Vlákno názorů k článku Nová metoda fingerprintingu pozná uživatele i po výměně prohlížeče od j - Mno ... a prakticky vsechno se to da...
-
Martin (neregistrovaný)
Tak triviální to rozhodně není. Blokovat javascriptový malware je jen malá část. Je potřeba blokovat např. externí fonty, cross-site requesty (RequestPolicy), spoustu další prvků např. pomocí rozšíření uMatrix. V neposlední řadě je potřeba zbavit prohlížeč backdoorů. Firefox, Chrome atd. jsou jeden velký reklamní a sledovací backdoor, tudy cesta rozhodně nevede. Používám Palemoon z repozitáře opensuse.org s mnoha úpravami v nastavení about:config. A to jsem stále nezmínil vše.
-
Martin (neregistrovaný)
Howto – Pale Moon settings
__________________________1/ UI settings
disable "Menu Bar" and "Bookmarks Toobar"
check "Use Small Icons" in toolbar
move all icons it the toolbar to the left2/ set in Preferences
General
set "Show my windows and tabs from last time"
set "Save files to": DownloadsTabs
check only these options:
. "Open new windows in a new tab instead"
. "Don't load tabs until selected"
. "Insert related tabs next to the current tab"
. "Close the window when the last tab is closed"
set "When opening a new tab, show": A blank pageContent
set font Noto Sans i pro 'Serif' (Cenral European, Western, Other Languages), minimum font size = 10
uncheck "Allow pages to choose their own fonts..."
add Czech and Slovak languages and move them above EnglishApplications
for "mailto" set: 'Claws Mail'Privacy
set "Tracking": 'Tell sites that I do not want to be tracked'
set "History": 'Use cutom setting for history'
set "Accept third-party cookies": 'Never'
set "Keep until": 'I close Pale Moon'Security
leave default settingsAdvanced
uncheck "Check my speling as I type"
check "Override automatic cache management": Limit cache to "0" MB of space
uncheck "Automatically update Search Engines"3/ Manage Search Engines
uncheck "Show search suggestions"
set DuckDuckGo as default4/ install extensions
Clean Links, https://addons.mozilla.org/cs/firefox/addon/clean-links/
Copy Plain Text 2, https://addons.mozilla.org/cs/firefox/addon/copy-plain-text-2/
Disable Ctrl-Q, https://addons.mozilla.org/cs/firefox/addon/disable-ctrl-q-shortcut/
FinderBar Tweak, https://addons.palemoon.org/extensions/search-tools/finderbar-tweak/
Hide Caption Titlebar Plus
NoScript
Pale Moon Commander, http://www.palemoon.org/commander.shtml
Print Edit
RequestPolicy
Restart, https://addons.mozilla.org/cs/firefox/addon/re-start/?src=cb-dl-rating
uBlock Origin
uMatrix5/ about:config (double click to change a value)
--disable "Tabs on Top"
browser.tabs.onTop = false-- hiding http://
browser.urlbar.trimURLs = true-- disable internal javascript PDF reader
pdfjs.disabled = true-- disable open/close tab animation
browser.tabs.animate = false-- disable panorama cards animation
browser.panorama.animate_zoom = false-- disable fullscreen animation
browser.fullscreen.animateUp = 0
browser.fullscreen.autohide = true-- enable tab preview while using Ctrl+Tab
browser.ctrlTab.previews = true-- enable Backspace for going back
browser.backspace_action = 0-- close cross only on active tab
browser.tabs.closeButton = 0-- disable automatic resolving of local names and URL-like patterns
browser.fixup.alternate.enabled = false
keyword.enabled = false-- disable
media.peerconnection.enabled = false-- disable the memory of the URL bar
browser.urlbar.maxRichResults = 0-- disable disk cache (optimalization for SSD and speed)
browser.cache.disk.enable = false
browser.cache.memory.enable = true-- enable pipelining for normal connections
network.http.pipelining = true-- enable pipelining for proxy connections
network.http.proxy.pipelining = true-- longer interval to save session (60000 = 1 min.)
browser.sessionstore.interval = 60000-- immediate rendering of pages without delay, create integer key:
nglayout.initialpaint.delay = 0-- referer header control
network.http.sendRefererHeader = 1
network.http.referer.XOriginPolicy = 1
network.http.referer.spoofSource = true
network.http.referer.trimmingPolicy = 2-- disable 1024-bit Diffie-Hellman primes, NSA has been breaking 1024-bit
security.ssl3.dhe_rsa_aes_128_sha = false
security.ssl3.dhe_rsa_aes_256_sha = false-- makes make canvas fingerprinting much more difficult
canvas.poisondata = true-- changet long annoying 5 second wait when installing addons to 2 sec.
security.notification_enable_delay = 2006/ install sandbox Firejail
-
Vím, že Pale Moon dlouhodobě používáš. Máš nějaké tipy k nastavení?
Tak bezpecnostni nastaveni me moc nenapadaji. Akorat snad rozsireni Better Privacy https://addons.mozilla.org/en-US/firefox/addon/betterprivacy/, ktere ale je nyni s PM nekompatibilni. Uz nevim, jak jsem ke svemu prisel, mozna jsem nasel nekde verzi ohackovanou pro PM. Takze jedine najit jine rozsireni, ktere vrazdi Flash cookies, akorat ze nevidim takove, ktere by delalo jen to. Protoze mazes cookies pri odchodu z PM, mozna bys mohl pouzit https://addons.mozilla.org/en-US/firefox/addon/cookies-exterminator/ nebo jestli nekde najdes ohackovanou verzi tohodle: https://addons.mozilla.org/en-US/firefox/addon/self-destructing-cookies/?src=api
Uzitecne rozsireni je https://addons.mozilla.org/en-US/firefox/addon/killspinners/ . Zavrazdi po timeoutu ty stranky, ktere se natahuji a natahuji a ..... a nikdy neskonci.
Jeste pouzivam https://addons.mozilla.org/en-US/firefox/addon/bartab/ k odloadovani stranek, na ktere necumim. Ale koukam, ze uz je nekompatibilni s FF verze blabla, protoze zase nesedi manifest s PM.
Dalsi rozsireni, RighttoClick, ktere povoluje prave tlacitko na strankach, kde ho zakazuji, autor stahnul. Koukam, ze muj profil je tak prehistoricky, ze uz pulka rozsireni neexistuje.
Session Manager jeste existuje: http://sessionmanager.mozdev.org/ . Na rozdil od zabudovaneho neztraci sessions a pamatuje si jich vic (pocet podle nastaveni).
