• Lemongrab@lemmy.one
      link
      fedilink
      arrow-up
      0
      ·
      5 months ago

      That is not true. On chrome, they could be fingerprinted using the way that extensions load remote assets (which I dont think is still possible). On Firefox, that has not been possible (maybe ever but at least for a while). The way that extensions are fingerprinted requires detecting the way they interact with the web pages DOM, which is not something many extensions do.

        • Lemongrab@lemmy.one
          link
          fedilink
          arrow-up
          1
          arrow-down
          1
          ·
          5 months ago

          The point to my original comment is fingerprint of extensions isn’t straightforward or free, ie requires intentionally designing a fingerprinting technique tailored to identify its behaviour.

          CreepJS can really only detect Chrome extensions and very few Firefox ones. On Firefox, it can detect NoScript but not uBlock for example. This isn’t to say that uBlock can’t be fingerprinted, just that it hasn’t yet in CreepJS. Some extension don’t touch the DOM at all or produce any fingerprintable behaviour to the web page, so there for can’t be detected. Some don’t produce weird behaviour until a user interacts with some element in the extension or webpage.

  • NGC2346@sh.itjust.works
    link
    fedilink
    arrow-up
    0
    ·
    edit-2
    5 months ago

    Misleading title. Using this with your day to day browser burns out any idea of anonymity.

    If you want to be safe, make a bare bone Arch Linux VM and use this extension with GNU Icecat. Also change your DNS from your ISP to something like Quad9.