Mozilla ta canza yadda take samar da taken HTTP Referer a Firefox 87, wanda aka shirya don fitarwa gobe. Don toshe yuwuwar leaks na bayanan sirri, ta tsohuwa lokacin kewayawa zuwa wasu rukunin yanar gizon, Mai Magana HTTP ba zai haɗa da cikakken URL na tushen da aka yi canjin ba, amma yanki kawai. Za a yanke hanya da sigogin buƙatun. Wadancan. maimakon "Referer: https://www.example.com/path/?arguments", "Referer: https://www.example.com/" za a aika. An fara da Firefox 59, an yi wannan tsaftacewa a cikin yanayin bincike mai zaman kansa, kuma yanzu za a faɗaɗa shi zuwa babban yanayin.
Sabuwar halin zai taimaka hana canja wurin bayanan mai amfani mara amfani zuwa cibiyoyin sadarwar talla da sauran albarkatun waje. A matsayin misali, ana ba da wasu rukunin yanar gizon likita, yayin da ake nuna tallace-tallacen da wasu kamfanoni za su iya samun bayanan sirri, kamar shekarun majiyyaci da ganewar asali. A lokaci guda, cire cikakkun bayanai daga Mai Binciken na iya yin mummunar tasiri ga tarin ƙididdiga game da sauye-sauye ta masu mallakar rukunin yanar gizon, waɗanda a yanzu ba za su iya tantance adireshin shafin da ya gabata daidai ba, alal misali, don fahimtar wane labarin aka yi canjin. daga. Hakanan yana iya tarwatsa ayyukan wasu tsarukan samar da abun ciki masu ƙarfi waɗanda ke karkatar da maɓallan da suka haifar da canji daga injin bincike.
Don sarrafa saitin Referer, an samar da taken Referrer-Policy HTTP, wanda masu rukunin yanar gizon zasu iya ƙetare dabi'un da suka dace don canzawa daga rukunin yanar gizon su kuma su mayar da cikakken bayani ga Mai Bugawa. A halin yanzu, tsarin da aka saba shine "no-referrer-when-downgrade", inda ba'a aika mai duba lokacin da aka rage darajar daga HTTPS zuwa HTTP ba, amma ana aika shi da cikakken tsari lokacin zazzage albarkatu akan HTTPS. An fara da Firefox 87, manufar "tsattsauran asali-lokacin-giciye-asalin" za ta fara aiki, wanda ke nufin yanke hanyoyi da sigogi lokacin aika buƙatu zuwa wasu runduna lokacin shiga ta HTTPS, cire Mai Nufi lokacin sauyawa daga HTTPS zuwa. HTTP, da ƙaddamar da cikakken Mai neman canji na ciki a cikin rukunin yanar gizo ɗaya.
Canjin zai shafi buƙatun kewayawa na yau da kullun (biyan hanyoyin haɗin kai), turawa ta atomatik, da lokacin loda albarkatun waje (hotuna, CSS, rubutun). A cikin Chrome, an aiwatar da canjin tsoho zuwa "tsatse-asali-lokacin-giciye-asalin" lokacin rani na ƙarshe.
source: budenet.ru