Advice Request Avoid These Browsers

Please provide comments and solutions that are helpful to the author of this topic.

Kongo

Kongo

Level 36
Verified
Top Poster
Well-known
Feb 25, 2017
2,597
misterman2100 said:
Which extensions would you personally recommend based on your experiences as well as your colleagues? I am not in the cyber security field, but I try to stay informed as best as possible and hold your opinions in high regard.
Click to expand...
I know that you want an answer from cruelsister but nonetheless you should read this:

www.kaspersky.com

Why you should be careful with browser extensions

Browser extensions are handy, but they can also be really dangerous. Here’s what can go wrong and what you can do about it.
www.kaspersky.com www.kaspersky.com
 
  • Like
Reactions: Stopspying, Nightwalker, Cortex and 10 others
misterman2100

misterman2100

Level 2
Verified
Dec 3, 2018
63
HarborFront said:
To start off use uBlock Origin
Click to expand...
I've used uBlock Origin for...oh...I don't know how long now, NoScript, and HTTPS Everywhere primarily for Firefox. Cruelsister does pose an interesting question overall regarding extensions and add-ons for browsers, even the ones that are considered trustworthy.
 
  • Like
Reactions: Cortex
H

HarborFront

Level 72
Verified
Top Poster
Content Creator
Oct 9, 2016
6,158
misterman2100 said:
I've used uBlock Origin for...oh...I don't know how long now, NoScript, and HTTPS Everywhere primarily for Firefox. Cruelsister does pose an interesting question overall regarding extensions and add-ons for browsers, even the ones that are considered trustworthy.
Click to expand...
Not just for browser extensions/addons. If you use DNS blocking or Adguard dekstop you'll also use filters, scripts etc coded by unknown coders
 
Last edited:
  • Like
Reactions: Stopspying, Cortex, Nevi and 2 others
F

ForgottenSeer 72227

I think the biggest thing when it comes to privacy online is to always assume you don't have it. While it would be nice to have true privacy, it's really only a figment of your imagination sadly...

While there are some technical ways to help deal with it, the only true way is to limit what you sign up for, post online etc... While this doesn't get rid of everything privacy wise, minimizing your personal information as best as you can will go a long ways.

As @cruelsister mentioned even extensions can both be a privacy and a security issue as well. I wouldn't say never install extensions, but like with regular software, only install what you actually use/need. No one needs 50 extensions....in most cases all one really needs are an ad blocker and a password manager..the rest is fluff IMHO.

I personally don't mind targeted ad's, as they do help fund the various sites, Youtubers, etc... I just hate how they can be used for malware attacks, as well as be too in your face at times. Other than that I'm ok with it.
 
  • Like
  • Applause
Reactions: Stopspying, Cortex, zoran popovic and 7 others
wat0114

wat0114

Level 13
Verified
Top Poster
Well-known
Apr 5, 2021
621
It's a kind of "Catch 22" with some of these extensions, a "risk vs reward" trade off if you will. For example, block the 3rd-party scrips, ads and iframes vs all the capabilities the extension has on your browser, and decide which is the best choice. I'm willing to take my chances with an extension such as uBlockO that will achieve all of the above at the cost of having the following:

Code: 
[LIST]
[*]Access your data for all websites
[*]Read and modify privacy settings
[*]Access browser tabs
[*]Access browser activity during navigation
[/LIST]

Wow, that is a lot of permissions and unequivocally illustrates just how much direct access some of these extensions have within our browsers! And believe me, the footprint of this extension is considerable, to say the least. But I trust the developer and the long term exemplary reputation and track record it's had, so I use it in all my browsers. The alternative is to allow all those gawd awful intrusive ads, 3rd-party scripts and iframes, all of which could lead to compromising security and privacy.
 
  • Like
  • +Reputation
Reactions: Stopspying, Cortex, TairikuOkami and 3 others
monkeylove

monkeylove

Level 13
Verified
Top Poster
Well-known
Mar 9, 2014
617
I also found this one:

How to choose a browser for everyday use?

digdeeper.neocities.org digdeeper.neocities.org

I think the general conclusion is that very few browsers don't snoop, and those that don't might not have a lot of features that many users want. At the same time, several features require allowing certain servers to give or receive data, logging in, loading certain addons, etc.

Given that, what to avoid will likely be dependent on what you want and are willing to give up by way of features. In my case, I need to log in various sites to communicate with friend, relatives, and colleagues, buy goods, use services, etc. I'd like to try various new features and have time to do so. In which case, I decided to do the ff.

Firefox with about:config tweaks (but once I experience fewer problems with LibreWolf I might switch to that)

Multi-Account Containers to separate social media platforms, storms, etc., from each other, and then create several non-personal and non-works accounts for sites that don't need them

Cookie AutoDelete or similar to retain only cookies needed for logins

and another browser (Iridium) for a work account.

For anything else, I add the usual, like uBlock Origin or Adguard (which I now use because I availed of the cheap lifetime promo). I might try additional addons and options, but they sometimes break web pages.

That way, I can still maintain some functionality (like reading embedded content from other platforms where logins are required), with more tracking involving non-personal accounts.
 
