Firefox Referer Manipulation, Porn, and Quick Quit
This is a quick review of some (well, two) Referer: header manipulators that I've been able to find for Firefox. This came up while testing out a possible XSS vulnerability where the script was passing along document.referer unsanitized.
Send Referer: Compact and great for "privacy," but doesn't allow for editing the referer field directly. I was hoping for something more along the lines of User Agent Switcher.
RefControl: Much more complete. RefControl allows for a number of custom referer headers, depending on the site. In other words, sites that don't work without a valid Referer will still work (once you notice the problem). The only (minor) issue I saw is that it appears that the "Normal" functionality is broken -- it appears "Normal" and "Block" do the same thing and supress the header entirely. But, unlike Send Referer, RefControl includes an on/off button on the control bar.
If you know of a better XPI for Firefox to do this, let me know -- I was surprised to see that the otherwise very complete Web Developer Extension doesn't include support for this.
Oh, and a complete non sequitur: I find the Pornzilla project both hilarious and a perfect example of my personal maxim, "All IT professionals are really working for the porn industry."
Another: I need a button that lets me close all my Firefox windows and tabs all at once. Currently, on Windows, I use Ctrl-Alt-Del, Alt-T, F, I, R, E, Alt-E, Enter. Compare this to starting Firefox (with Colibri): Ctrl-Space, F, Enter. Clearly, quitting is way too many keystrokes, especially since it happens at least once a day, and every time I install a new extension.
Mildly related: Mere page refreshes instead of reboots is one of the huge reasons why I prefer Greasemonkey user scripts to extensions these days.
Send Referer: Compact and great for "privacy," but doesn't allow for editing the referer field directly. I was hoping for something more along the lines of User Agent Switcher.
RefControl: Much more complete. RefControl allows for a number of custom referer headers, depending on the site. In other words, sites that don't work without a valid Referer will still work (once you notice the problem). The only (minor) issue I saw is that it appears that the "Normal" functionality is broken -- it appears "Normal" and "Block" do the same thing and supress the header entirely. But, unlike Send Referer, RefControl includes an on/off button on the control bar.
If you know of a better XPI for Firefox to do this, let me know -- I was surprised to see that the otherwise very complete Web Developer Extension doesn't include support for this.
Oh, and a complete non sequitur: I find the Pornzilla project both hilarious and a perfect example of my personal maxim, "All IT professionals are really working for the porn industry."
Another: I need a button that lets me close all my Firefox windows and tabs all at once. Currently, on Windows, I use Ctrl-Alt-Del, Alt-T, F, I, R, E, Alt-E, Enter. Compare this to starting Firefox (with Colibri): Ctrl-Space, F, Enter. Clearly, quitting is way too many keystrokes, especially since it happens at least once a day, and every time I install a new extension.
Mildly related: Mere page refreshes instead of reboots is one of the huge reasons why I prefer Greasemonkey user scripts to extensions these days.
posted by todb at 4:22 PM
0 Comments:
Post a Comment
Links to this post:
Create a Link
<< Home