Post ALdl4DR5OMI7Mprw2K by loveisgrief@mastodon.online
(DIR) More posts by loveisgrief@mastodon.online
(DIR) Post #ALcM9LllUVOPVXszYG by hankg@friendica.myportal.social
2022-07-18T11:52:43Z
3 likes, 21 repeats
This was predictable. Facebook/Meta is now encrypting the QP data so that Firefox and other privacy conscious browsers that strip the tracking data can't. Only way to avoid it is to not use Facebook at all. #DeleteFacebook #SurveillanceCapitalism https://www.ghacks.net/2022/07/17/facebook-has-started-to-encrypt-links-to-counter-privacy-improving-url-stripping/
(DIR) Post #ALcbFnX2gLqsf5X3Ls by progo@noagendasocial.com
2022-07-18T16:33:21Z
0 likes, 0 repeats
@hankg AES encryption has been basically free, computationally, for 15+ years. What took Facebook so long to do this? Didn't act until enough people were sanitizing their URLs?
(DIR) Post #ALcl9PoUx8tUu8IBOK by mangeurdenuage@shitposter.club
2022-07-18T18:24:11.200003Z
0 likes, 0 repeats
@hankg
(DIR) Post #ALcnH7QPP9ie69pFZI by neglesaks@mstdn.io
2022-07-18T18:48:03Z
0 likes, 0 repeats
@hankg Looking very much forward to when DSA kicks in so I can throw 'Meta' in the bin.
(DIR) Post #ALd6MSNIq5cdeNdE7U by TurdFerguson@noagendasocial.com
2022-07-18T22:21:55Z
0 likes, 0 repeats
@hankg does that change any apps that use apps that are using FB modules(?) in their apps?
(DIR) Post #ALd7nJDt4cRT2Uazmi by ilyess@mastodon.online
2022-07-18T12:25:51Z
0 likes, 0 repeats
@hankg Typical cat-and-mouse game. I predict this will go even further: we’ll see libraries for major web servers pop up that would handle query param encryption/decryption on the fly which will make this practice ubiquitous, rendering any existing URL-based tracking prevention irrelevant.
(DIR) Post #ALd7nJkr62oUgk1KAi by phel@toot.cafe
2022-07-18T21:54:39Z
0 likes, 0 repeats
@ilyess @hankg And those JS libraries will be blocked in the next step of the cat-and-mouse game!
(DIR) Post #ALd8SSUlVKhbfZ6zlA by wordsmith@writing.exchange
2022-07-18T21:57:12Z
0 likes, 0 repeats
@hankg "The only way to win is to cease playing"
(DIR) Post #ALdBK5v7qwWJCV93Kq by AIaYYAle4i1uKmKpqy.gme@bofh.social
2022-07-18T23:17:26.437101Z
0 likes, 0 repeats
(DIR) Post #ALdE0aKt0lP0kEd8AC by gudenau@mastodon.technology
2022-07-18T21:47:33Z
0 likes, 0 repeats
@hankg There are some other websites that mandate a valid hash, it still lets you see stuff but most of it doesn't mean anything to the outside world anyway.
(DIR) Post #ALdEXZBiIgAUjz4BHc by horsebatteryhealth@mastodon.online
2022-07-18T21:50:13Z
1 likes, 0 repeats
@hankg Furthermore, I believe that Meta must be destroyed.
(DIR) Post #ALdFtAE3tCh7eB1k1Y by ilyess@mastodon.online
2022-07-18T22:40:20Z
0 likes, 0 repeats
@hankg @phel Those libraries are most likely going to be on the server side so this might be the last round of the game, sadly.
(DIR) Post #ALdGubqglzVpYuLclk by ash@manx.social
2022-07-18T22:54:45Z
1 likes, 0 repeats
@hankg this is 100% why Mastodon needs to exist.
