@werwolf in my brave I have uBO and privacybadger installed, and disabled all the coinswhatever nonsense.
Brave is a single browser that randomizes bunch of JS APIs that actually used for fingerprinting.
So it’s effectively all good parts of chrome, plus extra api randomization, minus FloC and google altogether.
@krom I achieve that with CanvasBlocker https://addons.mozilla.org/es/firefox/addon/canvasblocker/
Anyway, you can't mitigate Brave's privacy issues with uBlock and Privacy Badger.
And if you've read the article, you should know that uBlock (and Privacy Badger, which are redundant BTW) will stop working on Chromium soon.
Even if they found a workaround, you'll still have the problem with chromium being developed by Google. So no a real option.
@evanarkisto_hz it's based on Firefox ESR so it should be okay. It also has the safest defaults.
If you look at their git repository, there are recent commits, which aims to update to the newest ESR version. So it's being developed.
Anyway, I recommend using hardened Firefox over Icecat since it's more frequently updated.
@werwolf OK, you've convinced me. I've been using in parallel firefox, brave and safari. Now I'll exclude brave and see if I miss it.
Latest firefox UI update makes me want to use it more :D
@werwolf a good read, but I'm lacking alternatives on mobile devices. I'm using Brave with Blokada in the background and that's been ok for me so far.
@ttntm I'd recommend Fennec F-Droid or Mull (both of them Firefox based).
But if you need something chromium based, although I hate chromium, Bromite is much better than Brave in terms of privacy
@menelkir I missed this fact. Do you have any source?
I guess that I could try to get the connections to the servers myself but I don't want to install Brave
@werwolf I can't find a source, but I remember my pi-hole having hits on an url related to this service, not sure if still a thing since I didn't use it further because I had my concerns (and I was right)
@menelkir I guess that you don't still have those pihole logs, because that would be great.
Anyway, thanks. I'll try to get something to proof it so I can add it to the article.
@werwolf Thank you for this writeup. Chromium does have a couple of more advantages over Firefox - at least when it comes to exploit migitations. Not just SSI.
But don't be fooled. Chromium itself is still intertwined with the EvilCorp. Most forks (Brave, Vivaldi, etc) are severly outdated or disable security feats.
The two forks I (personally) deem acceptable: Ungoogled Chromium and Bromite.
Security can 'enforce' privacy _if_ done properly.
/just my 2 cents.
@werwolf Also, Firefox ism't the holy grail (no browser is) - they are in bed with Google. I don't have any problem with accepting donations, but Firefox goes much further. Default search engine, 'Google Safe Browsing' enabled by default etc.
@h3artbl33d yeah, I have a guide about how to mitigate Firefox's issues.
However, as you can see, on Brave you can't. There are a lot of issues that can't be disabled at all. Well, you could if you took the time to read the code and change those.
For me, not using Google's software is fundamental.
@werwolf @Mojeek Note as well that #Brave collects charity money without telling the beneficiary: https://lowkey.party/objects/33550868-a270-42eb-b613-c504730127aa Might want to add that to your article.
@txusinho @jb @Mojeek @werwolf the best search engine for privacy, for expert users, is Ss: https://sercxi.nnpaefp7pkadbxxkhz2agtbv2a4g5sgo2fbmv3i7czaua354334uqqad.onion/ For novice users, there are a few decent searx instances (metasearch.nl, openworlds.info, search.disroot.org) as well as #mojeek & #gigablast. None of the choices I mentioned feed the tech giants.
@Bmz @txusinho @jb @Mojeek @werwolf Ss is the only search engine in the world that filters out #Cloudflare sites, which is essential to Tor users not using Tor Browser, & important to anyone who values privacy. Someone else told me they couldn't reach it with Tor Browser but I have no idea why. It works for me as long as I'm using a version that supports onion v3.
@werwolf @Mojeek @jb @txusinho @Bmz There is a clearnet-only link to Ss: https://sercxi.eu.org/ I've not used it, and I've heard someone say that doesn't work either. The only other thing to perhaps try is to add a ".to" to the end (*onion.to is an [insecure] bridge from clearnet to tor). Or maybe try booting a recent Tails Live OS.
@Bmz @txusinho @jb @Mojeek @werwolf if you can get it working, another cool feature of Ss is that non-Cloudflare sites that directly block Tor are listed with a strikethrough, so you can avoid them or you can click the favicon to visit an archive mirror of those sites. I hope Mojeek is listening so they can consider introducing the same features.
@Mojeek @werwolf I saw your #Ratpoison article (https://ebin.city/~werwolf/posts/ratpoison/). I was recently considering installing it, but found maintenance has stopped some time ago.. that it's a dying wm. I suppose if you've been happily running it, there is no reason to jump ship but the days may be numbered. I'll be steering clear of it since it's a dormant project.
@bufordk @werwolf @Mojeek I suggest #UngoogledChromium if you want something Chromium based (which the use of Brave implies). I wouldn't trust #Brave in light of them collecting donations without telling the so-called beneficiaries, & whitelisting Twitter ads. Note that ungoogled chromium is is a cocktail of mods that they see on other chromium forks like Brave.
@Mojeek @werwolf i installed #ratpoison and quite liked it. But it looks like i have to ditch it since it doesn't do well with dual displays. The default resolution was lower than the native resolution of my LCD. When I increase it in xorg configs, the two frames overlap and mirror part of the other frame. So I guess i'll have to move to #sway
@werwolf Just read through this. Disappointed to find so much wrong with Brave. Back to Firefox I go!
@werwolf there are some webkit browsers that aren't in bed with Google, epiphany being a pretty decent one.
@werwolf Some claims are far-fetched and you seem to conveniently avoid mentioning that Firefox is made with Google's money (and they happily take it). Firefox has repeatedly injected ads before without asking their users, and included proprietary extensions like Pocket. Let's not pretend Firefox is the privacy champion either, it's all relative.
@boilingsteam the article is about Brave and not about Firefox. I could surely do a similar one with Firefox's issues. But this one was about Brave
@werwolf why are you continuing to post this when it’s been so debunked that you had to add a disclaimer at the top admitting that you’re wrong and that you didn’t check your facts?
@mostly_linux I'm not posting it. It's other people who boost it. That's why I added the disclaimer, that way even if it continues to be shared everyone who read it will be warned
@werwolf gotcha. I suspect that given the nature of the fediverse that those people boosting it are in reality marketing agencies for Google, Microsoft, Facebook or Firefox (which is in bed with Google) 😂
Fosstodon is an English speaking Mastodon instance that is open to anyone who is interested in technology; particularly free & open source software.