security123

Level 27
Verified
In the top right in ChromiumEdge you can click the avatar and switching between profiles is possible without problems. So why i say that?
Because of this easy solution, you can isolate Websites in a own, real Container and Websites can't read your private data!

I make 3 different profiles:
# Default - which is the default ones obviously and only used for Surfing
# Banking - which is only used for Banking and Shopping
# Local - which is only for local sites like Router, PiHole, NAS, ...

Based on some threads and own research, here how i set it up:
Default:
# Addons: ClearURLs + ublock Origin + uMatrix (all from Google Store because of faster updates and i don't know the WindowsStore uBlock Origin dev)
# Strict Privacy in Edge settings
# DnT header in Edge settings
# Cache cleaning in Edge settings
# no website navigation error help in Edge settings
# PuP & SmartScreen enabled in Edge settings
# block 3th party cookies in Edge settings
# block plug-ins outside of sandbox in Edge settings
# block payment provider in Edge settings
# block USB access in Edge settings

Banking:
# uBlock Origin from Google (from Google Store because of faster updates and i don't know the WindowsStore uBlock Origin dev)
# Strict Privacy in Edge settings
# DnT header in Edge settings
# Cache & history cleaning in Edge settings
# no website navigation error help in Edge settings
# PuP & SmartScreen enabled in Edge settings
# block 3th party cookies in Edge settings
# JavaScript disabled by default in Edge settings
# block automatic downloads in Edge settings
# block plug-ins outside of sandbox in Edge settings
# block payment provider in Edge settings
# block USB access in Edge settings
# blocking all HTTP content (not even JavaScript) with uBlock Origin

Local:
# no addons
# Strict Privacy in Edge settings
# No DnT header in Edge settings
# no browser cleaning in Edge settings
# no website navigation error help in Edge settings
# PuP & SmartScreen enabled in Edge settings
# block 3th party cookies in Edge settings
# JavaScript disabled by default in Edge settings
# block automatic downloads in Edge settings
# block plug-ins outside of sandbox in Edge settings
# block payment provider in Edge settings
# block USB access in Edge settings

Also all profiles use the same configured Edge flags, which you can read about at Microsoft Edge - Chromium-Edge Flags

Now you maybe wonder what happend if you open a site in a "wrong" profile. Well, we can block whole sites in uBlock Origin ;)
For that, we just need to add own uBlock Origin filter like:
www.blizzard.com/*
In the my-ublock-backup_DEFAULT.txt attachment you will find that as example and you need to change it to your needs.

Also in Banking profile i use the following uBlock Origin filter (remember that you need my config as this doesn't work with default uBlock Origin config!):
HTTP://*^$all
which block every HTTP content (not even JavaScript) which you can see in the my-ublock-backup_BANKING.txt attachment.

The my-umatrix-backup_DEFAULT.txt is builded for maximum web compatibility while provide maximum privacy and security.

In the Local profile no addons are needed, as only very few sites are needed and JavaScript is disabled by default with nativ management so even open "wrong" sites isn't a problem as scripts are not enabled.

TL;DR:
This is a very easy and native solution if the config is once done, but of course user's still need to watch what they're doing - even if such a solution is very hardened and should defend against common attacks.
Have fun!
 

Attachments

  • my-ublock-backup_BANKING.txt
    2.8 KB · Views: 186
  • my-umatrix-backup_DEFAULT.txt
    4 KB · Views: 202
  • my-ublock-backup_DEFAULT.txt
    3 KB · Views: 244

gonza

Level 1
I use my browsers like this. Firefox with containers and Edge with profiles. With Edge, you can pin different profiles to the taskbar or create shortcuts to open a profile.

Shortcut example:
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory=Default or if you want to open a different profile "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory="Profile 1"

With Vivaldi, you can create a shortcut from the profile menu.
 

Attachments

  • Example.png
    Example.png
    22.2 KB · Views: 139

security123

Level 27
Verified
Here a big update with less hassle!:
Important: This setup is build for using NextDNS as DNS provider!

Changes to Default:
# Addons: AdGuard from Microsoft Store
# in Edge permissions -> Popups and redirection add http://* to block list
# in Edge permissions -> Serial ports: disable
# in Edge permissions -> JavaScript: enable + add http://* to black list
[only if external PDF reader is used!] # in Edge permissions -> PDF documents: enable "Always open PDF files externally"

Changes to Banking:
# Addons: none
# Privacy in Edge settings to: balanced
# block all cookies by default and allow only needed sites
# blocking all HTTP content: not needed anymore

Local:
# DnT header in Edge settings: enable


My AdGuard config is added below as attachment.
It has the following settings (all other are disabled or not changed!):
- Update interval of the filters: 1 hours
- Filter: AdGuard Base filter & AdGuard Tracking Protection filter & Top3000 & Top500 from Kees1958
- Tarn mode: "on", "Hide your search queries", "Remove Tracking Parameters"
- Other: "Activate integration mode", "Send statistics on the use of ad filters", "Display the number of blocked ads on the AdGuard extension icon", "Notify me of extension updates"
Also in Edge extension settings (edge://extensions/) allow AdGuard running in InPrivate sessions

20200807_195931_adg_ext_settings_3.4.31.json.txt (remove .txt at the end!)
 

