Register a SA Forums Account here!
JOINING THE SA FORUMS WILL REMOVE THIS BIG AD, THE ANNOYING UNDERLINED ADS, AND STUPID INTERSTITIAL ADS!!!

You can: log in, read the tech support FAQ, or request your lost password. This dumb message (and those ads) will appear on every screen until you register! Get rid of this crap by registering your own SA Forums Account and joining roughly 150,000 Goons, for the one-time price of $9.95! We charge money because it costs us money per month for bills, and since we don't believe in showing ads to our users, we try to make the money back through forum registrations.
 
  • Post
  • Reply
Havana Affair
Apr 6, 2009


Firefox has been having trouble loading images recently for me. It loads most of them halfway or not at all and then just stops. After a few reloads it seems to sometimes load the whole page. Any ideas what's causing this? Bandwidth or memory shouldn't be an issue as far as I can tell. This is on desktop and it seems to work fine on mobile.

Adbot
ADBOT LOVES YOU

WattsvilleBlues
Jan 25, 2005

Every demon wants his pound of flesh

wooger posted:

IP.

Fingerprinting of your computer.

Some other dodgy workaround they’ve found for setting a cookie equivalent elsewhere in your system (used to be flash cookies).

Supercookies? I think the latest Firefox release blocks those? Or is there a setting in uBlock Origin that can be set? What about container tabs?

Storm One
Jan 12, 2011




Floss Finder

It's not as easy as you seem to think it is, check this out for a slight idea of what fingerprinting is: https://arkenfox.github.io/TZP/

BlankSystemDaemon
Mar 13, 2009

System Access Node Not Found



wooger posted:

IP.

Fingerprinting of your computer.

Some other dodgy workaround they’ve found for setting a cookie equivalent elsewhere in your system (used to be flash cookies).
IP fingerprinting isn't really reliable with how extensive carrier-grade NAT is (and it was common, even before we ran out of IPv4 addresses). IPv6 is a whole other can of worms.
Unfortunately, it's hard to get privacy taken seriously.

Powered Descent
Jul 13, 2008

We haven't had that spirit here since 1969.



There's a new thread in over IYG for personal IT security -- VPNs, browser fingerprinting, and all that good stuff. It's still just getting started, but a good place to let your tinfoil freak flag fly.

Privacy, security, and keeping yourself from being The Product - https://forums.somethingawful.com/showthread.php?threadid=3956403

Klyith
Aug 3, 2007

GBS Pledge Week


WattsvilleBlues posted:

How does a site track what I've done in Private Browsing? I know they can do that within the session but are they able to do that once the private session closes?

a) browser fingerprinting as mentioned
b) Advertisers are a lot less interested in what you do in private browsing than what you do the other 99% of the time. It's instructive to note that the only ads that run on porn sites are for more porn. Apple is going to put restrictions on cross site cookies in normal browsing, because your everyday life is what the adopticon wants to know every detail of.


I run ublock with 3rd party scripts blocked, and also Cookie Auto-delete which zaps cookies and localstorage for anything I don't whitelist. So don't take my rant as saying it's hopeless so don't even bother. I think it's worth the hassle just to say "gently caress you data collectors". But I also feel that there are many different degrees and conditions that fall under "privacy", and that the internet is also a public space where you may not have 100% privacy. (Like, I don't object to UK-style cctv of public spaces, though I want the institutions that use it improved to reduce abuse.)

Ayin
Jan 6, 2010

Have a great day.


Havana Affair posted:

Firefox has been having trouble loading images recently for me. It loads most of them halfway or not at all and then just stops. After a few reloads it seems to sometimes load the whole page. Any ideas what's causing this? Bandwidth or memory shouldn't be an issue as far as I can tell. This is on desktop and it seems to work fine on mobile.
Are you on wifi? Does it affect other programs? I had that same issue (affecting any internet-facing program on my PC, but not my phone) a few years ago and nothing helped except running a cable from the router to my computer.

Havana Affair
Apr 6, 2009


Ayin posted:

Are you on wifi? Does it affect other programs? I had that same issue (affecting any internet-facing program on my PC, but not my phone) a few years ago and nothing helped except running a cable from the router to my computer.

I am but have been for years and I don't remember this being problem until recently. I've had some similar issues with Steam loading the pages on store but haven't noticed it with anything else. Running a cable isn't really an option for me but I'll try to look into the wifi. The router is at least old as heck. Thanks!

Ayin
Jan 6, 2010

Have a great day.


Havana Affair posted:

I am but have been for years and I don't remember this being problem until recently.
This was also how it went for me. I hope you figure something out!

WattsvilleBlues
Jan 25, 2005

Every demon wants his pound of flesh

Klyith posted:

a) browser fingerprinting as mentioned
b) Advertisers are a lot less interested in what you do in private browsing than what you do the other 99% of the time. It's instructive to note that the only ads that run on porn sites are for more porn. Apple is going to put restrictions on cross site cookies in normal browsing, because your everyday life is what the adopticon wants to know every detail of.


I run ublock with 3rd party scripts blocked, and also Cookie Auto-delete which zaps cookies and localstorage for anything I don't whitelist. So don't take my rant as saying it's hopeless so don't even bother. I think it's worth the hassle just to say "gently caress you data collectors". But I also feel that there are many different degrees and conditions that fall under "privacy", and that the internet is also a public space where you may not have 100% privacy. (Like, I don't object to UK-style cctv of public spaces, though I want the institutions that use it improved to reduce abuse.)

Can you share those settings for uBlock please?

My concern isn't porn sites tracking me as I don't use them, it's everyone else tracking me.

