Which is best at mitigating browser fingerprinting? Firefox (with or without arkenfox)? Librewolf? Mullvad browser?

Alas Poor Erinaceus@lemmy.ml · 1 day ago

Which is best at mitigating browser fingerprinting? Firefox (with or without arkenfox)? Librewolf? Mullvad browser?

anon@lemmus.org · 24 hours ago

I don’t think many people here use Brave Browser because of their crypto referral program, but they’ve made strides at mitigating fingerprinting. I use Brave Browser on my PC and Android and never had an issue.

りん〜@sopuli.xyz · 23 hours ago

Idk what the fuss is about. Brave is a decent option with all the crypto stuff turned off.

kat@orbi.camp · edit-2 21 hours ago

Having to spend souch time tweaking it on a fresy install. Annoying af. I still use it cuz nothing else meets all my needs.

りん〜@sopuli.xyz · 20 hours ago

It takes like 1 minute. How often do you reset your system?

merlin@lemmy.dbzer0.com · 24 hours ago

I think You’re right but get ready cause here comes the downvotes 🤣

Biserko@lemmy.ml · 21 hours ago

Ironfox on Android is great.

madame_gaymes@programming.dev · edit-2 15 hours ago

Use this site to test your uniqueness in different browsers and VPN setups:

https://abrahamjuliot.github.io/creepjs/

I have found that Mullvad Browser + VPN (with DAITA and Multihop ON) are better than FireFox or LibreWolf. Me and another user on here went through a little back and forth comparing some things. Just follow the comment thread from here:

https://programming.dev/comment/15090531

(take it with a grain of salt and DYOR, we are not experts)

Also, I love Tor, but another reason to be careful: exit nodes can be run by anyone, including bad actors and any 3-letter agency in the world. At the very least, add a VPN layer when using Tor.

ETA: Keep in mind that it’s not just the browser that matters. Your screen size, GPU, operating system, and several other factors also add or take away from your uniqueness in terms of browser fingerprint. Basically, they less you change in the browser, the more generic and similar to everyone else you look like. The better your OS hides things from apps (for instance, in flatpak sandboxes) the better.

ETA2: I like creepjs for testing over EFF’s tool for one main reason. EFF tells you how unique you are, theoretically. Creepjs actually takes extra steps to make a guess at whether or not the browser is lying and trying to hide from fingerprinting.

afk_strats@lemmy.world · edit-2 23 hours ago

I’ve tested this on Debian and roughly:

Mullvad (default): A+
Librewolf (+setup): B
Librewolf (default): C
Firefox (default): D
Chromium (default): F

Try out https://coveryourtracks.eff.org/

brownmustardminion@lemmy.ml · 21 hours ago

This has been my experience as well. What tweaks are you making to default librewolf?

afk_strats@lemmy.world · 18 hours ago

Neptr covered it better than I could’ve

madame_gaymes@programming.dev · 15 hours ago

The more plugins you add, the more unique you become, just FYI.

N.E.P.T.R@lemmy.blahaj.zone · edit-2 19 hours ago

Technically, the best way to blend in is to avoid changing the behaviour much from the default. I would still advise the below settings because they do improve your security, and anti-fingerprinting against naive first-party fingerprinting scripts (all 3rd party scripts/iframes should be blocked, see below: uBlock Medium/Hard). If you need protection against advanced fingerprinting use Tor/Mullvad browser.

uBlock:

Change uBlock blocking mode to Medium or Hard using the instructions on their Github wiki. Can cause site breakage on shitty websites (eg sites that import large JS libraries from remote sources). It is a substantial improvement over default, see the wiki for medium mode: https://github.com/gorhill/uBlock/wiki/Blocking-mode:-medium-mode
Enable filterlist Privacy>Block Outside Intrusion to LAN (Access to LAN is used to fingerprint or by threat actors during reconnaissance phase of hacking)
Consider enabling other filterlists included in uBlock. Try to minimize enabling extra lists from the default to avoid further fingerprinting.

Librewolf:

Enable limiting of referrers under LibreWolf Preferences>Privacy>Limit cross-origin referers
Enable letterboxing under LibreWolf Preferences>Fingerprinting>Enable letterboxing

Lemmchen@feddit.org · 1 day ago

Default settings or what are we supposed to compare here?

Alas Poor Erinaceus@lemmy.ml · 1 day ago

🤔Well, hmmm. How bout out of the box/to start with?

kobra@lemm.ee · edit-2 1 day ago

Yeah if default settings, mullvad is probably hard to beat if tor is off the table.

InvisibleRasta@lemmy.ml · edit-2 12 hours ago

Its is pretty easy to get rid of all the brave crap. You just need a policy file:

# cat /etc/brave/policies/managed/brave_policies.json
{
    "BraveRewardsDisabled": true,
    "BraveWalletDisabled": true,
    "BraveVPNDisabled": 1,
    "BraveAIChatEnabled": true,
    "NewTabPageLocation": "https://search.brave.com/",
    "TorDisabled": false,
    "PasswordManagerEnabled": false,
    "DnsOverHttpsMode": "automatic"
}

pogmommy@lemmy.blahaj.zone · 5 hours ago

Yeah but i don’t want to recommend a browser to someone just for them to have some cryptocurrency, AI chatbot, and Ad reward program shoved in their face.

And then telling them that they Can get rid of it, they just have to go make some file they don’t understand in a location on their hard drive they’ve never been to.

Because being real, if Brave’s bloat was bundled into an antivirus software, it would rightfully raise red flags for anyone with standard computer literacy.