flashplugin-nonfree permanent cookies
Bug #283650 reported by
Yannis Tsop
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| flashplugin-nonfree (Ubuntu) |
Confirmed
|
Low
|
Unassigned | ||
Bug Description
Binary package hint: flashplugin-nonfree
http://
As you can read in this article flash cookies are permanent. I don't like this idea. Could there be a way to automaticaly
rm -rf .macromedia/
on every boot or login??
Revision history for this message
| Daniel T Chen (crimsun) wrote | #1 |
| Changed in flashplugin-nonfree: | |
| importance: | Undecided → Low |
Revision history for this message
| Yannis Tsop (ogiannhs) wrote | #2 |
| Changed in flashplugin-nonfree (Ubuntu): | |
| status: | New → Confirmed |
To post a comment you must log in.
While the attack coverage is certainly high, your proposal of unconditionally (forcibly) removing ~/.macromedia/
1) Log in via gnome-session;
2) Open Web browser, and load embedded Flash that uses cookies;
3) Switch to tty1
4) Switch to tty7
If the Flash applet has not completed loading between steps (2) and (3), you've just blown away the cookie(s).
Trivially, the "remove on logout" proposal is analogous.
However, as a brutish hack, one could use gnome-session to invoke such a script running upon session login that forcibly removes the cookies.