Klyith
Aug 3, 2007

GBS Pledge Week


WattsvilleBlues posted:

Can you share those settings for uBlock please?

follow these steps and read the instructions for how dynamic filtering works. (also disable or uninstall noscript first, as this will make ublock into a replacement for noscript)

And then you just have to do the work of figuring out which 3rd-party sites are hosting JS that a page needs to have in order to load, and which ones are irrelevant. One tip I figured out: for some sites that have static content but lots of js (ex news sites), the first thing to try when the site breaks is locally block inline scripts. Then they don't run any js at all, and many fall back to giving you the plain content.



Cookie Auto-delete is here, and you want to go into the settings and enable indexeddb & localstorage cleanup. (If you use SALR, export a backup of your settings first. SALR uses localstorage for settings and checking that box would wipe it -- unless that's been fixed.) If you are even more , you can check other boxes. But those start to get into "theoretically people can track you by looking at cache", and in practice IMO you are handling that by blocking the scripts that might be doing that.

Again this is a whitelist type thing, you will need to put somethingawful.com on the whitelist for CAD to stay logged in, plus every other site you use.



Finally, multi-account containers is also a useful addition to the stack. The giant tech companies like amazon, google, and MS also operate clouds & CDNs -- those are a thing that you will need to whitelist frequently in ublock. (Big CDNs are where my laziness is more powerful than my privacy, and I globally whitelist stuff.) But you can at least keep your logged-in identity for big tech separate from your general browsing. When I interact with amazon to buy something or watch a show, it's a different amazon container.

WattsvilleBlues
Jan 25, 2005

Every demon wants his pound of flesh

Klyith posted:

follow these steps and read the instructions for how dynamic filtering works. (also disable or uninstall noscript first, as this will make ublock into a replacement for noscript)

And then you just have to do the work of figuring out which 3rd-party sites are hosting JS that a page needs to have in order to load, and which ones are irrelevant. One tip I figured out: for some sites that have static content but lots of js (ex news sites), the first thing to try when the site breaks is locally block inline scripts. Then they don't run any js at all, and many fall back to giving you the plain content.



Cookie Auto-delete is here, and you want to go into the settings and enable indexeddb & localstorage cleanup. (If you use SALR, export a backup of your settings first. SALR uses localstorage for settings and checking that box would wipe it -- unless that's been fixed.) If you are even more , you can check other boxes. But those start to get into "theoretically people can track you by looking at cache", and in practice IMO you are handling that by blocking the scripts that might be doing that.

Again this is a whitelist type thing, you will need to put somethingawful.com on the whitelist for CAD to stay logged in, plus every other site you use.



Finally, multi-account containers is also a useful addition to the stack. The giant tech companies like amazon, google, and MS also operate clouds & CDNs -- those are a thing that you will need to whitelist frequently in ublock. (Big CDNs are where my laziness is more powerful than my privacy, and I globally whitelist stuff.) But you can at least keep your logged-in identity for big tech separate from your general browsing. When I interact with amazon to buy something or watch a show, it's a different amazon container.

Thanks much!

Kassad
Nov 11, 2005

It's about time.


Are those two addons still useful with the additional cookie tracking protection added in 86?

Klyith
Aug 3, 2007

GBS Pledge Week


Kassad posted:

Are those two addons still useful with the additional cookie tracking protection added in 86?

Ublock: absolutely, stopping all the lovely JS from ad networks and crap from running is IMO always a good idea. Not just for blocking ads, not just for making sites load 10x faster, and not just for privacy. But also because ad networks have repeatedly been the distributors of malware when they don't bother to check the obfuscated JS that a rando 3rd party paid them to run as part of the ad.

Cookie auto-delete: still useful, no cookies is better than isolated cookies.

Multi-account containers: the new cookie protection does the same thing with less effort. MAC still useful for its intended purpose of having 2 accounts logged in simultaneously to something, but can be omitted as a privacy aid. (Or you might do something semi-privacy related like 1 container logged in to google and a different container not logged it that you use for youtube, if you wanted to reduce google's ability to explicitly combine your video history with your account.)


The other thing is that Moz's blurb on cookie isolation says it's turned on only when you use strict tracking protection. Strict mode regularly causes mild issues, for example I believe twitter embeds don't work on SA unless you turn off some of the strict options.

Kassad
Nov 11, 2005

It's about time.


Oh yeah I meant Cookie Autodelete and the containers, uBlock is clearly essential. And the tracking protection does mess up twitter embeds on the forums, but honestly that's it working as intended?

Adbot
ADBOT LOVES YOU

Im_Special
Jan 2, 2011

Look At This!!! WOW!
It's F*cking Nothing.


Klyith posted:

The other thing is that Moz's blurb on cookie isolation says it's turned on only when you use strict tracking protection. Strict mode regularly causes mild issues, for example I believe twitter embeds don't work on SA unless you turn off some of the strict options.

One way to get around that, to be able to use this new "Cookie Isolation" for "Custom" is to:

(1) In a new tab, type or paste about :config in the address bar and press Enter/Return. Click the button accepting the risk blah blah.
(2) In the search box in the page, type or paste cookie and pause while the list is filtered
(3) Double-click the network.cookie.cookieBehavior preference to display an editing field, and change the value to 5 then press Enter or click the blue check mark button to save the change.

That's the value assigned in Strict mode, and appears to reference the 6th item on this list:

https://searchfox.org/mozilla-release/source/toolkit/components/extensions/parent/ext-privacy.js#30

Note, that there is no entry in the select control for this on the Options/Preferences page under ETP - Custom, so any change to that control will override the manual setting. I'm also not sure you'd know it's working as intended or how you would test it.

  • 1
  • 2
  • 3
  • 4
  • 5
  • Post
  • Reply