September 21, 2007

TLS-Cookie can track you

Filed under: browser,firefox,privacy — admin @ 11:48 am

It’s always interesting how some features which are nice and really used, can become evil for you if your configuration is not very strict:

Alexander Klink found out that you can track people over websites by setting them a so called TLS-cookie. Which is nothing else than a server is setting you a client certificate in your Web browser, which is presented to every Web server without notifications by default settings within your Firefox. Read more on Heise.de in German.

So what to do? Just disable the automatic sending of a certificate under Preferences -> Advanced -> by switching from “Select one automatically” to “Ask me every time” in the Certificates section. With this option you will always be asked if a server is requesting a certificate if you want to present any. Then you can decide if you want to or not…

Proudly powered by wordpress 4.7.5 - Theme by neuro