/tech/ - Technology★

Why do people still use furryfox? Just keep it around for when you absolutely *need* javascript support. Block domains you deem malacious through your router/unbound/firewall.

>>884787

It works for me. It respects your privacy despite what most of the dipshits on this board say.

I use UBlock Origin + UMatrix

>>884814

I use Ghostery

I use an anal probe.

why is this reddit tier thread still up

>>884803

No, it doesn't. It enables a bunch of crap by default, only after changing 20+ about:config entries can you really feel safe.

>>884850

Geo location, pocket, eme, webgl, and crash reporting - what do they have in common? they're all enabled by default.

<the virgin ghostery

>the chad adnaudeam

>>884860

>geo location

>disabled by default in most linux distros

>pocket

>easy to turn off

<eme

<webgl

<crash reporting

not a problem

>>884781 (OP)

>ghostery

Shoo shoo ad jew

fuck off you idiot

All the tracking on google sites is part of the main functionality scripts. Have you ever seen google-analytics on their sites? Do you think they just don't bother tracking? Retards who think they are ever clever by just using an adblocker instead of blocking scripts are the worst.

>>884814

yeah

uBO + uMatrix is the only sensible stuff for blocking, and everything else is unnecessary bloat.

(well there's also LibreJS if you're an autist)

also it won't hurt to have "HTTPS Everywhere" from EFF.

/thread

>>884860

>Geo location

only after you approve it for specific website

>>884860

>eme

there's EME-free build and compile flag

>pocket

it was open-sourced

also if you simply ignore it, it doesn't do anything

>>884932

Is there something like third-party filter sets for umatrix just like for ublock? It's a bit of a pain to have to constantly fiddle around to try and make stuff work (mostly trial & error in enabling js/xhr entries), especially if it's a random site you visit just once.

>>884934

everybody have different levels of paranoia, so it's better to choose yourself.

also, any such filter would be deanonymizing for the author because it reveals which sites they regularly use.

>>884941

>any such filter

any such rule set

>>884781 (OP)

AdBlockPlus is a cucked blocker. It has "allowed ads", doesn't block ads and simply hides most of them, doesn't block all ads, and has terrible performance.

Ghostery is another cucked blocker. It's literally owned by an ad company and the addon datamines you.

OP is a paid shill.

>>884817

You're an idiot then.

Reminder that uBlock Origin is the only good adblock.

>>884935

>implying anyone cares what you do

People still use this argument in this day and age? Nobody cares until they do, and then all the information is just one database search away. Sweep-scope tracking is almost fully automated, but results are available to persons who have access.

>>884803

1. Close Firefox and any program that uses internet connection.

2. Open Wireshark.

3. Open Firefox.

4. Watch all of the connections to Amazon and Google pop up in Wireshark.

You've been lied to.

>>884955

is it about cuck extensions, or about pure Firefox (EME-free build)?

I am too lazy to repeat the experiment but I don't use cuck extensions.

>>884781 (OP)

>>884814

this, anything else is inferior

>>884961

you use a cuck browser.

>>884969

still it's the one chosen by Tor project.

perhaps they know better than you?

>>884970

>perhaps they know better than you?

Of course (((they))) do. They need to make sure they can still track you even after you have enabled maximum placebo.

>>884970

Maybe they are compromising so normalfags who are accustomed to faceberg, Jewgle and twatter can get right into browsing using Tor? I praise the Tor project for spreading it to the masses, but I am critical of their choice of enabling JavaScript by default. People don't use the Torbrowser to pay their bills, they use it to visit sites without allerting spooks to WHAT they are looking for. So if a website refuses to load because muh JS backdoor the appropriate choice would be to either not use the site at all OR selectively enable which scripts are enabled AND make sure they have access to NOTHING interesting, but see below why that might be a mistake.

Unlike web 2.0 cancersites, Tor Project takes the issue of JavaScript seriously, understand it has its downsides and has publisised a defence of default enabling: https://www.torproject.org/docs/faq.html.en#TBBJavaScriptEnabled

On why selective enabling of scripts is a bad idea, the Tor project has the following to say:

<There's a tradeoff here. On the one hand, we should leave JavaScript enabled by default so websites work the way users expect. On the other hand, we should disable JavaScript by default to better protect against browser vulnerabilities ( not just a theoretical concern!). But there's a third issue: websites can easily determine whether you have allowed JavaScript for them, and if you disable JavaScript by default but then allow a few websites to run scripts (the way most people use NoScript), then your choice of whitelisted websites acts as a sort of cookie that makes you recognizable (and distinguishable), thus harming your anonymity.

