CNAME-based tracking

[pjp]

@yellowzip2:

I've seen the Origin website, but thanks for the link. My impression from the author was that it was supposed to be (paraphrasing) "better by default" than uMatrix. In my opinion, Origin does very little (compared to uMatrix) by default.

[yellowzip2]

none

[pjp]

No problem, I mainly wanted to ensure the author didn't have a track record of frequently being wrong.

On the matter of "bad by default," I do consider that to be true as a precaution until I'm "otherwise convinced" on an individual basis. I have no way of meaningfully evaluating extensions. I have 4 enabled (HTTPS Everywhere, uBlock Origin, uBlock Scope, and uMatrix). A fifth remains installed but has been disabled for a long time (NoScript). I had Privacy Badger(?) and a couple / few others installed, but I don't recall what they were. With XUL, I used an extension to automatically delete cookies... I miss that one, but haven't been "convinced" to trust an alternative.
_________________
Quis separabit? Quo animo?

[yellowzip2]

none

[Zucca]

I remember there were some concerns with Privacy Badger. EFF has affiliates. And the concern was that PB would add the domains of these affiliates to the whilelist.
I tried to search for the article about it, but couldn't find it. Maybe it isn't a concern anymore?
_________________
..: Zucca :..
Gentoo IRC channels reside on Libera.Chat.
--

[figueroa]

I find that Privacy Badger in Firefox helps me. It keeps me informed and sometimes out of trouble.

I only run four extension:
Duck Duck Go Privacy Essentials
Privacy Badger
Facebook Container
Web Developer

Blocking I do with /etc/hosts and I've started to use adguard.com's DNS. I don't see any difference with adguard's DNS though, but it seems fast.
_________________
Andy Figueroa
hp pavilion hpe h8-1260t/2AB5; spinning rust x3
i7-2600 @ 3.40GHz; 16 gb; Radeon HD 7570
amd64/23.0/split-usr/desktop (stable), OpenRC, -systemd -pulseaudio -uefi

[pjp]

[yellowzip2]

none

[pjp]

Absolutely, don't trust any source blindly. I remember the issue. That wikipedia since has had a reference to the issue is not relevant to whether or not it was if not still is an issue. Also, it isn't "wikipeidia," it specifically references Ars Technica. According to the archived article, Ars quoted "the EFF". Of course, by 2014 Ars' content suffered considerably, but I'm not aware of any pattern of negligence, only lower quality in general. But that seems to be Condé Nast's specialty.

That an unrelated problem was identified years later by someone other than EFF isn't really meaningful. Yes, it is good that at the time, the EFF addressed the defaults, but that's bare minimum IMO. I'd expect nothing less. As an aside, the "learn over time" was one of the features I didn't care for. It translated to me as "exposed to threats until some unknown future time and date."
_________________
Quis separabit? Quo animo?

[yellowzip2]

none

[pjp]

From that same Ars article you linked to, this seemed the part directly related to the previously brought up issue of allowing cookies from "affiliates" (emphasis added):

[yellowzip2]

none

[pjp]

Well, it was really about a past implementation, so that it has gone on for this many posts seems unfortunate. I prefer blocking as much as possible by default, and distrust mechanisms that try to sound strong on blocking while simultaneously allowing "friends" through the back door. "I said no one is allowed in, not that its okay if they come in the back door as long as I'm not informed about it." *shrug* To each their own. It reminds me of disreputable "opt-in" knowing full well most people don't want that. And I fully acknowledge that it probably isn't as bad as I just described. When uMatrix becomes less helpful, I may have to try PB again.
_________________
Quis separabit? Quo animo?