Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[CONTENT-CHANGE] Privacy Respecting Software > Browser Extensions > Provider #15

Closed
atomGit opened this issue Apr 11, 2022 · 2 comments
Closed
Assignees
Labels
enhancement New feature or request

Comments

@atomGit
Copy link

atomGit commented Apr 11, 2022

given our previous exchange regarding Firefox, i might suggest cleaning up/removing/rewording the following extensions (for FF specifically... i don't know, nor care, about chrome)

this is assuming a privacy/security user.js is being used (arkenfox)...

  • Privacy Badger - raises entropy
  • HTTPS Everywhere - not needed
  • Firefox Multi-Account Containers/Temporary Containers - there are use cases for these, but for the average person, probably not ??? fingerprinting and isolation is covered by RFP and ETP/dFPI
  • Canvas Fingerprint Blocker - covered by RFP
  • First Party Isolation - obsolete - replaced by ETP/dFPI - no ext. needed
  • LocalCDN/Decentraleyes - still useful speed-wise, but FF now strips some of the identifying info from these requests i'm told, plus ETP/dFPI isolates this stuff
  • Vanilla Cookie Manager - probable useless for most people, plus it hasn't been updated in 7 years (there are better storage managers, but all are largely obsolete) - handled with ETP/dFPI
  • Privacy Essentials - this could possibly raise entropy - personally not a fan of fluff like this, plus the code would have to be checked, plus much/all of this is handled by FF, arkenfox, RFP, dFPI - less is more
  • Self-Destructing Cookies - same opinion as Vanilla Cookie Manager
  • Site Bleacher - not needed - ETP/dFPI, RFP
  • User Agent Switcher - raises entropy, though there are some instances where one might want to spoof the UA (note that very few of these "spoofers" address the JS UA)
  • PrivacySpy - looks like it may be injecting into pages, not sure - also it's easy to detect crap privacy policies... the page has a scroll bar :)
    "web_accessible_resources": [
        "icons/privacyspy-96-dark.png"
    ]
  • HTTPZ - as mush as like the work by @claustromaniac, this is no longer needed
  • Track Me Not - that's a no-no - covered by RFP, ETP/dFPI
  • AmIUnique Timeline - hmmm... a fluff piece i think, plus many/most fingerprint detection sites don't work properly at all according to the arkenfox crew (pants)
  • Netcraft Extension - i'm skeptical - first of all, i think anyone that cares about privacy is going to be nuking JS globally (uBO anyone?) and allowing per-site - potentially odd and conflicting privacy policies here and here

this caught my attention...

The Extension collects the following information:

Web sites (not URLs) visited...
Where a web site loads malicious JavaScript...
The Extension does not collect any personal information except that described above. In particular, we do not collect personal information which can identify the browsing habits of individual users.

and then...

You have a right to access the personal information held about you. To obtain a copy of the personal information we hold about you, please mail us at toolbar@netcraft.com.

how would they know how to correlate PII with a user if they collect none? interesting

@atomGit atomGit added the enhancement New feature or request label Apr 11, 2022
@atomGit
Copy link
Author

atomGit commented Apr 11, 2022

maybe it'd be best/easiest just to add a note regarding the most of above... like 'don't use these if using arkenfox'

in that case the list of candidates for removal changes ...

  • HTTPS Everywhere
  • First Party Isolation
  • Vanilla Cookie Manager - needs to be replaced with something better like Cookie AutoDelete
  • HTTPZ

@Lissy93
Copy link
Owner

Lissy93 commented Jul 10, 2022

I'm moving the software section to a separate repo, so I can better manage the two lists.
So I'll address this, and your other issues this week :)
Sorry for the long delay, everything in life always seems to kick off at the same time..

