BrowserAudit - How secure is your browser?

Discussion in 'other software & services' started by Mr.X, Jan 30, 2018.

  1. reasonablePrivacy

    reasonablePrivacy Registered Member

    Joined:
    Oct 7, 2017
    Posts:
    1,396
    Location:
    Member state of European Union
    Unfortunately NoScript for post-Quantum FF has not some features. For example I would like to allow some 3rd-party scripts only on particular website, a block it on the others.
     
  2. Azure Phoenix

    Azure Phoenix Registered Member

    Joined:
    Nov 22, 2014
    Posts:
    1,331
    You can easily do that with uBlock Origin.
     
  3. xxJackxx

    xxJackxx Registered Member

    Joined:
    Oct 23, 2008
    Posts:
    6,582
    Location:
    USA
    On further evaluation and testing I agree and won't be using this test to influence my decision. Knee-jerk reactions are something I should not be doing.
     
  4. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    9,724
    Location:
    U.S.A. (South)
    LoL Put NoScript on almost anything and you stifle any javascript starts.

    I only let it run to read the DETAILS to see if, or rather how many results actually qualify as something to consider or not.
     
  5. KeyPer4Life

    KeyPer4Life Registered Member

    Joined:
    Dec 18, 2013
    Posts:
    1,239
    Test results is on by default.

    Of course you have to enable scripting to turn off test result reporting.
     
  6. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    9,724
    Location:
    U.S.A. (South)
    https://browseraudit.com/

    Snap run with Chrome 92 xxxxx using uBlock Origin + NoScript + Cookie Notice Blocker

    Windows 8.1 Professional

    ooo.jpg
     
  7. Sampei Nihira

    Sampei Nihira Registered Member

    Joined:
    Apr 7, 2013
    Posts:
    2,130
    Location:
    Italy
    Android Opera browser + Internal AdBlocker - No VPN :

    Opera.jpg
     
  8. plat1098

    plat1098 Registered Member

    Joined:
    Dec 19, 2018
    Posts:
    1,150
    Location:
    Brooklyn, NY
    browser audit.png

    Firefox build 91.0.2. with uBlock Origin, ClearURLs and Skip Redirect ext. :thumb: 4 of the 8 warnings were related to "access-control-expose-headers."
     
  9. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    9,724
    Location:
    U.S.A. (South)
    I don't feel so missing seeing @Sampei Nihira stats closely mirror my own. Wonder what we can do to really improve our scores on Browser Audit.
     
  10. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    2,972
    Location:
    Location Unknown
    @plat1098, would you mind sharing your Skip Redirect lists; no skip urls, skip urls and no skip parameters? I have never heard of this extension before now and am eager to properly test it. Thanks!
     
  11. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    9,724
    Location:
    U.S.A. (South)
    Added Clear URLs and Skip Redirect courtesy @plat1098 from the Chrome Web Store. Running a new Audit.
     
  12. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    2,972
    Location:
    Location Unknown
    I just did the same, and it was better!
     
  13. wat0114

    wat0114 Registered Member

    Joined:
    Aug 5, 2012
    Posts:
    3,311
    Location:
    Canada
    Firefox 91.0.2 running on Linux MX-19.4 with ublockO and LocalCDN addons.

    uBlock in Hard mode utilizing only stock filters plus several custom filter borrowed from Lenny_Fox and Windows_Security from another forum :D

    browseraudit.png
     
  14. JRViejo

    JRViejo Super Moderator

    Joined:
    Jul 9, 2008
    Posts:
    69,428
    Location:
    U.S.A.
    Firefox 91.0.2, Win7 64-bit, with HTTPS Everywhere, NoScript, and Adblock+ extensions.

    upload_2021-8-29_11-41-26.png
     
  15. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    9,724
    Location:
    U.S.A. (South)
    DANG @JRViejo - Great stats. might have to look at Firefox- Chrome is awesome but I yet to produce that tally.
    But will keep trying :D
     
  16. plat1098

    plat1098 Registered Member

    Joined:
    Dec 19, 2018
    Posts:
    1,150
    Location:
    Brooklyn, NY
    I use both ext at defaults, out of the box and both work exceedingly well that way. It seems you can import/export URLs but I haven't seen the need here myself for the past few months of daily use. No impacts at all along w/uBO.

