Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Spoof HTTP referrer string of third-party requests #855

Closed
semente opened this issue Jun 3, 2016 · 1 comment
Closed

Spoof HTTP referrer string of third-party requests #855

semente opened this issue Jun 3, 2016 · 1 comment
Labels
enhancement privacy General privacy issues; stuff that isn't about Privacy Badger's heuristic

Comments

@semente
Copy link

semente commented Jun 3, 2016
edited
Loading

Once I can't use uMatrix's "HTTP referrer spoof "option because plugin compatibility issues (see #562), would be great if you add into Privacy Badger an option to spoof the HTTP referrer string of any third-party requests instead just for the tracking domains...

I think the way how uMatrix spoof HTTP referrers protects your privacy and still don't cause any issues in websites that uses this information-at least I didnt' have any issue so far with this setup.

If this setting is checked, uMatrix will spoof the HTTP referrer information if the domain name of the HTTP referrer is third-party to the domain name of net request.

Thank you.
@cooperq cooperq added this to the Privacy Badger 2.0 milestone Jun 29, 2016
@cooperq cooperq self-assigned this Aug 2, 2016
@cooperq cooperq removed this from the Privacy Badger 2.0 milestone Sep 13, 2016
@ghostwords ghostwords added heuristic Badger's core learning-what-to-block functionality privacy General privacy issues; stuff that isn't about Privacy Badger's heuristic and removed heuristic Badger's core learning-what-to-block functionality labels Mar 31, 2017
@ghostwords ghostwords mentioned this issue Apr 18, 2017
Closed
@semente semente mentioned this issue May 8, 2017
Closed
@Atavic Atavic mentioned this issue Nov 25, 2017
Closed
@troy-lamerton troy-lamerton mentioned this issue Sep 2, 2018
Closed
@ghostwords ghostwords mentioned this issue Nov 11, 2019
Merged
@ghostwords
Copy link
Member

We're switching to trimming referrers down to the origin (instead of removing entirely) for cookieblocked requests (#2505). Depending on how that pans out, we may do the same for more (all?) third-party requests in the future.

Spoofing the referrer (to the request domain) does break sites (NASA TV, for example), while providing unclear benefits versus removing referrer entirely, or reducing the amount of information disclosed. Closing for now.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement privacy General privacy issues; stuff that isn't about Privacy Badger's heuristic
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Spoof Referer header of third party requests troy-lamerton/privacybadger
3 participants
@semente @cooperq @ghostwords