JonDoFox 2.5.3: Provides protection against new HTTP authorization attack

The JonDoFox research team has uncovered a new attack on web browsers.
Spread the Word
Listed Under

HTTP authorization attack


Regensburg - Bavaria - Germany

Aug. 18, 2011 - PRLog -- Today, the JonDos GmbH publishes a new version of JonDoFox, a privacy-friendly web browser, that you may also use for anonymous surfing, e.g. over anonymous proxy servers.

What is new?
The JonDoFox research team has uncovered a new attack on web browsers: Affected are the web browsers Firefox, Chrome and Safari. By a hidden call over of a URL with HTTP authorization data, third party sites could track a user over several web sites, even if the user blocks all cookies and other tracking procedures. For doing this, it is sufficient to include a simple CSS file.

You will find a demonstration of this technique on the web site

JonDoFox now contains an integrated protection against this attack. Third party sites may now no longer receive HTTP authorization data from the browser. Moreover, the protection against cache and referer tracking has been enhanced. Furthermore, some detail enhancements were added, and JonDoFox is now fully compatible with the new Firefox 6. Users may therefore easily update to the new browser version.

What is JonDoFox?
JonDoFox is both a profile and an extension for the popular Mozilla Firefox web browser. It protects the user's privacy while surfing the web by removing identifying information from the browser. As it is open source software and free to use, it is an ideal add-on for anonymization services like JonDonym and Tor, but may also be used without anonymization software, just for safer surfing.

Anonymous surfing with JonDoFox

Press contact
Christian Vogl
JonDos Marketing

# # #

JonDos develops and provides free open source software for running and using the JonDonym IP anonymization service. We do this in cooperation with researchers of the german universities TU Dresden and University of Regensburg.
Email:*** Email Verified
Account Email Address Verified     Account Phone Number Verified     Disclaimer     Report Abuse
JonDos GmbH PRs
Trending News
Top Daily News
Top Weekly News

Like PRLog?
Click to Share