    clearurls.png
    skrdt2.png
     
  17. EASTER

    EASTER Registered Member

    Joined:
    Jul 28, 2007
    Posts:
    9,724
    Location:
    U.S.A. (South)
    Here are my own Dissenter browser stats fresh installed directly :D

    sshot-2021-08-29-14-44-00.jpg
     
  18. Page42

    Page42 Registered Member

    Joined:
    Jun 18, 2007
    Posts:
    6,705
    Location:
    USA
    My audit test showed just the one critical result, "Cookie set by JavaScript should not be sent over HTTP".

    How to stop this?

    Edit in: FWIW, I did try the experimental flags suggested by WildByDesign (Future V8 VM features) which add the latest V8 javascript virtual machine features. I received the exact same test results with this enabled.
     
    Last edited: Aug 29, 2021
  19. n8chavez

    n8chavez Registered Member

    Joined:
    Jul 19, 2003
    Posts:
    2,972
    Location:
    Location Unknown
    It this point I'm more curious than anything else. @JRViejo, how are you getting so few warnings? I'm testing the same setup you you mentioned and I cannot get my warnings down below 28. Are you using any special about:config settings?
     
    Last edited: Aug 29, 2021
  20. JRViejo

    JRViejo Super Moderator

    Joined:
    Jul 9, 2008
    Posts:
    69,428
    Location:
    U.S.A.
    n8chavez, I have made quite a few changes, via about:config, over the years to each version. Since some display personal info, I will not list them, however, to see your own changes, type about:support and scroll down to Important Modified Preferences to see yours.

    My non-critical test warnings are as follows:

    Content Security Policy: connect-src
    Block - WebSocket connecting to wss://browseraudit.com with connect-src 'self'

    Content Security Policy: sandbox
    Allow - Access from child iframe on https://browseraudit.com to cookie on .browseraudit.com with sandbox allow-same-origin
    Allow - Access from child iframe on https://test.browseraudit.com to cookie on .browseraudit.com with sandbox allow-same-origin

    Cross-Origin Resource Sharing: Access-Control-Expose-Headers
    Allow - Caller can access Content-Type with no Access-Control-Expose-Headers header
    Block - Caller can't access Content-Length with no Access-Control-Expose-Headers header
    Block - Caller can't access Content-Length with Access-Control-Expose-Headers: Connection
    Block - Caller can't access Content-Length with Access-Control-Expose-Headers: Date, Connection

    Response Headers: X-Frame-Options
    Block - frame from same origin with ALLOW-FROM test.browseraudit.com
    Block - frame from remote origin with ALLOW-FROM test.browseraudit.com
     
    Last edited: Aug 29, 2021
  21. SouthPark

    SouthPark Registered Member

    Joined:
    Jun 13, 2012
    Posts:
    530
    Location:
    South Park, CO
    I get the same with up-to-date Chromium 92: BrowserAudit 2021-08-29 CHR 92.png
     
  22. SouthPark

    SouthPark Registered Member

    Joined:
    Jun 13, 2012
    Posts:
    530
    Location:
    South Park, CO
    My Firefox rating with uBO, Smart HTTPS, and mostly default settings: BrowserAudit 2021-08-29.png
     
  23. Bertazzone

    Bertazzone Registered Member

    Joined:
    Apr 13, 2018
    Posts:
    392
    Location:
    Milan, Italia
    Capture.PNG
    Firefox with 99% internal settings + Privacy Badger. Just having some click-bait fun!:thumb:
     
  24. Daveski17

    Daveski17 Registered Member

    Joined:
    Nov 11, 2008
    Posts:
    9,578
    Location:
    Lloegyr
    Safari 14.1.2. (AdBlock Pro)

    Safari.jpg
     
  25. Daveski17

    Daveski17 Registered Member

    Joined:
    Nov 11, 2008
    Posts:
    9,578
    Location:
    Lloegyr
    Firefox 91.0.2 uBO, Decentraleyes

    Firefox.jpg
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.