From 0ed2145c815229240ee2b26649ea340207a02ba0 Mon Sep 17 00:00:00 2001 From: Thorin-Oakenpants Date: Tue, 20 Jul 2021 01:38:54 +0000 Subject: [PATCH] Updated 4.2.4 Header Editor (markdown) --- 4.2.4-Header-Editor.md | 11 ++++++----- 1 file changed, 6 insertions(+), 5 deletions(-) diff --git a/4.2.4-Header-Editor.md b/4.2.4-Header-Editor.md index 51f285c..c107718 100644 --- a/4.2.4-Header-Editor.md +++ b/4.2.4-Header-Editor.md @@ -5,12 +5,13 @@ Header Editor is an extension that allows you to modify the request header and r :exclamation: pay attention, header names are case sensitive :small_orange_diamond: remove all ETag's - * Note: if you disable disk *and* memory cache, this is not required + * ⭐ This is pointless if sites are already isolated: e.g. you use + - FF85+, which uses [network partitioning](https://blog.mozilla.org/security/2021/01/26/supercookie-protections/) + - First Party Isolation (FPI) + - Temporary Containers in a hardened mode + * Note: No browser is designed to hide repeat visits within a session, not even Tor Browser (that's what New Identity is for) + - You would need to sanitize fully in session, and that still leaves your IP address, among other vectors * Test: https://httpbin.org/ - * Test: https://privacycheck.sec.lrz.de/passive/fp_etag/fp_etag.php - * Test: https://lucb1e.com/rp/cookielesscookies/ - * number of visits should never be more than 2 - * note: the site uses IP and UA to create your unique ID, so to test, do not change these ``` Name: remove all ETag's