Reposting for everybody; Firefox, Chrome, and Safari do not send your browsing history to their cloud overlords like Edge does. They compare 4-byte URL hash prefixes with downloaded bad hash lists.https://twitter.com/scriptjunkie1/status/1152545160435253248 …
-
-
Prikaži ovu nit
-
Adding repro steps to main threadhttps://mobile.twitter.com/scriptjunkie1/status/1152913752091766784 …
Prikaži ovu nit -
Also happens on a clean updated Win 10 iso install with default settings. The "diagnostic data" install item mentions "info about the websites you browse" but I'd guess users would still be surprised ("diagnostic" sounds like just error/crash info, not all-the-time)pic.twitter.com/0nLkQlqVdR
Prikaži ovu nit
Kraj razgovora
Novi razgovor -
-
-
So I’m going to follow up on this, from what I recall this is only supposed to fire for the full URL when heuristics find something. I don’t recall full fidelity forwarding but I might be wrong.
-
Full repro steps: - Setup new Ubuntu VM with NAT and host only NIC's, install mitmproxy and start mitmweb logging. - Download https://developer.microsoft.com/en-us/windows/downloads/virtual-machines … extract and place in host only net. - Boot Windows VM, set static IP to use proxy, install certs - Visit the URL - See the above
- Još 2 druga odgovora
Novi razgovor -
-
-
Do we know whether this is classic Edge, chrome-based Edge, or both?
-
I believe this is classic, but I don't see why that would change with chromium, since they keep a lot of the stuff outside the renderer
- Još 2 druga odgovora
Novi razgovor -
-
-
Sending the websites isn't a shock due to what smartscreen filter is, but sending the sid is odd.
-
Chrome, Firefox, and Safari use the Safe Browsing Update API which only sends hashed versions of the URL.
- Još 6 drugih odgovora
Novi razgovor -
-
-
Guessing the great majority of these URLs is the download page for Chrome (still bad though!)
-
Reminds me of Exploder's old nickname: Microsoft Firefox Downloader!
Kraj razgovora
Novi razgovor -
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.
Edge apparently sends the full URL of pages you visit (minus a few popular sites) to Microsoft. And, in contrast to documentation, includes your very non-anonymous account ID (SID).