They have also written on how to disable JS: https://www.torproject.org/docs/faq.html.en#DisableJS

<The more klunky way to disable JavaScript is to go to about:config, find javascript.enabled, and set it to false.

tl;dr: Tor project enabled JS by default in Torbrowser to appease normalfags, but disabling it is trivial to someone with 3 braincells.

>>884971

>https://www.torproject.org/docs/faq.html.en#TBBJavaScriptEnabled

<We configure NoScript to allow JavaScript by default in Tor Browser because many websites will not work with JavaScript disabled. Most users would give up on Tor entirely if a website they want to use requires JavaScript, because they would not know how to allow a website to use JavaScript (or that enabling JavaScript might make a website work).

I still don't think it's a very good reason. If someone uses Torbrowser, they have already gone to an effort beyond the mere installation of add-ons. Enabling JS wouldn't be that hard for someone like that. It means we are left with two options:

1. Then one you proposed that they are "[making] sure they can still track you even after you have enabled maximum placebo".

2. They consider the vast majority of their users to be complete morons who couldn't even put on their laceless shoes without help.

So far, I haven't seen any concrete evidence of backdooring in Tor, so I'm going with option number 2, but if anyone knows more than I do, feel free to share.

(sage for double-post, your post appeared after I had posted mine and my view was refreshed)

>>884980

>They consider the vast majority of their users to be complete morons who couldn't even put on their laceless shoes without help.

but this is actually true, and for most software.

>>884973

remember: if only the proficient users are using Tor, then there's no anonymity even for them anyway. Tor needs a shitload of users to be able to hide the needle in the haystack.

>>884934

filterlists.org or some shit

>>884860

>Geo location

You must give permission on a per-website basis. Otherwise it won't send shit even if it's enabled.

>pocket

It's a glorified bookmark and pretty easy to turn off.

>eme

Disable it in settings or download the EME-free build from Mozilla.

>webgl

Necessary for some websites.

>crash reporting

Disable it if you're so paranoid.

>>884781 (OP)

>Ghostery is a much better alternative. Just make sure to turn off reporting crashes

Install uMatrix and µblock Origin.

>>884973

>then your choice of whitelisted websites acts as a sort of cookie that makes you recognizable (and distinguishable)

That makes no sense. Lets say I connect to some site 'A' and for that site I have javascript enabled. Now lets say that 'A' wants to know if I have javascript enabled for some site 'B'. For 'A' to know this 'A' has to try and make a call to 'B'. If I have blocked access to all third party domains for 'A' than it will never be able to connect to 'B'. The only data 'A' has collected from me is that I allowed it to load javascript and that I didn't allow it to load site 'B'.

I realize that they are talking about retards who use noscript as opposed to umatrix, but still.

>>884989

>>webgl

>Necessary for some websites.

Those sites are shit. Seriously who uses this cancer, besides the site that checks if you have webgl enabled. I'm sure there is some normalfag vidya site that needs it but there is no reason you should be using it.

>>884787

>>884846

>>884860

Firefox is the only browser left that allows the user to customize shit decently. Yes it comes pozzed but you can remove the AIDS unlike with Chrome or other botnet browsers like Brave or Opera.

>>884935

Oh look the Jewish marketing major has arrived.

>>884814

>>884911

>>884932

>>884947

>>884990

You are all correct. Glad to see that not everybody's retarded on /tech/.

Trips for UMatrix + UBlock Origin.

>>884934

It's pretty much a self dox. Mine would give away my interests, work, and college.

>>884973

I thought they had scripts globally blacklisted by default with no script. Did this change?

>not just getting rid of javashit all together.

it's the only way you can be sure you aren't being fucked.

>>884994

It's weird. You seem to know that fingerprinting is done server-side, yet you don't seem to realize that disabling shit that is standard in all browsers such as WebGL and referrers makes it easier to fingerprint you.

Fingerprinting is not about disabling shit, it's about looking as average as possible. You're shooting yourself in the foot by disabling shit.

>>884995

>Firefox is the only browser left that allows the user to customize shit decently

Stop with this meme already. furshits, chrome, safari, and their derivatives aren't the only browsers available.

>>885003

>furshits, chrome, safari, and their derivatives aren't the only browsers available

if it doesn't implement common web standards then it's not a browser.

>>884911

>implying i said adblock+ was a good blocker

>fails to explain how ghostery is bad