(DIR) Post #ALdK1HPRSrp03lTXou by Karen5Lund@mastodon.social
2022-07-18T23:33:03Z
0 likes, 0 repeats
@hankg #FacebookIsMalware
(DIR) Post #ALdL7kd1qDziNBTpqq by pricklyheart@mastodon.social
2022-07-18T23:58:45Z
0 likes, 0 repeats
@hankg Many years ago I was visiting a beach in Florida and saw some girls acting stupid in front of a camera. I asked what they were doing and the answer was how they were on this new thing called Facebook and it was only for students, like how lame could an old guy like me possibly be to not know about it? Avoided it ever since...I get the schadenfreude point, but I wouldn't date anyone with a FB account, and try to avoid their users in real life. Who needs serial confessors?
(DIR) Post #ALdLgKRTC4fxICYsUq by MrManor@social.data.coop
2022-07-19T00:27:38Z
1 likes, 0 repeats
@hankg I guess the only possible defense is to let the browser pop up a big fat warning whenever handling a facebook link. On the source side whenever a user copies a link, a popup should explain what you are targeting your friends with. And the receiving side, a browser should present a warning before opening a Meta link (like most mua's does with external links in mail content)
(DIR) Post #ALdcGCPU8H9O4bl94C by StrayGuitarist@mastodon.lol
2022-07-19T04:17:50Z
0 likes, 0 repeats
@hankg Sweet, my decade-long constant avoiding of anything tied to FB at all has paid off!
(DIR) Post #ALdjInNIMwKCyXv7Gy by OurMasterPax@mastodon.social
2022-07-19T05:35:41Z
1 likes, 0 repeats
@hankg #Facebook died back in 2018 & will forever be a ghost of its former self. The people involved became very #Sick. Voyeurism was their drug of choice. Once they figured out how to manipulate people by directing their attentions, they began playing games with real #Minds. They manipulated #Stocks, used #INTELLECTUALPROPERTY to have hostile takeovers. They did terrible things to good people. Guess who got #Rich due to Bribes? The Politicians, the thieves, & you got #Covid19.
(DIR) Post #ALdl4DR5OMI7Mprw2K by loveisgrief@mastodon.online
2022-07-19T05:56:50Z
0 likes, 0 repeats
@hankg I bet Google will start doing it too. Fuck all of them. I don't use Facebook at all. If I have to open their links, it's done in TOR browser 🤷♂️It would be just great if more people stopped using their products altogether, but that's like wishing people had enough conviction to do anything about climate change.It just won't happen
(DIR) Post #ALdteRQJfAVeo7IG6i by Goldmaster@mastodon.social
2022-07-19T07:33:14Z
0 likes, 0 repeats
@hankg throw in the fact unlock origin doesn't work and no support system in place for when the trademarking system doesn't work and you sure have a dumpster fire.
(DIR) Post #ALeBID6C2UIzBVQjgW by scotty@social.agb-web.de
2022-07-19T08:05:51Z
1 likes, 0 repeats
@hankg I'm enjoying a wonderfull calm life w/o Facebook or Twitter. And I'm sure, I'll miss NOTHING! :-)
(DIR) Post #ALeBIDc67rpGmSMDPk by loveisgrief@mastodon.online
2022-07-19T10:03:02Z
0 likes, 0 repeats
@scotty at least nothing of value
(DIR) Post #ALeLPZ4ziGfWvQ0zw0 by gigantos@s.gigantos.net
2022-07-18T22:07:33Z
1 likes, 0 repeats
@ilyess@hankgAs I understood it the blob is encrypted by the server. If done properly there is nothing the client can do. It would be like decrypting a pgp encrypted document.However, it is plausible for a script to get the URL from the link text (if they display that), but unfortunately you likely won't see the entire url that way unless it is short.
(DIR) Post #ALeLPZZ7uEluQs73tw by ilyess@mastodon.online
2022-07-18T22:39:01Z
0 likes, 0 repeats
@gigantos @hankg Yes, it’s done server-side. The library would handle the encryption/decryption so that the web server can continue accessing the query params as if they were in plain text. If done well, it could be a plug-and-play middleware type of deal.
(DIR) Post #ALeLPa2u7WahvE2qJc by papertape@tech.lgbt
2022-07-19T12:44:10Z
0 likes, 0 repeats
@ilyess @gigantos @hankg would this then become a #DCMA issue and #Facebook / #Meta could sue?
