a thoughtful web.
Good ideas and conversation. No ads, no tracking.   Login or Take a Tour!
comment by bluFox
bluFox  ·  3519 days ago  ·  link  ·    ·  parent  ·  post: ​Your Porn Is Watching You

Being fingerprinted is a problem that has not received wide attention. Unfortunately there are very few guides as to how to avoid it. Here are a few ways you can avoid being fingerprinted by porn (or ad companies for that matter) in decreasing order of identifying bits (at the very least ).

- If nothing else, always use incognito or private mode (It reduces the plugins that are active, and removes some bits from your unique fingerprint)

- Use a different browser entirely for porn or other private things

- Get in the habit of using a virtual machine for your private browsing.

- Use an anonymizing proxy, or a separate VPN for private things than the one you use for your other browsing. (removes your original IP info)

- Use TOR

Finally, use the eff tool panopticlick to verify that you are indeed not unique.





Cumol  ·  3519 days ago  ·  link  ·  

I wonder why I have to protect myself from companies/government while the companies are the ones that want my money and the government is supposed to protect/serve me.

The moment I will turn on Tor to watch porn will probably be 3 hours before the internet apocalypse.

insomniasexx  ·  3519 days ago  ·  link  ·  

What do you think / know about services like Ghostery, Secret Agent, Disconnect.me, NoScript, etc. Do they work? Are any better or worse than others?

bluFox  ·  3518 days ago  ·  link  ·    ·  

Each of them reduces the bits in your fingerprint to some extent. Ghostery (and others that block third party requests) is reasonable if you trust the domain (not just the embedded objects in the page) you are visiting to not be interested in collecting data about you. However, if the domain itself is collecting data about you, then you have just provided one more bit of information that distinguishes you (since the percentage of population running Ghostery is smaller than the full population of browsers).

Secret Agent seems more reasonable in that it is actively targeted towards detecting fingerprinting. The way it works is by spoofing your HTTP headers, which are used in generating some bits to identify you. However, if you are directly on the internet (not behind a NAT (NAT is a way of sharing ipaddresses with others in the same network) -- being directly on the internet is rare these days), your IP is still accessible. If you are behind a NAT, you will have to trust your ISP not to track you.

Disconnect me is similar, and routes your request through a VPN, but you will have to trust them. (By routing your request through a VPN, they make your request seem to come through a different part of the world, than your original location, which removes one bit of information about you -- they do more, but this seems the most salient of what they do.)

NoScript works by removing the vector of many identification techniques, by disabling Javascript. However, it can also make your browsing experience painful if you are expecting dynamic look and feel in websites that are enabled by Javascript (you can whitelist, but how effective that is, depends on your browsing habits). Secondly, it does not eliminate all bits of identification.

All in all, all these are useful techniques, which can reduce the exposed bits identifying you to a degree (You will also have to trust the tool itself not to send any incriminating data back. There has been instances when these tools themselves turned traitor). They are all complementary to each other to a degree too.

user-inactivated  ·  3518 days ago  ·  link  ·  

    NoScript works by removing the vector of many identification techniques, by disabling Javascript. However, it can also make your browsing experience painful if you are expecting dynamic look and feel in websites that are enabled by Javascript (you can whitelist, but how effective that is, depends on your browsing habits). Secondly, it does not eliminate all bits of identification.

I have found that it basically neuters all the prevalent web2.0 bullshit that everyone pretends to love but secretly hates unless it is executed perfectly.