News By Tag
News By Place
JonDoFox 2.5.3: Provides protection against new HTTP authorization attack
The JonDoFox research team has uncovered a new attack on web browsers.
What is new?
The JonDoFox research team has uncovered a new attack on web browsers: Affected are the web browsers Firefox, Chrome and Safari. By a hidden call over of a URL with HTTP authorization data, third party sites could track a user over several web sites, even if the user blocks all cookies and other tracking procedures. For doing this, it is sufficient to include a simple CSS file.
You will find a demonstration of this technique on the web site ip-check.info.
JonDoFox now contains an integrated protection against this attack. Third party sites may now no longer receive HTTP authorization data from the browser. Moreover, the protection against cache and referer tracking has been enhanced. Furthermore, some detail enhancements were added, and JonDoFox is now fully compatible with the new Firefox 6. Users may therefore easily update to the new browser version.
What is JonDoFox?
JonDoFox is both a profile and an extension for the popular Mozilla Firefox web browser. It protects the user's privacy while surfing the web by removing identifying information from the browser. As it is open source software and free to use, it is an ideal add-on for anonymization services like JonDonym and Tor, but may also be used without anonymization software, just for safer surfing.
Anonymous surfing with JonDoFox
# # #
JonDos develops and provides free open source software for running and using the JonDonym IP anonymization service. We do this in cooperation with researchers of the german universities TU Dresden and University of Regensburg.