Re: [Bug-gnuzilla] DDG shows privacy leaks

[Narcis Garcia]

I've found a _javascript_ file containing the feature:
https://duckduckgo.com/locales/en_US/LC_MESSAGES/duckduckgo-duckduckgo+sprintf+gettext+locale-simple.20150821.051933.js

See string "Your browser indicates if you've visited this link"

It's complicated to track when and how this code is executed.

El 21/08/15 a les 16:25, Narcis Garcia ha escrit:

Those checkmarks are a circle symbol with floating description.
Then they may have CSS visibility properties (?)

__________________________________________________________

El 20/08/15 a les 12:22, Jonas Wielicki ha escrit:

On 19.08.2015 21:33, Narcis Garcia wrote:

Currently DuckDuckGo returns private information in the results.
When user performs a search, results include a small mark when are
aleady visited in the past. This means DDG _javascript_ accesses to
web browser history.

It is not using _javascript_, just plain CSS:

.result__check:visited {
    color: #c3c3c3;
}

Without that rule, the checkmarks (of which I think you are talking
about) disappear.

regards,
jwi

--
http://gnuzilla.gnu.org

--
http://gnuzilla.gnu.org