This was being blocked at WOT page: Prevented a script on htxps://www.mywot.com from capturing the following 32px × 32px canvas: the message came from CanvasFingerprintBlock extension in Google Chrome. Normally this form of tracking can be blocked by ScriptSafe and HTTP-Switchboard.
So Polonus was curious what user tracking is being perforformed by https://www.mywot.com
See the tracker tracker report attached. We see Facebook Tracker and Google Analytics and for problemeatic WOT issues, see: https://www.eff.org/https-everywhere/atlas/domains/mywot.net.html
polonus
CDN Bucket issue for https://www.mywot.com
CDN buckets
- d203dmbd9wdx7j.cloudfront.net
See: https://www.rateip.com/domain/d203dmbd9wdx7j.cloudfront.net
SQL exploitation risk can be verified there. See: HTTPS Everywhere Atlas
HTTPS Everywhere according to me could be a double-edged sword.
On the one end it enables SSL log-in, but often there is also insecure content.
A HTTPS website proper is a much better idea, with proper configuration installed,
rather than enforcing a less secure alternative like HTTPS enforced.
The recaptcha issue was solved: reCAPTCHA uses a new HTTPS API URL
polonus