@Lissy93 Lissy93 transferred this issue from Lissy93/personal-security-checklist Jul 10, 2022
Lissy93 added a commit that referenced this issue Jan 14, 2023
* Change weather to whether

* Remove track ref

- Links with referential content may violate privacy. so i removed it

* Adds automations to notify if domain expiring

* Updates browser extensions, F-Droid, Thunderbird

Closes #15 Closes #16 Closes #17 Closes #18

* Adds plaintext accounting tools (#14)

* Adds OVPN under VPNs (#12)

* Adds Code Hosting under Development (#6)

* Typo fixes

* Fix my own typo

* Couple more typos

* Typos

* The last typos

* Fixes title in amendment issue template

* Fixes typo, CalmAV →ClamAV (#31)

Fixes #31

* fix very small typo on ScriptSafe extension

yo - > to

* Adds age under File Encryption (#32)

Fixes #32

* Updates contributor SVG

* Updates contributors list

* Renames master branch to main

* feat: add Vikunja

* Fixed spelling of Krita and edited VM description

Fixed the spelling of Krita. I also edited the description for the Virtual Machine section to say "virtual machine (VM)" instead of just "VM".

* Updates contributors list

* Updates contributor SVG

* Creates action for PDF compilation

* Update compile-pdf.yml

* Update compile-pdf.yml

* Adds git push for pdf

* Update compile-pdf.yml

* Generate PDF file

* Add action to check spelling for PRs

* Update spell checker to cover all files

* Adds action for easier rebasing of PRs

* Move Bromite to Browsers table

The table does not include any mobile browsers. Some should probably be included.

* Adds  Logseq under Digital Notes (#40)

Fixes #40

* Move & expand on SearX in Search Engines

Mention SearXNG, split out from main mentions

* Fix typo (FairMail to FairEmail)

Change FairMail to FairEmail

* Adds relevent info link to Extensions

Adds link to page on arkenfox wiki about extensions

* Adds Insular to Mobile Apps

Insular is another sandboxing app

* Tweak Org Mode section

Expands upon and fixes the previous not-too-accurate description

* Fix it's vs its

* Removed uMatrix from Browser Extensions, as unmaintained

uMatrix is [no longer maintained](uBlockOrigin/uMatrix-issues#291 (comment)).

* fix links

* Add utm

* Light works is **not** open source

* Adds action to validate issue title

* Adds missing blank space after VM --> UTM

* Added servers guru

* [FIX] typos

* Update Ricochet messaging app

* Add Prosody, jsxc, xmpp-web to Self-Hosted Svc

- Fix "XMP" -> "XMPP"
- Remove project Candy, seems dead since 2020: candy-chat/candy#519

* Added photoprism entry in two bonus sections

Closes #60

* Changed capitalization

Changed the capitalization of the photoprism Bonus #5 entry for consistency

* Reverting mistake

Deleted a line by mistake, reverted.

* Use only issues for ticket-check trigger

* Update LocalCDN link

- The project has archived their gitlab repository and moved to
codeberg.org

* Fixes the links in the PR template

* Adds action to prevent un-named PRs

* Adds SpotiFlyer under Audio

* Updates order of checks

* Removes title length requirement

* Updates pinned version

* Adds check for checklist

* Automation to label PRs

* Applies brackets

* Updates conditional

* Quoted expression in PR labler

* Updates contributors list

* Updates contributor SVG

* Adds category option to PR template

* Automation for Codeberg mirror

* Changes base action for codeberg mirror

* Inserts link to Codeberg mirror

* Updates issue validator

* Updates ticket validator automation

* Adds check for issue categrory and checklist

* Delete .github/workflows/config directory

* Delete rebase-pr.yml

* Set permissions

* Rewrites the pull request validation

* Fixes default label ignore

* Fixes spelling in comments within PR template

* Updates permissions for PR validator

* Fixes workflow PR permissions

* Adds Betterbird under mail clients (#82)

Fixes #82

* Updates contributors list

* Generate PDF file

* Corrects [Searx URL]

Updates Searx Url throughout readme

* Updates contributor SVG

* Updates contributors list

* Generate PDF file

* Update README.md

Correcting the capitalisation of Bitwarden (as on their website)

* Update README.md

* Updates contributors list

* Updates contributor SVG

* Generate PDF file

* Various Typo Fixes

 - Quant -> Qwant
 - and -> an
 - Suit -> Suite
 - fre -> free
 - ). -> .

