It would be interesting to compare 3rd party trackers used on government websites across countries.
Went to check the air quality at https://www.airnow.gov/ and saw an attempted connection to https://www.googletagmanager.com. Looking at a few more, Google is able to track users across
https://send.firefox.com is dead.
“Firefox Send was a promising tool for encrypted file sharing... Unfortunately, some abusive users were beginning to use Send to ship malware and conduct spear phishing attacks. This summer we took Firefox Send offline to address this challenge.
In the intervening period, as we weighed the cost of our overall portfolio and strategic focus, we made the decision not to relaunch the service.”
“Apple granted the FBI access to the iCloud account of a protester accused of setting police cars on fire in #Seattle this summer, according to court documents.”
TIL Cookie AutoDelete  silently breaks when Chromium is launched with the "--disable-reading-from-canvas" flag .
Added a new column to my search engine comparison table for IP address sharing.
Noticed that some engines say they don't log your IP address but then go around and share it to retrieve search results or advertisements which isn't very clear to end users (calling you out, https://www.ekoru.org/privacy).
> Camp [senior vice president of Firefox at Mozilla]: “We have this advantage of we don’t have to serve everyone,” he said. “Because we are a smaller, independent player, we can do things that serve the right set of users, without needing to feed a giant search monopoly.”
> “Monopoly’s the wrong word,” Camp said, correcting himself instantly, but also failing to find an alternative.
Huh, Swisscows is working on a VPN and apparently now a "WhatsApp alternative."
Still won't take them seriously due to their forced, over-filtering of search results, and endorsing the drivel of a psychotherapeutic
counselor in their marketing.
FYI from gorhill (maintainer of uBlock Origin) regarding DuckDuckGo's Privacy Essentials web extension (https://addons.mozilla.org/en-US/firefox/addon/duckduckgo-for-firefox/):
> Regarding 3rd-party exposure, I find that uBO protects you better... For instance, while DDG reports that ad.doubleclick\.net was blocked on CNBC, the network pane reports that not ALL requests to ad.doubleclick\.net were blocked, and as a result, ad.doubleclick\.net still gets to know which page you are visiting. - https://nitter.snopyta.org/gorhill/status/1273263804911140865
"Here's a little weekend project dedicated to digital security trainers. If you are doing phishing education, you can use this resource to mimic real phishing sites from a dataset of tens of thousands, updated daily."
From Security Without Borders: https://nitter.snopyta.org/botherder/status/1282443186363932672
"If you have uBlock or similar, it appears medium logs all analytics pings into HTML5 LocalStorage and will keep retrying to send them (and apparently periodically change domains and subdomains to try and send them).
I had tens of thousands of entries in localStorage, wasting quite a bit of space, all of them at least 400-600 characters or more. Each time I scrolled it'd add a few dozen more in, to the point where devtools was freezing. Ridiculous."
Found an interesting ad block test page (https://rednoise.org/adntest/googleAdSenseCases.html). If you want to self-host it or view the code, you can find it here:
Oh neat, Blokada provides a hosts file parsed from DuckDuckGo's Tracker Radar data set which you can use with Pi-hole/uBlock Origin/AdGuard/etc.
> Mozilla and Google are expected to extend their current search deal for another three years, multiple sources have told ZDNet.
> The new search deal will ensure Google remains the default search engine provider inside the Firefox browser until 2023 at an estimated price tag of around $400 million to $450 million per year.
Yael Grauer recently updated her excellent research piece, “The Best VPN Service.”
> Mullvad is our new pick because it’s inexpensive, fast, easy to use, and designed to work across devices. IVPN is our new runner-up.
ProtonVPN is keeping servers in Hong Kong for now.
“...we think that preemptively abandoning Hong Kong to its fate without even a symbolic resistance sends the wrong message to authoritarian governments around the world that would seek to deny people their fundamental rights.”
Some VPN providers are removing their Hong Kong servers due to China’s new national security law.
- TunnelBear: https://www.tunnelbear.com/blog/tunnelbear-removes-hong-kong-servers-to-safeguard-vpn-network-infrastructure/
- PIA: https://www.privateinternetaccess.com/blog/private-internet-access-shuts-down-vpn-servers-in-hong-kong-due-to-new-national-security-law/
- AirVPN: https://airvpn.org/forums/topic/46904-servers-withdrawal-announcement-hong-kong-hk/
anarchist, privacy advocate, & software developer • he/they • ACAB • #nobot
Personal instance of nitrohorse (nitrohorse.com).