Post 9jzsMikrf2IB2snbfc by matt@aus.social
(DIR) More posts by matt@aus.social
(DIR) Post #9jyDgZ8gpaKRjgKMQy by dredmorbius@mastodon.cloud
2019-06-18T11:53:04Z
1 likes, 0 repeats
My current policy for "Cookie Consent" dialogues:1. Fire up uMatrix and globally block cookies for domain.2. Fire up uBlock Origin to block element on page.3. Self-Destructing Cookies for edge case motherfuckers.Remember, boys and girls and all that lieth betwixt and beyond: FIRST pillage THEN burn!#privacy #firefox #uBlockOrigin #uMatrix #SelfDestructingCookies #GDPR
(DIR) Post #9jyEM1pR4LZQaU5mro by dredmorbius@mastodon.cloud
2019-06-18T12:00:33Z
0 likes, 0 repeats
Extensions featured in this thread:uMatrix:https://addons.mozilla.org/en-US/firefox/addon/umatrix/?src=searchuBlock Origin:https://addons.mozilla.org/en-US/firefox/addon/ublock-origin/?src=searchSelf-destructing Cookies:https://addons.mozilla.org/en-US/firefox/addon/self-destructing-cookies-webex/And of course, Firefox:https://www.mozilla.org/en-US/firefox/new/
(DIR) Post #9jyErVQR4xPvMDPNuC by dredmorbius@mastodon.cloud
2019-06-18T12:06:15Z
0 likes, 0 repeats
Keep in mind that blocking *all* cookies may (though very often does not) limit site features.You've nothing to lose by trying this. Self-destructing Cookies offers a fallback by deleting all cookies shortly after closing a tab (15 seconds by default, you can up this to a few minutes for more continuity).You WILL need to SPECIFICALLY WHITELIST sites you have accounts with, including financial, shopping, SAAS, social media, and similar sites.Set up 2FA for these while you're at it.
(DIR) Post #9jyFsdlLfNm9SVILtw by grainloom@cybre.space
2019-06-18T12:17:38Z
0 likes, 0 repeats
@dredmorbius i mean, you don't really have to... only if you want to keep them logged ini have a google account, that doesn't mean i have to keep it logged in
(DIR) Post #9jyFw4a2PqHzV6dpLM by dredmorbius@mastodon.cloud
2019-06-18T12:18:17Z
0 likes, 0 repeats
You can also use Firefox Multi-Account Containers to segregate activities, or sites, into individual boxes. These are isolated from one another and minimise data-sharing across browser activity.Firefox has activity-based containers by default. I prefer site-specific segmentation. So, Google, Amazon, your bank and bil-pay services INDIVIDUALLY get their OWN containers.What happens in Vegas stays in Vegas. And there's more ...https://addons.mozilla.org/en-US/firefox/addon/multi-account-containers/
(DIR) Post #9jyGEpZYRFw8SOMMYS by dredmorbius@mastodon.cloud
2019-06-18T12:21:40Z
0 likes, 0 repeats
You don't have to keep all Google activity iin one container -- you can split out, say, Google.com and Youtube.com.You can also have account-specific containers for a site; say, reddit-goldposter and reddit-shitposter, as an example.Multi-Account containers is hugely powerful. I'm only scratching the surface and welcome suggestions.
(DIR) Post #9jyGWXPahMNZLS8uSu by dredmorbius@mastodon.cloud
2019-06-18T12:24:52Z
0 likes, 0 repeats
@grainloom Google (and other sites & domains) use and retain cookies even (and/or especially) when not logged in. MAC devalues this.
(DIR) Post #9jyH5s1w20JJQYvSHQ by dredmorbius@mastodon.cloud
2019-06-18T12:31:15Z
0 likes, 0 repeats
DecentralaEyes is another interesting proposition:Websites have increasingly begun to rely much more on large third-parties for content delivery. Canceling requests for ads or trackers is usually without issue, however blocking actual content, not unexpectedly, breaks pages. The aim of this add-on is to cut out the middleman by providing lightning speed delivery of local (bundled) files to improve online privacy.https://addons.mozilla.org/en-US/firefox/addon/decentraleyes/
(DIR) Post #9jyItMmiZiioxFyPpI by dredmorbius@mastodon.cloud
2019-06-18T12:51:24Z
0 likes, 0 repeats
Decentraleyes FAQ:https://git.synz.io/Synzvato/decentraleyes/wikis/Frequently-Asked-Questions
(DIR) Post #9jyLL5IrMfJSklLto0 by mplouffe@scholar.social
2019-06-18T13:18:48Z
0 likes, 0 repeats
@dredmorbius I like this. My practice for as long as I can remember has been basically to close the browser and clear cache every time I change sites/activities.
(DIR) Post #9jyLQr2FKEk0EuKgc4 by mplouffe@scholar.social
2019-06-18T13:19:52Z
0 likes, 0 repeats
@dredmorbius No Canvas Blocker? Or does uMatrix cover that?
