

    KatrinaHoffert committed Mar 25, 2014
    There's functions for getters and setters that are run when
    accessing parameters automatically. That's pretty cool -- didn't
    know that. Also a note that some sites must be whitelisted.
    In particular, I can't seem to be able to load my gmail inbox
    without adding gmail to the whitelist. I can't figure out why (I
    started a SO question about it).
  3. Fixed error messages for uninitialized whitelist.

    KatrinaHoffert committed Mar 25, 2014
    If the whitelist hasn't yet been set (ie, first run and haven't yet
    added anything to the whitelist), you get error messages about
    attempting to access non-existant parameters, since the whitelist
    is undefined. To prevent that, the first time the extension is loaded
    (probably on browser startup), we check if the whitelist is empty and
    set it as an empty array if it is.
  4. HTTP headers now only changed for non-whitelisted.

    KatrinaHoffert committed Mar 25, 2014
    However, this means that the background script is reloading the
    whitelist every second. Possibly inefficient? Also, whitelist
    changes take a second to be reloaded into the background script
    (and thus not applied to the HTTP headers for 1s after making the
    change). I think it's a reasonable trade off.
    Technical reasons are that the function for loading the whitelist
    is asynchronous and if we directly call it in the action listener,
    it won't complete until (likely) after the action listener has
    already returned (at which point of time it's too late). Thus,
    the whitelist is concurrently updated in the background, independent
    from the action listener. This actually might be faster, anyway,
    since many sites have a very large number of requests and it's not
    ideal to be reloading the whitelist a thousand times per second.
  5. Minor quote fix.

    KatrinaHoffert committed Mar 25, 2014
  6. Fixed buggy plugins slide.

    KatrinaHoffert committed Mar 25, 2014
    Also rewrote slide so that all text fit within the slide (it was
    previously pouring out). To do so, I removed some unnecessary
    lines and simplified/summarized others.
  7. Updated presentation to reflect project changes.

    KatrinaHoffert committed Mar 25, 2014
    In particular, the extension is now practical. Added results table
    and reintroduced the demo slide.
  8. Slides addition

    nabramyk committed Mar 25, 2014
    Added stuff to the Available plugins slides
  9. Cleaner injected code

    KatrinaHoffert committed Mar 25, 2014
  10. Some navigator properties and functions backed up.

    KatrinaHoffert committed Mar 25, 2014
    All the standard (and a couple of non-standard) properties and functions
    are now accessible. Plugins is not. This seems to generate optimal
  11. Possible way to inject javascript through content-scripts

    JeffPereyma committed Mar 25, 2014
    This could perhaps be used to workaround the sandboxing issue you
    discussed before.
  12. Extension no longer blanks user agent.

    KatrinaHoffert committed Mar 25, 2014
    This was causing issues with Google searches (which assume a blank
    UA means mobile browser?). Also formatted background script to match
    the other scripts. Finally, the unnecessary background property was
    removed -- that just allows the script to run in the background more
    than necessary (ie, when the browser isn't even running).
Commits on Mar 24, 2014
  1. Added conclusion to presentation.

    KatrinaHoffert committed Mar 24, 2014
    Also removed source code example slide, added git link to end
  2. Made several changes to presentation.

    KatrinaHoffert committed Mar 24, 2014
    Modified HTTP headers slides, added drawbacks slides, added another
    fingerprinting threat, plus a formatting fix.
  3. Removed demo slide.

    KatrinaHoffert committed Mar 24, 2014
You can’t perform that action at this time.