  • Like
Reactions: Stopspying, Cortex, Nevi and 2 others
Brahman

Brahman

Level 18
Verified
Top Poster
Well-known
Aug 22, 2013
892
TairikuOkami said:
I have it disabled, I like the idea, since I do not even block ADs, but the implementation is just bad, it causes a terrible slow down (webpages load like 4-5 times slower).

That is why I allow only port 443, I would never allow ports 5222 or 5228. 🤫
Click to expand...
I would also re-route port 53 and port 5353 traffic (both tcp and udp) to port 443 (DOH)
 
  • Like
Reactions: Cortex, Venustus and TairikuOkami
TairikuOkami

TairikuOkami

Level 37
Verified
Top Poster
Content Creator
Well-known
May 13, 2017
2,684
JoyousBudweiser said:
I would also re-route port 53 and port 5353 traffic (both tcp and udp) to port 443 (DOH)
Click to expand...
Thanks but no worries, my browser is allowed only on 443 and QUIC, I use Windows Dev just to have DoH system wide, but it still causes issues, thus MS has postponed it till 21H2. :(
Templarware said:
Not that unique if many people use Do Not Track. I know practically no one respects the request
Click to expand...
Then do not use it. That setting funny, it basically says: Track Me! (this user do not want to be tracked and probably blocks tracking, so better watch him)
blackice said:
Honestly I’d rather get targeted ads than the stress that come along with pretending I have privacy on the internet. I wouldn’t even block ads if it weren’t for malvertising. I would like the sites I visit to get paid for their content.
Click to expand...
I am trying to find that balance, when you block trackers and malware, only known advertisers are allowed, so malvertising should be limited to a bare minimum.
 
  • Like
Reactions: Stopspying, Cortex, Brahman and 1 other person
F

ForgottenSeer 85179

SpiderWeb said:
What's the issue with Safari?
Click to expand...
None. These recommendations are from /privacytoolsio - a community.
They're against closed source and proprietary in general. I guess that's the reason for read mark.

Safari provide very good security with best fingerprint protection without doing anything on user side.

Edit: wording.
 
Last edited by a moderator:
  • Like
Reactions: Stopspying, Cortex, plat and 6 others
A

Arequire

Level 29
Verified
Top Poster
Content Creator
Feb 10, 2017
1,822
blackice said:
I wouldn’t even block ads if it weren’t for malvertising.
Click to expand...
I'd probably still block ads on my phone, as they inflate data usage and have a quantifiable cost associated with them. But on desktop, yeah, I'd probably stop blocking ads too.

SecureKongo said:
I actually think that pretty much every browser except Chrome has all the things you might need to improve your privacy nowadays.
Click to expand...
The thing is, if I were going to use the built-in protections I'd want them to wholly replace extensions, not compliment them. And as an Edge user, Tracking Prevention is not a viable alternative. It's associated filter list hasn't been updated for an entire month now, you can't add custom filters, and its strictly a tracker blocker, not an ad blocker, so while it does block requests to major third-party ad networks, it doesn't include domains for lesser networks. It also doesn't block requests from domains owned by the same parent organisation as the visited website.

misterman2100 said:
HTTPS Everywhere primarily for Firefox
Click to expand...
You can drop HTTPS Everywhere. Firefox has a built-in HTTPS-only mode.
 
Last edited:
  • Like
  • Applause
Reactions: Stopspying, Cortex, Kongo and 2 others
Templarware

Templarware

Level 10
Verified
Well-known
Mar 13, 2021
462
SecureKongo said:
It doesn't. Maybe you confuse it with the DNS-over-HTTPS option for various DNS providers
Click to expand...
malwaretips.com

Chrome plans to make HTTPS the default when a user types an address

Google plans to introduce functionality in the company's Chrome web browser to make HTTPS the default. A recent Chromium commit, spotted by Windows Latest, confirms the plan. Default typed omnibox navigations to HTTPS: Initial implementation Presently, when a user types a domain name in the...
malwaretips.com malwaretips.com
 
  • Like
Reactions: Cortex, forgottenuser79643, Venustus and 2 others
Templarware

Templarware

Level 10
Verified
Well-known
Mar 13, 2021
462
SecureKongo said:
It doesn't. Maybe you confuse it with the DNS-over-HTTPS option for various DNS providers
Click to expand...

TairikuOkami said:
Chrome 90 (Edge) will use https by default, theoretically. Currently I open https webpage and Chrome sometimes switches to http, lol. Http to https does not work at all.
blog.chromium.org

A safer default for navigation: HTTPS

Starting in version 90, Chrome’s address bar will use https:// by default, improving privacy and even loading speed for users visiting webs...
blog.chromium.org blog.chromium.org
Click to expand...
 
  • Like
Reactions: Cortex, forgottenuser79643, Venustus and 2 others

Similar threads

Gandalf_The_Grey
    • Wow
    • Like
    • HaHa
Technology Chrome, Opera, Vivaldi, Waterfox and Wavebox join hands to fight against Microsoft Edge
Replies
2
Views
333
Technology News
brambedkar59
brambedkar59
Gandalf_The_Grey
    • Like
    • Applause
New Update Edge and other browsers received improved SVG support thanks to Microsoft
Replies
1
Views
342
Microsoft Edge
Marko :)
Marko :)
vtqhtr413
    • Like
Technology Will Firefox rise like phoenix from the ashes in 2024?
Replies
24
Views
2,349
Technology News
Stopspying
Stopspying

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top