(DIR) Post #9jyLgEDXPv1sTtwf1U by galaxis@mastodon.infra.de
2019-06-18T13:22:37Z
0 likes, 0 repeats
@dredmorbius I currently prefer Cookie AutoDelete to the reimplemented Self-destructing Cookies: https://addons.mozilla.org/en-US/firefox/addon/cookie-autodelete/CAD also supports LocalStorage cleanup (with some limitations when combined with MultiAccount Containers).
(DIR) Post #9jyRF650AF0l9IOlHc by noctiluca@scholar.social
2019-06-18T14:24:57Z
0 likes, 0 repeats
@dredmorbius ooh, didn't know uBlock could do that :D
(DIR) Post #9jyWkbZDe0oBYMNMQq by dredmorbius@mastodon.cloud
2019-06-18T15:26:40Z
0 likes, 0 repeats
@noctiluca It's not as nuanced as using Stylus, but it's way faster.
(DIR) Post #9jyWzU023w5oQW0nEO by dredmorbius@mastodon.cloud
2019-06-18T15:29:23Z
0 likes, 0 repeats
@mplouffe Fair suggestion. Definitely add that to the list.
(DIR) Post #9jyXPNr1X78yte9H9s by dredmorbius@mastodon.cloud
2019-06-18T15:34:04Z
0 likes, 0 repeats
@mplouffe Firefox's recent developments have hugely improved on the convenience factor of doing this.
(DIR) Post #9jyfh3KxLz186q5Mmm by mplouffe@scholar.social
2019-06-18T17:06:52Z
0 likes, 0 repeats
@dredmorbius I'm curious about uMatrix - what led you to choose that over NoScript?As background, I use uMatrix in Vivaldi and didn't know it could be had in Firefox, where I've used NoScript to different extents for ages.
(DIR) Post #9jywhJtNV4hEfutoEi by dredmorbius@mastodon.cloud
2019-06-18T20:17:25Z
0 likes, 0 repeats
@mplouffe uMatrix is far more flexible and powerful than NoScript. You can apply uMatrix to JS, CSS, cookies, iframes, XHR, and/or media, on any domain or host a page references, as well as set default rules (block or allow).The trade-off is that uMatrix is also far more fiddly, and it can take multiple rounds of enabling more elements & reloading to get a site to work ... until it's changed yet again.Both are useful. I prefer the power and can stand fiddly.
(DIR) Post #9jzBEafdXR1pcvEMGe by mplouffe@scholar.social
2019-06-18T23:00:17Z
0 likes, 0 repeats
@dredmorbius Sounds like it's time for me to switch!
(DIR) Post #9jzsMikrf2IB2snbfc by matt@aus.social
2019-06-19T07:03:34Z
0 likes, 0 repeats
@dredmorbius One of my favourite Firefox features.
(DIR) Post #9jztiK3WGvrWleOBpQ by alexcleac@mastodon.technology
2019-06-19T07:18:41Z
0 likes, 0 repeats
@dredmorbius I have been not much a happy with it, because it increases the resources usage of firefox a lot. I was using it to distinguish my online identities - and it felt a bit too hard for my laptop to work fast and well :( Also, I container tabs are non-existent on mobile firefox
(DIR) Post #9o4SS9pSs2SK7IHkdU by aktivismoEstasMiaLuo@activism.openworlds.info
2019-10-19T03:35:09Z
0 likes, 0 repeats
@dredmorbius Considering your distaste for cookie nags, #CAPTCHA, & other such junk, it's a surprise you are using a #CloudFlare-jailed mastodon instance. #Tor users can't expand pics you post. It's really a bad idea to #centralize a federated node in a walled garden. I suppose you're a bit trapped there now that you have 1.4k followers.
(DIR) Post #9o4xOnY8LWAMjD3ar2 by dredmorbius@mastodon.cloud
2019-10-19T09:21:57Z
0 likes, 0 repeats
@aktivismoEstasMiaLuo Alternatives?Also: the 1.4k followers don't automatically migrate.
(DIR) Post #9o5EtJarTDBC1FTDMG by aktivismoEstasMiaLuo@activism.openworlds.info
2019-10-19T12:37:54Z
0 likes, 0 repeats
@dredmorbius A gratis #CloudFlare alternative is #Netlify, which is also problematic b/c it uses #amazon aws. CF is much more evil though due to #netneutrality abuses & pushing ppl off #Tor. A non-gratis alternative is #perimeterX.regarding followers, indeed that's what I was saying. It's a shame #mastodon has no /change of address/ mechanism. Nodes go up and down all the time & we expect the nature of #decentralization to accommodate. It's a #bug imo.
(DIR) Post #9oja65V5Vue5Z7QI52 by pavi@social.masto.host
2019-11-07T23:44:00Z
0 likes, 0 repeats
@dredmorbius You know what the american sites are doing after #GDPR they make you enable JS so that they can show that accept cookies popup, then only give you access to their web page. 👎
(DIR) Post #9ojdOIrWsAXc58IULY by dredmorbius@mastodon.cloud
2019-11-08T00:20:54Z
0 likes, 0 repeats
@pavi Fuck 'em.Also: That's a GDPR violation AFAIU.