Hide operating system in user-agent with fingerprinting protection enabled #701
Comments
riastradh-brave
added
the
feature/shields/fingerprint
|
Most fingerprinting libraries already check for this. See e.g. Would it make sense to spoof |
This is plainly wrong. Networking stacks are implemented differently in any Kernel. A ping to any server is enough for the server to not only know (not guess but know!) your OS kernel and more likely than not very reliably guess your kernel version. No javascript executed or anything. Just a simple ping is enough. Now imagine what can be done with actual Javascript being executed.. What you are doing is making users way more unique. But appearently again my post was ignored; how surprising I am frustrated with this project calling itself "Private/Secure/Fast Browser" when THE DEVS THEMSELVES MAKE THE BROWSER EASIER FOR ADVERTISES/STATE ACTORS TO FINGERPRINT/TRACK right? I really don't get why Brave devs want to modify such (comparably) irrelevant properties while the biggest fingerprinting/tracking points are intact? It doesn't matter how much you spoof your Useragent/navigator object if you can still get the font list of the user, if you can still apply the height/width tricks, if you can still track the version number in the ua, if you can still check the Timezone object, if you can still track the WebAudio etc. etc. etc. |
|
Dude, calm down. Yes you can fingerprint the OS from network connections, but this doesn't make anything easier and it doesn't leak an additional bit. At worst it does nothing. |
|
@lawl Imagine yourself how does Tor work? People connect to random nodes and those nodes acces the websites in the name of the user. Everyone knows how Tor works so and everyone knows the Tor nodes. So if a useragent of Firefox 52 ESR Win NT connects to a website but with a Linux/BSD fingerprint it doesn't matter what the Server OS is or the Useragent of the enduser since the connection pattern is the same for every single user on the entire network. This is not the case for Brave. |
You are correct that there are other fingerprinting vectors. The point of this issue is to force the adversary to use those other fingerprinting vectors instead of the user-agent string. If you want to discuss other fingerprinting vectors, please take that discussion to other issues.
This is why the issue is to make all Brave users report the same user agent, so that it is not one in ten million but ten million in ten million, and the entropy of the user agent variable would be exactly zero. |
Yes. |
|
I don't think we do this in browser-laptop today, and there's also some product downsides in terms of some download pages offering the wrong build types. Moving this to Backlog since Releasable builds is only for parity things with browser-laptop. |
|
Correct, we don't do this in browser-laptop -- issue was migrated from there. The product downsides are why I suggest it be done with fingerprinting protection enabled, rather than always. |
|
Gotcha, thanks for the clarification, makes sense. |
tildelowengrimm
added
the
priority/P5
|
Until this is implemented, feel free to use my extension to get this functionality: it's a short script that basically replaces the OS part of the User-Agent with "Windows", making your User-Agent appear as one of the most common ones according to the popular Most Common User Agents report. Initially developed for Chromium, so the script partially intersects with what Brave provides out of the box, such as language protection. |
|
closing in favor of #9190 |
pes10k
added
closed/duplicate
Currently Brave's user-agent string always reports the true operating system under which it is running. This partitions the anonymity set of users by operating system. When fingerprinting protection is enabled, it should always report the same user-agent string, including the same operating system, for everyone. For comparison, the Tor Browser always reports Windows and the Firefox ESR version on which it is based:
Mozilla/5.0 (Windows NT 6.1; rv:52.0) Gecko/20100101 Firefox/52.0If Windows and Mac users report different user-agent strings, then the advertisers and NSA/GCHQ and anyone else watching can distinguish Windows and Mac users simply by looking at the user-agent strings.
If Windows and Mac users all report that they are using GNU/Hurd, then the advertisers and NSA/GCHQ and anyone else watching has to try harder to tell who's using Windows and who's using a Mac.
Forcing them to try harder is what fingerprinting protection is supposed to do.
(migrated from brave/browser-laptop#14852)
The text was updated successfully, but these errors were encountered: