Mozilla Privacy Bug
Saturday September 14th, 2002
Yesterday, ZDNet UK News reported that Mozilla has a privacy flaw involving HTTP referers. The flaw can be exploited using the
The bug was filed in Bugzilla as bug 145579 on Sunday 19th May, with the more serious
UPDATE! Bug 145579 has now been made public.
ANOTHER UPDATE! A fix has been checked in to the trunk. A patch for the 1.0 branch will follow shortly.
YET ANOTHER UPDATE! A patch has now been checked in to the 1.0 branch.
#59 Fix is out, but how do you implement it?
Thursday September 19th, 2002 5:23 AM
You are replying to this message
Somebody posted a response to an article about this bug on ZDNet's web site. Here's a copy of it (Apparently, the guy was ticked off?):
Firstly, the article does a pathetic job of explaining the bug in the first place.
Thirdly, nobody posted the one-line fix you can add to your user.js file:
It's all in the Bugzilla report - which, again, nobody bothered to mention:
Do I have to do everything around here?
Now here's what I want to know:
1) Where's the user.js file?
2) How do you add the one-line fix to the user.js file? Does it involve using NotePad of WordPad? Or do you have to use something else?