uMatrix icon indicating copy to clipboard operation
uMatrix copied to clipboard

Published 20 hours ago verified publisher icon gorhill

spoof http origin header

Open tyngdekraften opened this issue 7 years ago • 1 comments

https://skyfallattack.com/

GET /s/montserrat/v12/IVeH6A3MiFyaSEiudUMXE8u2Q0OS-KeTAWjgkS85mDg.woff2
Host: fonts.gstatic.com
Referer: https://fonts.gstatic.com/
Origin: https://skyfallattack.com

in this context origin is useless and used for tracking while modifying it does not break anything https://github.com/gorhill/uMatrix/issues/358#issuecomment-152828312

tyngdekraften avatar Jan 22 '18 00:01 tyngdekraften

Spoofing it to the spec-defined null value (The value used for file:// URLs where null != null) should be safe, though it's possible some sites might decide that blocking use from file:// URLs is acceptable.

ssokolow avatar Feb 21 '18 08:02 ssokolow