Advanced Plus Security Vincent Valentine Security Config - 2021

[HarborFront]

can also be done in Adguard Windows even tho I don't really see the use case of that.

CanvasBlocker can protect against the following fingerprintings

 

[HarborFront]

CanvasBlocker have some extra functions like changing user-agent that's why I am not removing it yet.

Decentraleyes just working fine even it hasn't updated for a long time so will keep it for now but will think about removing HTTPS Everywhere.

Adguard doesn't have an extensive amount of parameters compares to ClearURL, until adguard updates there parameters I will stick with ClearURL
My current adguard parameters are:

utm_source,utm_medium,utm_term,utm_content,utm_campaign,utm_referrer,yclid,gclid,fbclid,_openstat,fb_action_ids,fb_comment_id fb_action_types,fb_ref,fb_source,action_object_map,action_type_map,action_ref_map,gs_l,gs_Lcp,client,sclient,sei,gws_rd gs_gbg,gs_mss,gs_rn,ved,uact,_hsenc,_hsmi,__hssc,__hstc,hsCtaTracking,sc_campaign,sc_channel,sc_content,sc_medium,sc_outcome sc_geo,sc_country,elqTrackId,elqTrack,assetType,assetId,recipientId,campaignId,siteId,s_cid,itm_source,itm_medium,itm_campaign itm_content,itm_term,spReportId,spJobID,spUserID,spMailingID,hmb_campaign,hmb_medium,hmb_source,mkt_tok,mc_cid,mc_eid,pk_campaign pk_kwd,pk_source,pk_medium,pk_content,amp;utm_medium

You have duplicated utm_medium..............the top row 2nd item and the last row last item

You can also add some missing tracking parameters from below

Advice Request - AdGuard tweaking (Yes, I confess, I did it again, changed adblocking strategy)

Yes, I admit it is an addiction trying to get the most out of the combo DNS - Browser - Extensions, but to look at the bright side of life and put this in perspective, this is a decent addiction, does not cost me any money and does not offend people nor law. I tend to switch between...

malwaretips.com

Can consider TRACE extension in FF. With your CanvasBlocker they'll form a powerful pair against fingerprintings

Also, if you are using NextDNS (DoT) and runs with your VPN you'll face some problems because the VPN provider uses its own secure DNS. Running regular DNS with VPN should be ok but not DoT/DoH

 

[Kongo]

CanvasBlocker can protect against the following fingerprintings

View attachment 255433

I meant that Adguard Windows can also switch user agent, not that it can prevent fingerprinting.

I still don't understand why people recommend extensions to spoof fingerprints... The less extensions you use, the closer the browser is to a fresh installed one. Extensions that modify webpages in a way like CanvasBlocker does, just make your fingerprint more unique, cause the majority of people who aren't tech savvy wouldn't even touch such extensions. So you basically just put yourself in a small group of users who actually use that extension and make you more identifiable than the wide mass who doesn't use it.

Great article about the topic: How Canvas Fingerprint Blockers Make You Easily Trackable - Multilogin

 

[HarborFront]

I meant that Adguard Windows can also switch user agent, not that it can prevent fingerprinting.

I still don't understand why people recommend extensions to spoof fingerprints... The less extensions you use, the closer the browser is to a fresh installed one. Extensions that modify webpages in a way like CanvasBlocker does, just make your fingerprint more unique, cause the majority of people who aren't tech savvy wouldn't even touch such extensions. So you basically just put yourself in a small group of users who actually use that extension and make you more identifiable than the wide mass who doesn't use it.

Great article about the topic: How Canvas Fingerprint Blockers Make You Easily Trackable - Multilogin

View attachment 255461

There are 3 ways you can handle fingerprints

1) Block them
2) Randomized them
3) Fake them

You decide which to use. The article you posted talks about blocking and randomizing them which makes you outstanding from the crowd. Also, it talks of canvas fingerprinting only. There are many other types of fingerprints

 

[Kongo]

There are 3 ways you can handle fingerprints

1) Block them
2) Randomized them
3) Fake them

You decide which to use. The article you posted talks about blocking them which makes you outstanding from the crowd

Well, the extension is called CanvasBlocker, so I assumed that it's blocking them.


About randomizing fingerprints (same article):



Possible solution:

 

[HarborFront]

Well, the extension is called CanvasBlocker, so I assumed that it's blocking them.


