-
Notifications
You must be signed in to change notification settings - Fork 59
Detect access to navigator plugin and mimeType details #19
Comments
Chameleon's injected page script detects the navigator accesses (as per the following developer-mode page console output), but it looks like Chameleon proper never receives that info.
I think the document.write calls clear the document (since they run after the document finished loading), which breaks Chameleon's communication channel between its injected page script and its injected content script. |
While this scenario might be an acceptable edge case, it is true that Chameleon does not trap Plugin properties, only Navigator properties (such as PluginArray). |
Great! Also, even when I get rid of document.write, I still get the ~same error you mentioned on the DevTools console. Here's a demo which accesses navigator.plugins and mimetypes without using document.write. It seems simply accessing |
Oh, sorry, those aren't errors! It's just Chameleon figuring out the originating script using Chrome stack traces and me not bothering to edit the traces before dumping them to the console in dev mode. |
Ugh, I see :) |
Ha ha! |
On that second demo page Chameleon currently picks up a single hit for navigator.plugins and a single hit for navigator.mimeTypes. While that's correct, I agree it would be great to have a fuller picture of what happened to those properties that are in themselves enumerable lists of properties. Also, "navigator enumeration" right now isn't as interesting as "font enumeration" or "canvas fingerprinting", I feel like. It's probably too coarse a metric; perhaps the solution is to break it down into "plugin enumeration" and "MIME type enumeration". |
I think breaking it into plugin and mimeType enumeration is definitely a good idea. Perhaps, enumeration of the remaining navigator properties could still be useful (e.g. for detecting scripts that traverse the navigator by |
Now that I turned off raw counting of property accesses (96f3468), this ticket should help (re-)light Chameleon on Panopticlick. |
Currently Chameleon cannot intercept access to high entropy plugin properties such as
name
,filename
anddescription
. It only counts the number of accesses tonavigator.plugins
.Here's a simple demo page. The script on the page enumerates all the details about
navigator.plugins
, but the access to individual plugin properties goes unnoticed.The text was updated successfully, but these errors were encountered: