this post was submitted on 06 Oct 2023
3 points (71.4% liked)
Privacy
31182 readers
1812 users here now
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
- Don't promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
Chat rooms
-
[Matrix/Element]Dead
much thanks to @gary_host_laptop for the logo design :)
founded 4 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Anyoneserioius about privacy should not be using a chromium browser, and should definitely not be using brave.
Firefox is safer and tbh, has probably the best UX and aesthetics out of anyone. Brave is garbage.
For incognito browsing I recommend Librewolf, a firefox fork. If you want anything more secure, you should start looking into tor
safer?
Brave is just a shill for Google mothership. Firefox is leading privacy and security through browsers.
Firefox has a weaker sandbox than chromium and less mature site isolation and therefore has lower security. privacy is a different story, but remember you're only as private as you are secure so Firefox is inherently not that private assuming a malicious site escapes the sandbox.
I'm fully against chrome's growing monopoly as well as Google surveillance capitalism but let's not be so dramatic with the "google mother ship" nonsense.
using chromium as a base does not equal data being sent back to Google, just like using Android as a base doesn't inherently send data back to Google.
Source: madaidan
Anything you say is as informative and coherent as a baby's babble, if you believe him or any of the closed source shilling "security zealots" in FOSS community.
what the fuck are you even talking about my guy? do I have to say "oh I use Firefox btw" for you to decide to not be a brick wall?
As a Firefox user, the only thing Brave does that I wish Firefox would copy is their fingerprinting resistance. I know Firefox does have fingerprinting resistance but it's nowhere near the same level as Brave.
No. Firefox with RFP, Arkenfox user.js, Librewolf or Tor-Browser unifies your fingerprint. Its universal among users. Brave scrambles it, while some may say that is actually not a real fingerprint and can be detected, making you stand out extremely
Just to be clear, are you saying Firefox with fingerprinting resistance used in conjunction with Arkenfox user.js provides fingerprint unification, similar to what Tor browser does? I'll have to check that out.
I think both approaches are valid tbh. Having a unique fingerprint obviously uniquely identified you, but if it's randomised then your browsing sessions can't (in theory) be linked.
Yes. Arkenfox to my knowledge is 1:1 Tor configs. Librewolf is similar to arkenfox, no real differences afaik.
For regular browsing though, this means that everything is always deleted. So if you may change some configs, you mayyy be fingerprintable.
Good thing though, different from Tor-Browser is, that it deletes everything without using the private browsing mode. This means, that it has way more capabilities, and saving session for example has no fingerprinting effect really, as favicons and cache can be cleared.
The problem with randomized UserAgent is afaik, that in firefox it cant really fake a complete, real browser, fonts and all. So it would be very nice 90% of the time, but big tracking sites would know exactly who you are
You are fingerprintable either way unless you go all out. Going full on Arkenfox/Librewolf mode (with all settings enabled that decrease convenience) you can at most fool naive fingerprinting. For the more advanced one you need Tor.
And even for naive fingerprinting, unless you use Tor or a VPN (which you would have to trust) your IP alone + the fact that you use FF (which a few % of people worldwide do) along with some other basic info about your PC will make you very unique.
A good VPN is a must of course.
The Chameleon extension could solve some of the fingerprinting issues as it can randomize the browser and OS info that is sent.
I disagree. Firefox is fine, but saying chromium is spyware because its primarily maintained by google is like saying android is spyware.
Additionally chromium browsers are arguably more secure than Firefox, and has more advanced sand boxing. So much so that graphine OS used chromium instead of Firefox for their vanadium browser.
Only thing I agree with is not using brave.. Cause well.. They fishy.
android is spyware
Those who don't know about it go and read GNU replicantOS blog and wikipedia page
Android is not a single OS (?)
It is. Custom roms modify very little of the code and they are all based on aosp(it is open source but google controlls the changes). The whole point of aosp is to create the illusion of choice but if you really want to avoid using google spyware you have to give up on most apps or go to extreme lenghts to use an alternative. The grapheneos project is really cool and usefull but it only patches the inherent (intended)problems of android and doesnt provide a real solution.
I'm unsure you have any idea what you're talking about.
And I'm sure you only use twofish because the NSA backdoored AES when they standardized it.
what does it have to do with Google's business model being mass-surveillance, and/or them being caught several times collaborating with the NSA, the US army, etc.?
I agree that the NSA backdooring stuff is a problem too... (or even a different facet of the same problem...) Yet, one doesn't invalidate the other...
I'm just saying that collaboration with or association with spooks or glowies isn't in itself a red flag.
Many privacy and freedom granting software is made by these people.
Take Tor for example, made by the navy to hide information from the public and anonymously attack networks of adversaries.. Yet now is the NSA's biggest obstacle in mass surveillance.
I beg to disagree: the global interception capacities of the NSA in 2012 (as showed in the very few 2013 documents from Ed. Snowden that were made public) clearly were enough to routinely de-anonymize tor. By owning a certain percentage of the global internet traffic, you de facto own tor (can very precisely correlate what comes in and what goes out, and do that retrospectively when needed).
and that was 10+ years aog....
Association with spooks is a red flag, for the multiple, endless ways they have been doing their shitfuckery, endangering the general public, the exceptional US citizens, and information/communication security at large... by weakening standards, by corrupting corporations to introduce (or leave open) some bugs, by infiltrating development teams, by pressuring operators to grant full access, by breaking and entering, etc..
Anyone who doesnt see that as a problem has to be considered as part of it. Simple, basic rule.
...no? AOSP is very well free of Google code, and if Android is spyware, then Linux might as well be spyware, going by this logic. And even with GMS installed phones, it is very easy to disable and neuter GMS with a computer and 15 minutes of time. At best, Android has Google DNS as default unless you set a different one in Private DNS or with your firewall, which is also true for systemd's network checks in Linux distros.
Western corporations working on collaborative FOSS products cannot be treated in the same way as closed source products. Any analysis of type of malware capabilities must be based on technical merit analysis, and not feelings, even if Western Big Tech does disgusting things.
@themoonisacheese If you think so 🤷♂️
Ungoogled Chromium would be an exception in my book. I am pretty principled.