* Updates contributors list

* Generate PDF file

* Updates contributors list

* Generate PDF file

* Updates contributors list

* Generate PDF file

* Updates contributor SVG

* Updates contributors list

* Generate PDF file

* add Skiff

* correct typos

* remove pages and drive from mail section

* Updates contributors list

* Updates contributor SVG

* Generate PDF file

* Generate PDF file

* Replace RainLoop with SnappyMail due to vulnerability

* Generate PDF file

* Updates contributors list

* Generate PDF file

* Updates conflict

* Updates contributors list

* Generate PDF file

* Add Vaultwarden to Bitwarden

* Replace OTR with XMPP clients with OMEMO

* Add Movim for blogging & as XMPP web client

* Updates contributors list

* Updates contributor SVG

* Generate PDF file

* Improved information about LibreWolf

- Correct spelling
- Correct (new) homepage
- Clear up how it differs from Firefox

* Updates contributors list

* Generate PDF file

* Updates contributor SVG

* Generate PDF file

* Updates formatting on credits page

* Updates contributing info in credits page

* Updates contributors list

* Adds link to credits page

* Updates contributors list

* Generate PDF file

* Remove Vanilla Cookie Manager

See #116

* Removes andOTP from Google Alternatives

* Fixes broken link for NextCloud in Backup & Sync section

Fixes link to sync docs in the backup & sync section for NextCloud.

* Updates contributors list

* Updates contributor SVG

* Generate PDF file

* Adds Authenticator(BrowserExtension) to Essentials 2-Factor Authentication

* Add monerosms.com to virtual phone numbers

* Updates contributors list

* Updates contributor SVG

* Generate PDF file

* Updates contributors list

* Updates contributor SVG

* Generate PDF file

* Updates contributors list

* Generate PDF file

* Updates contributors list

* Generate PDF file

* Update Codeberg entry

* Updates contributor SVG

* Updates contributors list

* Generate PDF file

* Updates contributors list

* Generate PDF file

* Remove Bibliogram as it is discontinued

* Change Libreddit instance to official one

* Resolves conflicts

* Fixing typo

* At Social Networks/Other Notable Mentions added Hubzilla

Hubzilla is kind of the successor of Friendica (the original author auf Friendica went on with Hubzilla). Both systems exists together, both support the widest range of social network protocols.

* Updates contributors list

* Updates contributor SVG

* Generate PDF file

* Writes an about page

* Updates contributors list

* Updates contributor SVG

* Generate PDF file

Co-authored-by: Kieran <kieranrobson1999@gmail.com>
Co-authored-by: 0x0102121wqs <108590577+0x0102121wqs@users.noreply.github.com>
Co-authored-by: Alicia Sykes <alicia@omg.lol>
Co-authored-by: cole <40342475+colenh@users.noreply.github.com>
Co-authored-by: liss-bot <liss-bot@d0h.co>
Co-authored-by: kolaente <k@knt.li>
Co-authored-by: NylaTheWolf <41797151+NylaTheWolf@users.noreply.github.com>
Co-authored-by: Lilith <78992082+lilithium-hydride@users.noreply.github.com>
Co-authored-by: Maksim Ploski <50287455+plplmax@users.noreply.github.com>
Co-authored-by: A-childs-encyclopedia <abdhllah005@gmail.com>
Co-authored-by: Slade <secher.guillaume@protonmail.com>
Co-authored-by: pnxdxt <paul.nodet@gmail.com>
Co-authored-by: Guillaume <ltGuillaume@users.noreply.github.com>
Co-authored-by: kerbless <kerbless@protonmail.com>
Co-authored-by: Gusted <williamzijl7@hotmail.com>
Co-authored-by: Wesley-Ryan <69822796+Wesley-Ryan@users.noreply.github.com>
Co-authored-by: James Cridland <james@cridland.net>
Co-authored-by: jxhn <1396009+jxhn@users.noreply.github.com>
Co-authored-by: Andrew Milich <milichab@gmail.com>
Co-authored-by: alex <37013819+baddate@users.noreply.github.com>
Co-authored-by: Alex Ogden <1379601+AlexOgden@users.noreply.github.com>
Co-authored-by: Ash Scott <AshboDev@users.noreply.github.com>
Co-authored-by: mrpavan <mr.pavan@gmail.com>
Co-authored-by: Kevin F <beardog@mailbox.org>
Co-authored-by: magical-heyrovsky <101060148+magical-heyrovsky@users.noreply.github.com>
Co-authored-by: Sam Al-Sapti <sam@sapti.me>
Co-authored-by: GhoulBoii <78494833+GhoulBoii@users.noreply.github.com>
Co-authored-by: Tim Schlotfeldt <ts+github@ml.tschlotfeldt.de>
Lissy93 added a commit that referenced this issue Mar 4, 2023
* Change weather to whether

