← Back to context

Comment by hku333

15 hours ago

You are actually easier to track using these addons.

By installing Canvasblocker, Decentraleyes and NoScript you are providing more entropy to trackers and thus making it easier to track you. Imagine how many people worldwide block specifically Canvas, have weird looking network requests to certain js libs and have JS disabled for some (/all) scripts combined with your general setup (window size, font size, and many other factors that do not even require JS).

The Tor project explicitly suggests to not install an adblocker for example because of this.

9 comments

hku333

Reply
pmontra  6 hours ago

I more or less use those addons (uMatrix instead of NoScript) plus uBlock Origin. uMatrix doesn't load a large number of JS files. An example from an ecommerce site I'm browsing right now: the site is functional (at least in browsing mode) without the scripts from

    bigcommerce.com
    classyschema.org
    doofinder.com
    elfsightcdn.com
    google.com
    grit.software
    gstatic.com
    hexgator.com
    klarna.com
    skeepers.io
    criteo.com
    googletagmanager.com

It needs only the JS from the first party domain. So they can track me from there but all the other guys don't know about me, unless they buy data from the first party. At least they have to do more work.

I also don't get advertising in any form, maybe because I don't have ecommerce apps on my phone and I block a lot of things with Blockada, but that's another story.

  • skydhash  6 hours ago

    I don’t really mind first party telemetry. I’m already interacting with the sites, so they can build a nice profile if they want too. But my pet peeves are loads of non functional JS and not having an html render for web content for a non app website.

someothherguyy  5 hours ago

> (window size, font size, and many other factors that do not even require JS

Yeah, they require CSS, which you can also block using noscript and other tools, if you want.

Also, while you might be more "trackable" to those who fingerprint, if you are blocking those cross origin or same origin scripts from loading you are already stopping some of that. You can even blacklist some known hosts completely in your browser's policy settings and prevent those requests from ever reaching their destination.

tmtvl  6 hours ago

Without an ad blocker and JavaScript blocker the average website would be 100GB in size and take several years to load. If I really cared about tracking protection I would just not use the regular internet and stick to Gemini. CanvasBlocker is just because the Tor browser itself has one implemented (source: <https://2019.www.torproject.org/projects/torbrowser/design/#...>) so I figured I might as well.

unethical_ban  6 hours ago

There has to be a happy middle between "no protection" and "complete uniqueness"

The web without ad blocking is revolting. Browsers building in these features makes them more popular.

Aside: Fuck the Washington Post. They have a line in their privacy policy that acknowledges the existence of "Do Not Track" flags in browsers. Their acknowledgement: since there is no industry standard for responding to it, they ignore it.