Attachments

  • 20200807_195931_adg_ext_settings_3.4.31.json.txt
    1.1 KB · Views: 138

Lenny_Fox

Level 15
Verified
@security123 Nice setup (y)

I run a default Edge profile for banking & buying and a nearly all deny or bock for searching & surfing. The banking & buying only uses the extensions
Blank new tab and Trustpilot, the Searching & surfing Blank New Tab, Adblock for Youtube and uBlock with Kees1958 top3000 and My Filters simular to yours and dynamic filtering allowing 3p-scripts and frames only from nl, uk, com, io, org and net top level domains.

I really like the concept of applying differnt profiles for different browsing purposes.
 
Last edited:

security123

Level 27
Verified
Trustpilot, the Searching & surfing Blank New Tab, Adblock for Youtube and uBlock with Kees1958 top3000 and My Filters simular to yours and dynamic filtering allowing 3p-scripts and frames only from nl, uk, com, io, org and net top level domains.
Can't find Trustpilot in Edge Store.

I reduce my setup from uBlock Origin & uMatrix in past to AdGuard and also use now NextDNS which block most stuff and also can block whole TLD's. Much less hassle :)
 

Lenny_Fox

Level 15
Verified
Trustpilot from chrome store. I also switch from Adguard (with stealth mode) and uBlock (with block popunders = block cresting new tabs for some bad behaving websites using script based popups)
 

Vitali Ortzi

Level 20
Verified
In the top right in ChromiumEdge you can click the avatar and switching between profiles is possible without problems. So why i say that?
Because of this easy solution, you can isolate Websites in a own, real Container and Websites can't read your private data!

I make 3 different profiles:
# Default - which is the default ones obviously and only used for Surfing
# Banking - which is only used for Banking and Shopping
# Local - which is only for local sites like Router, PiHole, NAS, ...

Based on some threads and own research, here how i set it up:
Default:
# Addons: ClearURLs + ublock Origin + uMatrix (all from Google Store because of faster updates and i don't know the WindowsStore uBlock Origin dev)
# Strict Privacy in Edge settings
# DnT header in Edge settings
# Cache cleaning in Edge settings
# no website navigation error help in Edge settings
# PuP & SmartScreen enabled in Edge settings
# block 3th party cookies in Edge settings
# block plug-ins outside of sandbox in Edge settings
# block payment provider in Edge settings
# block USB access in Edge settings

Banking:
# uBlock Origin from Google (from Google Store because of faster updates and i don't know the WindowsStore uBlock Origin dev)
# Strict Privacy in Edge settings
# DnT header in Edge settings
# Cache & history cleaning in Edge settings
# no website navigation error help in Edge settings
# PuP & SmartScreen enabled in Edge settings
# block 3th party cookies in Edge settings
# JavaScript disabled by default in Edge settings
# block automatic downloads in Edge settings
# block plug-ins outside of sandbox in Edge settings
# block payment provider in Edge settings
# block USB access in Edge settings
# blocking all HTTP content (not even JavaScript) with uBlock Origin

Local:
# no addons
# Strict Privacy in Edge settings
# No DnT header in Edge settings
# no browser cleaning in Edge settings
# no website navigation error help in Edge settings
# PuP & SmartScreen enabled in Edge settings
# block 3th party cookies in Edge settings
# JavaScript disabled by default in Edge settings
# block automatic downloads in Edge settings
# block plug-ins outside of sandbox in Edge settings
# block payment provider in Edge settings
# block USB access in Edge settings

Also all profiles use the same configured Edge flags, which you can read about at Microsoft Edge - Chromium-Edge Flags

Now you maybe wonder what happend if you open a site in a "wrong" profile. Well, we can block whole sites in uBlock Origin ;)
For that, we just need to add own uBlock Origin filter like:
www.blizzard.com/*
In the my-ublock-backup_DEFAULT.txt attachment you will find that as example and you need to change it to your needs.

Also in Banking profile i use the following uBlock Origin filter (remember that you need my config as this doesn't work with default uBlock Origin config!):
HTTP://*^$all
which block every HTTP content (not even JavaScript) which you can see in the my-ublock-backup_BANKING.txt attachment.

The my-umatrix-backup_DEFAULT.txt is builded for maximum web compatibility while provide maximum privacy and security.

In the Local profile no addons are needed, as only very few sites are needed and JavaScript is disabled by default with nativ management so even open "wrong" sites isn't a problem as scripts are not enabled.

TL;DR:
This is a very easy and native solution if the config is once done, but of course user's still need to watch what they're doing - even if such a solution is very hardened and should defend against common attacks.
Have fun!
For banking don't use any extension even a trusted one like ublock origin .
Since you can't defend your machine in case the dev gets hacked somehow and updates a malicious extension or a user mistakingly installs a fake copycat extension bundled with spyware with similar name .
 

security123

Level 27
Verified
For banking don't use any extension even a trusted one like ublock origin .
Since you can't defend your machine in case the dev gets hacked somehow and updates a malicious extension or a user mistakingly installs a fake copycat extension bundled with spyware with similar name .
You quote my old guide. Look at the new one ;)