My apologies to the Bugzilla team for wasting their time holding my hand on this one. Would have honestly never noticed the little “HTML5” info icon to the left of the URL bar though without their help.
- Vincent ( @Vincent@feddit.nl ) 22•6 months ago
And when you do this, you are now more fingerprintable than you were with
resistFingerprinting
off, as the specific combination of anti-fingerprinting measures and canvas-enablement makes you more unique. Which is why it’s hidden inabout:config
.Yeah, as stated, only for sites you trust.
I was enabling it on at a cycling site that uses HTML5 Canvas to make their charts of how long chain lubricants last zoomable, haha.
- delirious_owl ( @delirious_owl@discuss.online ) 2•6 months ago
If you’re fingerprintable and your fingerprint changes every 60 seconds then it doesn’t really matter
You’re still better off hardening these settings
- 🇦🇺𝕄𝕦𝕟𝕥𝕖𝕕𝕔𝕣𝕠𝕔𝕕𝕚𝕝𝕖 ( @muntedcrocodile@lemm.ee ) English5•6 months ago
How do u do fingerprinting with a canvas
- ReversalHatchery ( @ReversalHatchery@beehaw.org ) English5•6 months ago
Different graphics stacks (graphics hardware, their drivers (of which there are different ones for all major OSes), the display server (on Linux)) draw things slightly differently. As I remember this especially applies to text rendering using different fonts, but slightly tilted lines, bent lines, and color blending is probably also part of it, and more.
- junepf ( @junepf@lemmy.blahaj.zone ) 0•6 months ago
https://en.m.wikipedia.org/wiki/Canvas_fingerprinting
When a user visits a page, the fingerprinting script first draws text with the font and size of its choice and adds background colors (1). Next, the script calls Canvas API’s ToDataURL method to get the canvas pixel data in dataURL format (2), which is basically a Base64 encoded representation of the binary pixel data. Finally, the script takes the hash of the text-encoded pixel data (3), which serves as the fingerprint …
Variations in which the graphics processing unit (GPU), or the graphics driver, is installed may cause the fingerprint variation. The fingerprint can be stored and shared with advertising partners to identify users when they visit affiliated websites. A profile can be created from the user’s browsing activity, allowing advertisers to target advertise to the user’s inferred demographics and preferences.
By January 2022, the concept was extended to fingerprinting performance characteristics of the graphics hardware, called DrawnApart by the researchers.
- delirious_owl ( @delirious_owl@discuss.online ) 3•6 months ago
Or email those admins and tell them to fix their website
HTML5 is a perfectly valid technology when used for good purposes though? Their zoomable charts are fine as long as it is enabled. I don’t think they’re using them for tracking, just to make it easier to enable certain technologies.
The company I work for does all our interactive lessons in HTML5 Canvas via Animate CC. When Flash was EOL’d it saved us from having to redo literally thousands of lessons completely.
Yeah if it even drew something like “Canvas approval needed to see this image” or just the dang icon in the location bar that would be a start.
- AVincentInSpace ( @AVincentInSpace@pawb.social ) English2•6 months ago
OHHHHHHHHHHHHHHHH
That’s why Champ’d Up doesn’t work properly in Mull Browser! Thanks for this!
- TWeaK ( @TWeaK@lemm.ee ) English1•6 months ago
Yarp I’ve had this also.