A lot of internet usage is logging in to Email, FB. If you do that an attacker knows that this particular user is you. Not sure how that can be "fixed" easily.
To recap the current situation: You need to run a normal browser (for convenience) for facebooking (of course running NoScript, Ghostery, RequestPolicy etc.) and the Tor browser for researching things you don't want to be associated with your identity (yet nothing that law enforcement or intelligence agencies care about).
"A lot of internet usage is logging in to Email, FB. If you do that an attacker knows that this particular user is you. Not sure how that can be "fixed" easily."
When data is inputted to a HTML-form an alert could pop up.
"Disclosing your login details may compromise your privacy"
At least that would educate users, similarly as the warning text on Chromes New Tab incognito page.
It couldn't. It'd take a fundamental re-architecture of Tor to implement a solution, but you also actually have to solve the problem, which is pretty hard too.
To recap the current situation: You need to run a normal browser (for convenience) for facebooking (of course running NoScript, Ghostery, RequestPolicy etc.) and the Tor browser for researching things you don't want to be associated with your identity (yet nothing that law enforcement or intelligence agencies care about).