* Remove track ref

- Links with referential content may violate privacy. so i removed it

* Adds automations to notify if domain expiring

* Updates browser extensions, F-Droid, Thunderbird

Closes #15 Closes #16 Closes #17 Closes #18

* Adds plaintext accounting tools (#14)

* Adds OVPN under VPNs (#12)

* Adds Code Hosting under Development (#6)

* Typo fixes

* Fix my own typo

* Couple more typos

* Typos

* The last typos

* Fixes title in amendment issue template

* Fixes typo, CalmAV →ClamAV (#31)

Fixes #31

* fix very small typo on ScriptSafe extension

yo - > to

* Adds age under File Encryption (#32)

Fixes #32

* Updates contributor SVG

* Updates contributors list

* Renames master branch to main

* feat: add Vikunja

* Fixed spelling of Krita and edited VM description

Fixed the spelling of Krita. I also edited the description for the Virtual Machine section to say "virtual machine (VM)" instead of just "VM".

* Updates contributors list

* Updates contributor SVG

* Creates action for PDF compilation

* Update compile-pdf.yml

* Update compile-pdf.yml

* Adds git push for pdf

* Update compile-pdf.yml

* Generate PDF file

* Add action to check spelling for PRs

* Update spell checker to cover all files

* Adds action for easier rebasing of PRs

* Move Bromite to Browsers table

The table does not include any mobile browsers. Some should probably be included.

* Adds  Logseq under Digital Notes (#40)

Fixes #40

* Move & expand on SearX in Search Engines

Mention SearXNG, split out from main mentions

* Fix typo (FairMail to FairEmail)

Change FairMail to FairEmail

* Adds relevent info link to Extensions

Adds link to page on arkenfox wiki about extensions

* Adds Insular to Mobile Apps

Insular is another sandboxing app

* Tweak Org Mode section

Expands upon and fixes the previous not-too-accurate description

* Fix it's vs its

* Removed uMatrix from Browser Extensions, as unmaintained

uMatrix is [no longer maintained](uBlockOrigin/uMatrix-issues#291 (comment)).

* fix links

* Add utm

* Light works is **not** open source

* Adds action to validate issue title

* Adds missing blank space after VM --> UTM

* Added servers guru

* [FIX] typos

* Update Ricochet messaging app

* Add Prosody, jsxc, xmpp-web to Self-Hosted Svc

- Fix "XMP" -> "XMPP"
- Remove project Candy, seems dead since 2020: candy-chat/candy#519

* Added photoprism entry in two bonus sections

Closes #60

* Changed capitalization

Changed the capitalization of the photoprism Bonus #5 entry for consistency

* Reverting mistake

Deleted a line by mistake, reverted.

