Every Cloudflare site is fine in Mullvad Browser with all fingerprinting protections applied so I think this is a non-issue.
Okay, prove it:
Impressive, you got a live bypass for now, hopefully it holds up.
I didn’t bypass anything. I’m just using Mullvad Browser as it came. Yeah, hopefully CF doesn’t break for Mullvad Browser in the future.
What it means is that Mullvad and the Tor Project have already dealt with this WebGL problem, and Ianodan’s BadWolf is currently not ready for the realities of the modern Internet yet.
This is also a fundamental issue, the core of browser fingerprinting research is from the Tor Project, and Ianodan chose to base on the WebGTK+ engine, so they cannot easily reuse the Tor Project’s existing work.
The test still detects that WebGL is spoofed, but it doesn’t block everyone. But the bypass is quite simple, just by using a spoof for a real GPU model instead of Mozilla/Mozilla.
By the way, it’s interesting that the test also detects Brave Shields.
"braveShields": {
"detected": false
}