Git/firefox-user.js
1
0
Fork 0
mirror of https://github.com/arkenfox/user.js.git synced 2024-11-22 18:41:38 +01:00
Code Issues Packages Projects Releases Wiki Activity

Updated 4.1 Extensions (markdown)

Thorin-Oakenpants 2021-11-27 05:47:42 +00:00
parent eb1cdee05d
commit 8128942208
1 changed files with 5 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
4.1-Extensions.md

@ -61,17 +61,13 @@ These extensions will not mask or alter any data sent or received, but may be us
* CSS Exfil Protection * CSS Exfil Protection
- Practically zero threat and if the platform's CSS was compromised, you'd have bigger problems to worry about - Practically zero threat and if the platform's CSS was compromised, you'd have bigger problems to worry about
* Decentraleyes, LocalCDN * Decentraleyes, LocalCDN
- Third parties are already isolated if you use Total Cookie Protection (dFPI) or FPI - Third parties are already isolated if you use [Total Cookie Protection](https://blog.mozilla.org/security/2021/02/23/total-cookie-protection/) (dFPI) or FPI
- Replacing scripts on CDNs with local versions is not a comprehensive solution and is a form of [enumerating badness](https://www.ranum.com/security/computer_security/editorials/dumb/). While it may work with some scripts that are included it doesnt help with most other third party connections - Replacing scripts on CDNs with local versions is not a comprehensive solution and is a form of [enumerating badness](https://www.ranum.com/security/computer_security/editorials/dumb/). While it may work with some scripts that are included it doesnt help with most other third party connections
- CDN extensions don't really improve privacy as far as sharing your IP address is concerned and their usage is fingerprintable as this Tor Project developer [points out](https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/22089#note_2639603). They are the [wrong tool](https://en.wikipedia.org/wiki/XY_problem) for the job and are not a substitute for a good VPN or Tor Browser. Its worth noting the [resources](https://git.synz.io/Synzvato/decentraleyes/-/tree/master/resources) for Decentraleyes are hugely out of date and would not likely be used anyway - CDN extensions don't really improve privacy as far as sharing your IP address is concerned and their usage is fingerprintable as this Tor Project developer [points out](https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/22089#note_2639603). They are the [wrong tool](https://en.wikipedia.org/wiki/XY_problem) for the job and are not a substitute for a good VPN or Tor Browser. Its worth noting the [resources](https://git.synz.io/Synzvato/decentraleyes/-/tree/master/resources) for Decentraleyes are hugely out of date and would not likely be used anyway
* Temporary Containers, Cookie extensions
❗️ Sanitizing in-session is a false sense of privacy. Extensions may lack APIs or application of them, and it does nothing for IP tracking. Even Tor Browser does not sanitize in-session e.g. when you request a new circuit. A new ID requires _both_ a new sanitized session _and_ a new IP. The same applies to Firefox. - ❗️ Sanitizing in-session is a false sense of privacy. Extensions may lack APIs or application of them, and it does nothing for IP tracking. Even Tor Browser does not sanitize in-session e.g. when you request a new circuit. A new ID requires _both_ a new sanitized session _and_ a new IP. The same applies to Firefox.
- Redundant with [Total Cookie Protection](https://blog.mozilla.org/security/2021/02/23/total-cookie-protection/) (dFPI) or FPI
* Temporary Containers - Note: If you want multiple and/or concurrent logins to the same site, use Multi-Account Containers
- Redundant with Total Cookie Protection (dFPI) or FPI
- If you want mutilple and/or concurrent logins to the same site, use Multi-Account Containers
* Cookie extensions
- Redundant with Total Cookie Protection (dFPI) or FPI
--- ---