* Use only issues for ticket-check trigger

* Update LocalCDN link

- The project has archived their gitlab repository and moved to
codeberg.org

* Fixes the links in the PR template

* Adds action to prevent un-named PRs

* Adds SpotiFlyer under Audio

* Updates order of checks

* Removes title length requirement

* Updates pinned version

* Adds check for checklist

* Automation to label PRs

* Applies brackets

* Updates conditional

* Quoted expression in PR labler

* Updates contributors list

* Updates contributor SVG

* Adds category option to PR template

* Automation for Codeberg mirror

* Changes base action for codeberg mirror

* Inserts link to Codeberg mirror

* Updates issue validator

* Updates ticket validator automation

* Adds check for issue categrory and checklist

* Delete .github/workflows/config directory

* Delete rebase-pr.yml

* Set permissions

* Rewrites the pull request validation

* Fixes default label ignore

* Fixes spelling in comments within PR template

* Updates permissions for PR validator

* Fixes workflow PR permissions

* Adds Betterbird under mail clients (#82)

Fixes #82

* Updates contributors list

* Generate PDF file

* Corrects [Searx URL]

Updates Searx Url throughout readme

* Updates contributor SVG

* Updates contributors list

* Generate PDF file

* Update README.md

Correcting the capitalisation of Bitwarden (as on their website)

* Update README.md

* Updates contributors list

* Updates contributor SVG

* Generate PDF file

* Various Typo Fixes

 - Quant -> Qwant
 - and -> an
 - Suit -> Suite
 - fre -> free
 - ). -> .

* Updates contributors list

* Generate PDF file

* Updates contributors list

* Generate PDF file

* Updates contributors list

* Generate PDF file

* Updates contributor SVG

* Updates contributors list

* Generate PDF file

* add Skiff

* correct typos

* remove pages and drive from mail section

* Updates contributors list

* Updates contributor SVG

* Generate PDF file

* Generate PDF file

* Replace RainLoop with SnappyMail due to vulnerability

* Generate PDF file

* Updates contributors list

* Generate PDF file

* Updates conflict

* Updates contributors list

* Generate PDF file

* Add Vaultwarden to Bitwarden

* Replace OTR with XMPP clients with OMEMO

* Add Movim for blogging & as XMPP web client

* Updates contributors list

* Updates contributor SVG

* Generate PDF file

* Improved information about LibreWolf

- Correct spelling
- Correct (new) homepage
- Clear up how it differs from Firefox

* Updates contributors list

* Generate PDF file

* Updates contributor SVG

* Generate PDF file

* Updates formatting on credits page

* Updates contributing info in credits page

* Updates contributors list

* Adds link to credits page

* Updates contributors list

* Generate PDF file

* Remove Vanilla Cookie Manager

See #116

* Removes andOTP from Google Alternatives

* Fixes broken link for NextCloud in Backup & Sync section

Fixes link to sync docs in the backup & sync section for NextCloud.

* Updates contributors list

* Updates contributor SVG

* Generate PDF file

* Adds Authenticator(BrowserExtension) to Essentials 2-Factor Authentication

* Add monerosms.com to virtual phone numbers

* Updates contributors list

* Updates contributor SVG

* Generate PDF file

* Updates contributors list

* Updates contributor SVG

* Generate PDF file

* Updates contributors list

* Generate PDF file

* Updates contributors list

* Generate PDF file

* Update Codeberg entry

* Updates contributor SVG

* Updates contributors list

* Generate PDF file

* Updates contributors list

* Generate PDF file

* Remove Bibliogram as it is discontinued

* Change Libreddit instance to official one

* Resolves conflicts

* Fixing typo

* At Social Networks/Other Notable Mentions added Hubzilla

Hubzilla is kind of the successor of Friendica (the original author auf Friendica went on with Hubzilla). Both systems exists together, both support the widest range of social network protocols.

* Updates contributors list

* Updates contributor SVG

* Generate PDF file

* Writes an about page

* Updates contributors list

* Updates contributor SVG

* Generate PDF file

* Adds Budzet Zen to Budgeting Tools (#149)

* Add Budget Zen - End-to-End Encrypted Budget/Expense Manager

Full disclosure: I'm the author of [Budget Zen](https://budgetzen.net).