About randomizing fingerprints (same article):

View attachment 255462

Possible solution:

View attachment 255464

CanvasBlocker – Get this Extension for 🦊 Firefox (en-US)

Download CanvasBlocker for Firefox. Alters some JS APIs to prevent fingerprinting.

addons.mozilla.org

The articles you posted want the users to fake the canvas fingerprints and change it when necessary

CanvasBlocker and Trace extensions allow the user to protect against different types of fingerprints

 

[ForgottenSeer 85179]

I meant that Adguard Windows can also switch user agent, not that it can prevent fingerprinting.

I still don't understand why people recommend extensions to spoof fingerprints... The less extensions you use, the closer the browser is to a fresh installed one. Extensions that modify webpages in a way like CanvasBlocker does, just make your fingerprint more unique, cause the majority of people who aren't tech savvy wouldn't even touch such extensions. So you basically just put yourself in a small group of users who actually use that extension and make you more identifiable than the wide mass who doesn't use it.

Great article about the topic: How Canvas Fingerprint Blockers Make You Easily Trackable - Multilogin

Useful article. Thanks!
Therefore, badness enumeration doesn't work as i wrote many times already. Same also for blocking (Ad+Tracking) content.

Nice to see people moving more to a non-extension browser config. Also, a lot of work is already done at Upstream (Browser) so user can more easily hiding in the masses.

 

[Kongo]

Useful article. Thanks!
Therefore, badness enumeration doesn't work as i wrote many times already. Same also for blocking (Ad+Tracking) content.

Nice to see people moving more to a non-extension browser config. Also, a lot of work is already done at Upstream (Browser) so user can more easily hiding in the masses.

Have to give credits to you actually, cause you made me ditch most of my extensions and made me read more into fingerprint protection. Thanks for that!

 

[Kongo]

View attachment 255465

CanvasBlocker – Get this Extension for 🦊 Firefox (en-US)

Download CanvasBlocker for Firefox. Alters some JS APIs to prevent fingerprinting.

addons.mozilla.org

The articles you posted want the users to fake the canvas fingerprints and change it when necessary

CanvasBlocker and Trace extensions allow the user to protect against different types of fingerprints

So does privacy.resistFingerprinting and the fingerprint protection which is enabled by default in the enhanced tracking protection settings.

Firefox's protection against fingerprinting | Firefox Help

Fingerprinting Protection in Firefox protects you from websites that try to identify you based on a set of unique characteristics.

support.mozilla.org

 

[HarborFront]

So does privacy.resistFingerprinting and the fingerprint protection which is enabled by default in the enhanced tracking protection settings.

Firefox's protection against fingerprinting | Firefox Help

Fingerprinting Protection in Firefox protects you from websites that try to identify you based on a set of unique characteristics.

support.mozilla.org

Yes, it does but only the below (so far) are protected

Quote from your mozilla link

However, the Canvas Permission Prompt is not the only thing that Fingerprinting Protection is doing. Fingerprinting Detection changes how you are detected online:

• Your timezone is reported to be UTC
• Not all fonts installed on your computer are available to webpages
• The browser window prefers to be set to a specific size
• Your browser reports a specific, common version number and operating system
• Your keyboard layout and language is disguised
• Your webcam and microphone capabilities are disguised
• The Media Statistics Web API reports misleading information
• Any Site-Specific Zoom settings are not applied
• The WebSpeech, Gamepad, Sensors, and Performance Web APIs are disabled

This is not an exhaustive list - other features may be altered or disabled.

Unquote

If the above overlaps into CanvasBlocker and Trace extensions then disable those in the extensions.

One example is the User-Agent in my FF v86.0.1 reported as below at browserleaks.com. So no need of any change/randomizing of User-Agent in Adguard for Windows/Trace/CanvasBlocker.

Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0

 

[ForgottenSeer 85179]

This is not an exhaustive list - other features may be altered or disabled.

The more settings you change, the more unique your configuration becomes and the easier it is for people to identify you.
Safari currently handles this best. Tor Browser developers also advise this but fail massively because of their own UI for implementation.

The browser fingerprint test pages don't work either. none of them checks real tracking which happens on the server side and therefore cannot be manipulated or blocked on the client side.

The only what you're achieve which your tweaks are crippling down your browser and browsing experience.