🆕 Disable Firefox network captive portal #735
Labels
No Label
🔍🤖 Search Engines
approved
dependencies
duplicate
feedback wanted
high priority
I2P
iOS
low priority
OS
Self-contained networks
Social media
stale
streaming
todo
Tor
WIP
wontfix
XMPP
[m]
₿ cryptocurrency
ℹ️ help wanted
↔️ file sharing
⚙️ web extensions
✨ enhancement
❌ software removal
💬 discussion
🤖 Android
🐛 bug
💢 conflicting
📝 correction
🆘 critical
📧 email
🔒 file encryption
📁 file storage
🦊 Firefox
💻 hardware
🌐 hosting
🏠 housekeeping
🔐 password managers
🧰 productivity tools
🔎 research required
🌐 Social News Aggregators
🆕 software suggestion
👥 team chat
🔒 VPN
🌐 website issue
🚫 Windows
👁️ browsers
🖊️ digital notebooks
🗄️ DNS
🗨️ instant messaging (im)
🇦🇶 translations
No Milestone
No Assignees
1 Participants
Due Date
No due date set.
Dependencies
No dependencies set.
Reference: privacyguides/privacytools.io#735
Loading…
Reference in New Issue
No description provided.
Delete Branch "%!s(<nil>)"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Add here enhancement to FF privacy by disabling network captive protal:
Why?Read here:
https://forums.whonix.org/t/universal-firefox-attack-through-http-manipulation-and-wont-fix/6726
Same principles apply to network.connectivity-service prefs in FF 65, see:
https://github.com/intika/Librefox/issues/102
@Atavic or as you write here: https://github.com/ghacksuserjs/ghacks-user.js/issues/610#issuecomment-451689075
@thorin-oakenpants what are your thoughts on this one?
Here's some info. My understanding from memory is that it would block users from using some wifi: e.g hotels, public wifi, etc. Forget the tor ticket: that's just their threat model: sending success data to Mozilla is not an issue TBH.
Honestly, I'm not sure if this "leaks" anything without user interaction: e.g. do you need to go to the landing page for anything to happen, or if FF "detects" them auto-magically? It's certainly something I would not put on the website, but leave for a user.js.
ghacks-user.js
I see, the privacy impact is not fully understood, and can have some quite frustrating effects when people disable it without knowing what it is. i vote to not include it and close the issue.
Agreed
The problem is its over HTTP without TLS encryption thus manipulating connection is possible from ISP or attack over wifi...etc
So opening the user to be attacked through his browser is recommended against to be considered privacy saving.
Isn't that the whole point of captive portal checking as that is exactly what the captive portal will do?
If we do this, I think we should start recommending Captive Browser or something similar, but I still don't see much point.-
blacklight447-ptio said
Yeah, sorry.. I can't keep up with everything, and some areas are not my forte :)
TNTBOMBOM said
That's not a browser problem, that's a protocol problem.
--
Yeah, look: it's not a privacy issue AFAIC, it's a security one. Here's someone reliable: https://www.eff.org/deeplinks/2017/08/how-captive-portals-interfere-wireless-security-and-privacy (PS: I haven't even read it yet: but will do, tomorrow if sober)
And with that link, we find ourselves at https://openwireless.org/ and maybe https://github.com/privacytoolsIO/privacytools.io/issues/1184.
Usability vs Privacy, When recommending to be disabled is to reduce the attack possibility behind it.
Users of TBB always having it disabled, no one crying to see it enabled.
@TNTBOMBOM
Firefox is not Tor Browser (TB: they dropped the word
Bundle
ages ago). TB users probably have a different threat model (certainly the design principles are a lot different to Mozilla's: FF needs to work out of the box but TB can afford to sacrifice some things if they have to). And FF users are free to go get TB and use it. FF is not TB, and vice versa.Maybe someone did cry about it. Anyway, TB's user base is fairly small, and TB users deal with and expect breakage - it's inevitable. I actually wouldn't imagine many TB users would use this feature anyway. We can trade anecdotal evidence and BS all day long, if you want.
Here's how I see it. If you don't go connecting to captive portals, then you're fine. If you do, then you probably wanted to in the first place, so why break things for end users who do want it.
PS: thanks @Mikaela and @blacklight447-ptio : I updated the ghacks-user.js here
Why end user would disable something he know that hes going to use it?
Lets take an e.g WebGL , isnt websites using this feature will stop working if the user disabled it? Thus its mentioned to be disabled because it poses threat model.
Keeping things so it wont break the browser is nonsense because in the end it depends on the end user usage anyway.
@TNTBOMBOM
There's a balance to be had. Throwing absolutely lots of prefs at people who find their way to the PTIO is not a really a good idea. Long lists turn people off, and it gets technical (and most people aren't super technical), which means things need to get explained, which makes it even longer. And some people just blindly apply changes without reading.
There's even talk of removing the section, which I personally don;t think should happen: tidy it up, make it super easy and short: and treat it as an appetizer to what else users can do.
A pref such as captive portal is not a super important pref. Those who connect to captive portals and continue by accepting terms etc probably need to (airports, hotels). Those who don't it makes no difference.
No-one said anything about not informing people - there's a link to more prefs. It's just not worthy of adding to a small select list that caters to a lesser technical crowd.
And vice versa, listing it to be changed (and blindly adhered to by tens of thousands of people causing many to curse you for wasting their time and wrecking their plans when out), is nonsense as well. Like you said, it should be a choice. And listing it on the site is not a choice: since people just apply it: you have to cater for the lowest common denominator.
Just drop it dude
you were talking good until you fall into "Number of Users Dilemma" which needs some analyses.
The simple question to be asked is how many users having this criteria:
....
If that user existed from 1/zillion im willing to accept his curses. Because if he was honest he should curse himself not anybody else (if hes this type of bad mothing person).