Budget Zen 2.0 is end-to-end encrypted via [userbase](https://userbase.com). You can read more about [that announcement here](https://news.onbrn.com/announcing-budget-zen-2.0-end-to-end-encrypted).

It's also Open Source (AGPL 3.0), and you can [view the source code in GitHub](https://github.com/BrunoBernardino/budgetzen-web).

* Updates BudgetZen

Moves to notable mentions until the project is more mature

Co-authored-by: Alicia Sykes <alicia@omg.lol>

* Updates contributors list

* Updates contributor SVG

* Generate PDF file

* Updates contributors list

* Generate PDF file

* Updates Enigmail information and Removes TorBirdy (#153)

* Updates Enigmail entry - removes support for Thunderbird and corrects typo.

* Removes TorBirdy - dead project

* fix: remove silence (#154)

* Syncs contributors from upstream

* Updates contributors list

* Updates contributor SVG

* Generate PDF file

* Updates contributors list

* Generate PDF file

* Put Matrix where it belongs, since it isn't a P2P messenger (#155)

* Generate PDF file

* Delete SecureDNS (#156)

SecureDNS not available after 30 April 2020: https://web.archive.org/web/20200420100210/https://securedns.eu/

* Updates contributors list

* Updates contributor SVG

* Generate PDF file

* Generate PDF file

---------

Co-authored-by: Kieran <kieranrobson1999@gmail.com>
Co-authored-by: 0x0102121wqs <108590577+0x0102121wqs@users.noreply.github.com>
Co-authored-by: Alicia Sykes <alicia@omg.lol>
Co-authored-by: cole <40342475+colenh@users.noreply.github.com>
Co-authored-by: liss-bot <liss-bot@d0h.co>
Co-authored-by: kolaente <k@knt.li>
Co-authored-by: NylaTheWolf <41797151+NylaTheWolf@users.noreply.github.com>
Co-authored-by: Lilith <78992082+lilithium-hydride@users.noreply.github.com>
Co-authored-by: Maksim Ploski <50287455+plplmax@users.noreply.github.com>
Co-authored-by: A-childs-encyclopedia <abdhllah005@gmail.com>
Co-authored-by: Slade <secher.guillaume@protonmail.com>
Co-authored-by: pnxdxt <paul.nodet@gmail.com>
Co-authored-by: Guillaume <ltGuillaume@users.noreply.github.com>
Co-authored-by: kerbless <kerbless@protonmail.com>
Co-authored-by: Gusted <williamzijl7@hotmail.com>
Co-authored-by: Wesley-Ryan <69822796+Wesley-Ryan@users.noreply.github.com>
Co-authored-by: James Cridland <james@cridland.net>
Co-authored-by: jxhn <1396009+jxhn@users.noreply.github.com>
Co-authored-by: Andrew Milich <milichab@gmail.com>
Co-authored-by: alex <37013819+baddate@users.noreply.github.com>
Co-authored-by: Alex Ogden <1379601+AlexOgden@users.noreply.github.com>
Co-authored-by: Ash Scott <AshboDev@users.noreply.github.com>
Co-authored-by: mrpavan <mr.pavan@gmail.com>
Co-authored-by: Kevin F <beardog@mailbox.org>
Co-authored-by: magical-heyrovsky <101060148+magical-heyrovsky@users.noreply.github.com>
Co-authored-by: Sam Al-Sapti <sam@sapti.me>
Co-authored-by: GhoulBoii <78494833+GhoulBoii@users.noreply.github.com>
Co-authored-by: Tim Schlotfeldt <ts+github@ml.tschlotfeldt.de>
Co-authored-by: Bruno Bernardino <hey@bruno.eu>
Co-authored-by: Zhymabek Roman <61125068+ZhymabekRoman@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
enhancement New feature or request
Projects
None yet
Development

No branches or pull requests

2 participants