EvilZone
Hacking and Security => Anonymity and Privacy => : intOpt May 01, 2015, 10:49:17 PM
-
Since I have not seen any topic of this matter I would like to start with few questions.
How do you tackle browser fingerprinting?
How do you separate browsing?
I have found that Chrome is (for me) impossible to tweak in order to browse anonymous, way too much unique identifiers.
Firefox on the other hand requires much tweak and with addons (NS) I'm somewhat able to browse anonymous, however addons itself are security risk, as well as possible leak (bypassing proxy settings) and thus privacy risk. Also addons are increasing browser fingerprinting, since many addons have unique fingerprint.
And then there is Canvas fingerprinting, and I'm still trying to learn how to stop it, and not break many websites.
There is new Web Browser in development, Vivaldi (Blink engine), but they are more focused on usability then privacy.
On the other hand I try to use for real profile default settings browser in order to blend more.
No matter how secure and anonymous net configuration is if your browser, in some way, identifies you. This is the main reason i asked this type of question. I'm sure many of you have a way to deal with it and it would be cool if you would share some of it.
As you can tell I am more interested in philosophy than techniques and tools, but no need to limit ourselves.
I hope we can have a discussion. Thank you.
-
Don't use the same browser and OS as you use with other identities. Browser anonymity is not enough to remain anonymous. Any connection made outside of the browser will go through your normal IP address and the reverse DNS for this might include detailed information about you.
-
Thanks for input.
It's scary to see something like WebRTC in combination with STUN server bypass properly implemented VPN
and browser proxy and it affects all platforms. There is still no solution on Chrome and Chromium, since option to disable it is not implemented on desktop browsers, only android.
I don't know much about WebRTC but there are, afaik, few ways to deal with it:
1. Disable functionality in browser.
2. Use/set router vpn
3. Set firewall to block known STUN servers (not very good solution)
3. Somehow, using app like privoxy, block STUN requests
-
Thanks for input.
It's scary to see something like WebRTC in combination with STUN server bypass properly implemented VPN
and browser proxy and it affects all platforms. There is still no solution on Chrome and Chromium, since option to disable it is not implemented on desktop browsers, only android.
I don't know much about WebRTC but there are, afaik, few ways to deal with it:
1. Disable functionality in browser.
2. Use/set router vpn
3. Set firewall to block known STUN servers (not very good solution)
3. Somehow, using app like privoxy, block STUN requests
And all I see are some simple iptables rules.