(DIR) Post #ALeSW4vQvJKj6rb0t6 by AngharadHafod@toot.wales
2022-07-19T14:02:34Z
1 likes, 0 repeats
@hankg that's ok. Don't use Facebook.
(DIR) Post #ALed5gyOSC20n1bKrI by suetanvil@mastodon.technology
2022-07-18T12:30:21Z
0 likes, 0 repeats
@hankg At least they're not being subtle about it.
(DIR) Post #ALed5hTaaCz8LmCFU0 by hankg@friendica.myportal.social
2022-07-18T12:37:29Z
0 likes, 0 repeats
Yeah to end users it looks no different than the other jumble of characters at the end of links. I can't even manually clean up Facebook links. Craziness.
(DIR) Post #ALed5ht73JOxcw8dGa by suetanvil@mastodon.technology
2022-07-18T12:53:50Z
1 likes, 0 repeats
@hankg What I meant was that before this, they could have spun this as "sure, we track you, but we let you opt out by (among other things) making it possible for your client to strip the fluff off of the URL." You know, the whole "technically, you consented" you get from all kinds of adware.But now, they're completely clear in their intent.
(DIR) Post #ALed9jbMcfkY6HkzJI by shortwavesurfer2009@cheeseburger.social
2022-07-18T13:56:08Z
1 likes, 0 repeats
@hankg doubt they do anything. But https://github.com/mozilla-mobile/fenix/issues/26064
(DIR) Post #ALedTNK7A7fMnV3PWa by dflag84@fosstodon.org
2022-07-18T17:30:21Z
1 likes, 0 repeats
@hankg Holy crap! That is BAD! Good thing I don't use it!
(DIR) Post #ALedY426JNAEPtrdLc by dynamic@cybre.space
2022-07-18T18:19:26Z
1 likes, 0 repeats
@hankg I don't really use Facebook either, but it sounds like maybe you can also avoid this by never clicking on outgoing links from Facebook?(Evil regardless, but it would be useful to have an idea of whether I'll be taking risks if I occasionally log on to message somebody about a party invitation they sent me or something like that.)
(DIR) Post #ALedd8NZZyufLQKDPU by hankg@friendica.myportal.social
2022-07-19T16:02:57Z
0 likes, 0 repeats
Good question I'm not sure.
(DIR) Post #ALedpU74bCrIE4Ur2W by hankg@friendica.myportal.social
2022-07-19T16:03:19Z
0 likes, 0 repeats
Yup and the rest of the Fediverse, indeed :)
(DIR) Post #ALgLmWbNTnkSDX1vua by maxi@todon.eu
2022-07-20T11:58:13Z
1 likes, 0 repeats
@hankg Haha, Fakebook's response is even more ridiculous:> "We changed the ID component of these URLs as a privacy measure [!!SIC!!] intended to deter scrapers from collecting and potentially misusing people's Facebook IDs. These modified IDs aren't used to track people [SIC], and have not been designed to prevent browser tools from removing tracking components from the URL." - a Meta [SIC] spokesperson"The IDs aren't used for tracking [SIC]" is a contemporary iteration of "Nobody has any intention of building a wall [SIC]".
(DIR) Post #ALgNJ3hk2YLI6W5H2e by hankg@friendica.myportal.social
2022-07-20T12:14:57Z
0 likes, 0 repeats
LOL as if no one knew what the purpose of the old IDs were.
(DIR) Post #ALgNkMwqbJNPbdAk8O by maxi@todon.eu
2022-07-20T12:19:02Z
1 likes, 0 repeats
@hankg Yeah, the statement either(A) denies that the IDs were previously used for tracking, or(B) implies that the tracking IDs are not any more part of the encrypted new IDs.I guess we will have a proof for (not B) quite soon. For now, there's no reason to assume that tracking is not included in the encrypted ID.
(DIR) Post #ALjeKWWimZhnQ540sy by whoisrbkn@mastodon.social
2022-07-22T02:10:04Z
1 likes, 0 repeats
@hankg What’s Face’s book?