Comments on: Google adds a (dangerous) Firefox tune-up

By: James Grimmelmann

James Grimmelmann — Wed, 31 Dec 1969 17:00:00 +0000

I agree with you that this combination is dangerous and that it should probably not be on by default for users. But I think the mistake is the browser’s, not Google’s.

I have good connectivity and no snoops (that I know of) watching my browsing. (And if I did, then I might want prefetching as a form of plausible deniability.) I love prefetching. I wouldn’t want Google to turn it off for me and deny me the option of having prefetching. But I wouldn’t mind having Firefox turn it off, since that’s a default that I could override by opting-in with a preference.

By: Rob

Rob — Wed, 31 Dec 1969 17:00:00 +0000

The blame, if any, appears to be more Firefox's than Google's. Google just enabled their service to use a new proprietary Firefox feature, outlined on Mozilla.org here.

By: Ed Bott

Ed Bott — Wed, 31 Dec 1969 17:00:00 +0000

Rob, you must have posted your comment as I was updating the item.

I agree with both of you that the browser is the primary culprit here, but Google is taking it one dangerous step further by allowing a completely random page to be prefetched. At least with the default implementation I have to first click on a page before its links get fetched.

By: James Grimmelmann

James Grimmelmann — Wed, 31 Dec 1969 17:00:00 +0000

The more I think about it, the more it makes me uneasy. I can’t quite articulate a scenario in which prefetching would bite me, but just reading your updates has convinced me that I don’t understand its implications well enough to say that it definitely won’t bite me.

Despite my preference for speed-demon surfing, I’ve disabled prefetching for now.

By: Alex Halderman

Alex Halderman — Wed, 31 Dec 1969 17:00:00 +0000

James, I think you might have it the wrong way around. Any substantial new privacy issues related to prefetching are the site’s fault, not the browser’s.

There are lots of ways a site can cause your browser to load a page from another site without your knowledge: JavaScript tricks, hidden frames, etc. For legitimate uses, prefetching is preferable to these other methods, since the browser can be smart about only prefetching during idle periods. Disabling the prefetch feature will preclude these benefits without actually preventing malicious sites from loading remote pages.

On the other hand, well intentioned sites like Google need to be careful about what prefetching they cause for precisely the reasons Ed cites. Google’s users trust it not to place embarrassing content in their caches or to connect their browsers to disreputable sites. Google says only certain sites are prefetched, and I’ll bet these concerns enter into their selection algorithm.

Prefetching is also unlikely to exacerbate a vulnerability that “allows code to be executed automatically from a page that triggers a buffer overflow or exploits an unpatched scripting exploit.” The prefetched page is not rendered and any scripts it contains are not interpreted until the user actually follows a link to it. Only the HTTP and caching code is exposed to the prefetched data, and these relatively simple modules are less likely to contain exploitable holes.

By: Zaine Ridling

Zaine Ridling — Wed, 31 Dec 1969 17:00:00 +0000

Could prefetching be the reason why I see a number of cookies on my system to sites I’ve never visited at the end of each day?

By: Ed Bott

Ed Bott — Wed, 31 Dec 1969 17:00:00 +0000

Possibly. But it’s equally likely, if not more so, that those are simply third-party cookies from sites that contain elements (such as ads) loaded from a different site.

Try blocking third-party cookies to see if that reduces the number of “mystery” cookies.

By: Thinking About Technology

Thinking About Technology — Wed, 31 Dec 1969 17:00:00 +0000

Google adds a (dangerous) Firefox tune-up

Google has announced advanced searching with Firefox, But Ed Bott (via Ed Felton) shows how pre-loading (and caching) content on my machine can be dangerous