128
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
this post was submitted on 14 Feb 2024
128 points (98.5% liked)
Privacy
31609 readers
273 users here now
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
- Don't promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
Chat rooms
-
[Matrix/Element]Dead
much thanks to @gary_host_laptop for the logo design :)
founded 5 years ago
MODERATORS
I for one want to offer a heartfelt apology. As someone that works in this space, bots are becoming more and more sophisticated. I can't speak for Cloudflare, but we're definitely not interested in your personal information. As someone who also prefers their privacy on the web, the fact that bot signatures overlap with privacy-centric signatures sucks. I myself have experienced it on my mobile device with Ghostery. It's frustrating, I know.
Would you mind sharing the guide you used for hardening your Firefox? I'm curious to see what could potentially be triggering the issue.
Also, I just want to say, I think it's hilarious that a site blocked you but then allows you to continue browsing after changing your user agent. That right there is bot behavior.
To circle back around to the actual block, I bet changing your skin executes JavaScript which flags something from the anti-bot software.
I had my suspicions that the issues I've been running into are mostly because of the worsening botting/scraping situation, and in part due to the general very slight preferential treatment Chromium browsers get on the wider Internet, where anything weird coming from Firefox automatically looks more suspicious because it's an underrepresented browser already.
I typically just look up "Firefox Hardening Guide" and follow what looks like the best of the first few results every time I do a fresh install. Because of that, I don't know exactly which guide I followed last, but this one echoes a lot of the steps I remember taking. I've since turned webRTC back on because it kind of broke discord(... I know, I know, discord is terrible for privacy but it's where all my peeps are at!) Didn't tweak everything outlined in guides such as the one linked, but pretty much whenever there was privacy to be gained seemingly without significant website breakage, I'd toggle it.
The user agent thing was bizarre, especially since it was also on Minecraft.net! I swapped to a generic Chrome on Windows agent and it instantly started working again and let me use the site as normal again. That said the user agent thing doesn't always work... But the fact that it does sometimes may be a clue to why websites seem to hate my configuration.
Thanks for sharing that!
Truthfully, Firefox is fairly easy to detect. Several facets of the API it uses makes for quick identification. For example, Firefox should be able to report its build ID. Also, it won't report specifics about the WebGL renderer you're using like the vendor and architecture.
The link you shared is great and really highlights something I was thinking about today regarding this subject. The more you harden and change things the more you stand out. You're also more likely to trigger bot detection when you alter specifics about your browser like the major version you're on. I've seen some extensions change the user agent to much older major versions like Firefox 60. That's a big red flag.
Yes that is bizarre ๐ It's not clear to me if Microsoft is using their own anti-bot solution or a third party one, but it doesn't sound really successful with the way it's reacting.
Overall, I can't help but thinking the best route is to use the same thing as everyone else but roll your own VPN and change MAC addresses. Ideally, we would have some laws against all of this but I don't foresee that anytime soon.
I wish I could do more to help. I'm happy to answer questions you might have, though.
Mull, Librewolf, Mullvad Browser, Arkenfox user.js
Its basically privacy.resistfingerprinting, a generalized useragent, maybe blocked javascript or ads.
Late reply here too. I'm sorry about that.
You can read my comment that I made here in regards to what I think could be causing you problems.
I do take this seriously and will try to find some time to put together a configuration like this for testing, so thanks for sharing.
Librewolf + AdNauseam on linux
Apologies for the late response!
I'll echo similar thoughts to what I said in another comment. Librewolf, Mullvad, and other privacy based browsers are going to be a double-edged sword. You can take me with a grain of salt but these types of browsers actually do make you stand out in terms of fingerprinting. They have their own unique signatures, and the more you tweak the more you stand out too. Does it protect your privacy? It's really hard to tell, there's no data to suggest one way or another that I'm aware of. But, these changes are going to make you more likely to be challenged by captcha and blocked by sites in general.
I wish we didn't have to try and solve this type of problem. Privacy should be a right.