[bug] cromite on android being detected as a bot due to viewport size protection

[unixfox]

Hello,

Cromite a popular fork of chromium with many privacy features, has a feature called "viewport size protection". The feature is added through this patch: https://github.com/uazo/cromite/blob/master/build/patches/Viewport-Protection-flag.patch

When this feature is enabled, brotector detects some odd behavior from cromite and thinks that it's a bot:

screen-20241205-231140.1.mp4

screen-20241205-233102.mp4

I think it's probably because the viewport size given to the website is not the correct one of the device?

[kaliiiiiiiiii]

I think it's probably because the viewport size given to the website is not the correct one of the device?

Uh yes that could indeed be the case. Actually related to ScreenX/Y for mouse move, click etc. events

[kaliiiiiiiiii]

https://github.com/uazo/cromite/blob/32fa8435523f71f1d2b6ac2facdea91e874c6904/build/patches/Viewport-Protection-flag.patch#L239

Though, this is a very rare case I think. Suppose some antibots would be willing to block users having that specific feature enabled.

=> good to know, but probably not as relevant?

[unixfox]

What do you think of doing an exception for mobile users only?

Something like:

if(e.pageY == e.screenY && e.pageX == e.screenX && !navigator.userAgentData.mobile){var score=1}else{var score=0};

[kaliiiiiiiiii]

What do you think of doing an exception for mobile users only?

Something like:

if(e.pageY == e.screenY && e.pageX == e.screenX && !navigator.userAgentData.mobile){var score=1}else{var score=0};

Maybe a better score, year.
Even though arguably - the score calculation isn't implemented properly anyways.