Try the chameleon extension https://github.com/sereneblue/chameleon
this post was submitted on 27 Dec 2024
47 points (98.0% liked)
Privacy
32492 readers
515 users here now
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
- Don't promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
much thanks to @gary_host_laptop for the logo design :)
founded 5 years ago
MODERATORS
Go with Brave. They add stuff to your fingerprint, so that is is completely irrelevant!
Brave isn't a thrust-worthy company
Easiest answer would be: Use a common OS, with a common browser, and no add-ons.
The moment you start using something different to Windows, Android, iOS or macOS with Safari, Chrome or Firefox, you're probably already in the 5 % (just my uninformed estimate). Add-ons also increase this value drastically.
Long story short: The sad truth is, the moment you're interested in online-prviacy, you're very unique.
Is there no way to spoof that I'm using one of those without actually using them?
Spoofing is a whole hell of a lot easier said than done. Content delivery networks like Akamai, Cloudflare, etc. all know exactly how different versions of different browsers present themselves, and will catch the tiniest mistake.
When a browser requests a web page it sends a series of headers, which identify both itself and the request it’s making. But virtually every browser sends a slightly different set of headers, and in different orders. So Akamai, for example can tell that you are using Chrome solely by what headers are in the request and the order they are in, even if you spoof your User-Agent string to look like Firefox.
So to successfully spoof a connection you need to decide how you want to present yourself (do I really want them to think I’m using Opera when I’m using Firefox, or do I just want to randomize things to keep them guessing). In the first case you need to be very careful to ensure your browser sends requests that exactly matches how Opera sends them. One header, or even one character out of place can be enough for these companies to recognize you’re spoofing your connection.
One of the points of Libre Wolf is to make you unique, but each session should be unique.
You can find some additional setting tweaks here: https://librewolf.net/docs/settings/
The "letterboxing" feature is an additional uniqueness feature you could consider enabling.
I'm particular you could check your result in this experiment: https://fpresearch.httpjames.space/
Try it in both normal and in a private tab, then record those results, reopen Libre Wolf, and try again.
Can you explain what I'm supposed to be looking for in that .space link? What's the server code and client code? Am I trying to see if the emojis and number at the bottom changes when I reopen the site?
So server code is your fingerprint based on what a server is able to see. This would be your fingerprint with JS disabled, essential. Client code is the JS generated fingerprint.
For the emojis I have no idea.
So .... Again, what is the point of this test, lol. What am i looking for? It seems like no one actually knows what the hell this test is showing, lol. Idk why it was posted if no one knows what it's showing? Do you know what I'm supposed to be looking for?
So, if I have the same client code and a different server code, I'm followable only as long as I have JS enabled?
librewolf hopefully supports changing user agents. if not, uninstall it
You’re unique and everyone loves you.
Using Tor Browser with default settings is probably the least time consuming way of reducing a site's ability to uniquely identify you.
Essentially using Linux with Librewolf and various browser addons is making you unique, since there are not many similar fingerprints.
To my knowledge Librewolf spoofs useragent to Windows by default
It can still tell you're on Linux via WebGL
It does as well as setting your locale to en-us, timezone to utc and giving random output from canvas every time.
Edit: You can also enable a fixed size for you window. More precisely the area which is visible to content (and also to javascript). https://librewolf.net/docs/faq/#what-are-the-most-common-downsides-of-rfp-resist-fingerprinting
Oh I have noticed the timezone change, some websites were misbehaving because of it
It seems to me with JavaScript it doesn't work
isn't mullvad browser a better choice than librewolf? (i use both)
They are pretty much equal. See https://privacytests.org/
yes, except for the "DNS privacy tests" they seem to be equal on privacytests.org
Is it? I haven't heard much about mullvad browser.
It's basically Tor Browser without using the Tor network.
Less unique is equal to what majority of other's do.
So
- Windows
- Chrome (stock settings, maybe some addons like grammarly)
- No VPN
I mean...VM, run Tor as a container within the VM, and don't change any default settings. Amiright guys?
Use a computer that you bought off the shelf at a big box store. Don't add any hardware, software, fonts, or change any settings. Use MS Edge with no extensions, and clear your cookies and cache after each session.
That will make you about as generic as possible.
Use MS Edge
Use Chrome. Edge is a minority browser (has a market share of ~10 %). Using chrome though gives all your data to google ( so not recommended).
I was thinking Edge becaudse that comes stock with every new system you buy; Chrome is something you have to install proactively. But yeah, you're probably right. You eith look anonymous because your system looks generic, or you have some small degree of privacy without anonymity. It's a shitty choice to make.