Purpose

The traffic between your browser and a web server, including sensitive data, is readable if you fail to establish a secure connection first.

Website ads and content, including legitimate ones, can be compromised (or injected) with malicious code that puts your system at risk of infection.

Audience

On this page

Initial considerations

Ensure your system is protected from viruses and malware.

• While ad-blocking software can help proactively stop malicious content from being loaded, it is important that your system is further protected, should anything be missed or if you need to pause your ad-blocker.

  • https://handbook.security.utoronto.ca/wiki/x/AQC0

What can I do?

Set up HTTPS-only mode in your browser.

Chrome

• Enable “Always use secure connections.”

  • https://support.google.com/chrome/answer/10468685?sjid=15246487184173788845-NC#https-only-mode&zippy=%2Cturn-on-always-use-secure-connections

Firefox

• Enable “HTTPS-Only Mode.”

  • https://support.mozilla.org/en-US/kb/https-only-prefs#w_enabledisable-https-only-mode

Safari

• Enabled by default. No action required.

Other browsers

• Contact your Local IT group for additional assistance.

  • https://handbook.security.utoronto.ca/wiki/spaces/ISH/pages/4948958/Contact+us#Information-Technology-(IT)

Install ad-blocking software (extension) for your browser.

Safari

• Possible solution(s) include:

  • https://adguard.com/

Chrome, Edge, Firefox, Opera

• Possible solution(s) include:

  • https://ublockorigin.com/

Other browsers

• Contact your Local IT group for additional assistance.

  • https://handbook.security.utoronto.ca/wiki/spaces/ISH/pages/4948958/Contact+us#Information-Technology-(IT)

Prevent tracking cookies (also known as third-party persistent or cross-site cookies)

Safari

• Enable “prevent cross-site tracking”

  • https://support.apple.com/en-ca/guide/iphone/iphb01fc3c85/ios#:~:text=Go%20to%20Settings%20%3E%20Safari%2C%20then%20turn%20any%20of%20the%20following,IP%20address%20from%20known%20trackers.

Chrome

• Manage “Tracking protections” to send “Do not track” signal and block third-party cookies.

  • https://support.google.com/chrome/answer/95647?hl=en-GB&co=GENIE.Platform%3DDesktop

Edge

• Enable “Tracking prevention” and ensure “Balanced” or “Strict” profile is selected.

  • https://support.microsoft.com/en-us/topic/adjust-privacy-settings-in-microsoft-edge-600ee799-081c-4ab7-b6c2-d8a9baeda3c4

• Enable “Send ‘Do Not Track’ requests”.

Firefox

• Ensure “Enhanced Tracking Protection” is blocking cross-site tracking cookies.

  • https://support.mozilla.org/en-US/kb/enhanced-tracking-protection-firefox-desktop#w_standard-enhanced-tracking-protection

Other browsers

• Contact your Local IT group for additional assistance.

  • https://handbook.security.utoronto.ca/wiki/spaces/ISH/pages/4948958/Contact+us#Information-Technology-(IT)