this post was submitted on 18 Feb 2025
971 points (99.3% liked)

Technology

63082 readers
3597 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
971
Digital Fingerprinting: Google launched a new era of tracking worse than cookie banners | Tuta (tuta.com)
submitted 3 days ago by misk@sopuli.xyz to c/technology@lemmy.world
236 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] Waldschrat@lemmy.world 10 points 3 days ago (2 children)

But why would any browser accept access to those metadata so freely? I get that programming languages can find out about the environment they are operating in, but why would a browser agree to something like reading installed fonts or extensions without asking the user first? I understand why Chrome does this, but all of the mayor ones and even Firefox?

[–] pound_heap@lemm.ee 17 points 3 days ago (2 children)

Because the data used in browser fingerprinting is also used to render pages. Example: a site needs to know the size of browser window to properly fit all design elements.

[–] ricecake@sh.itjust.works 2 points 2 days ago

Just for an example that isn't visible to the user: the server needs to know how it can communicate responses to the browser.
So it's not just "what fonts do you have", it also needs to know "what type of image can you render? What type of data compression do you speak? Can I hold this connection open for a few seconds to avoid having to spend a bunch of time establishing a new connection? We all agree that basic text can be represented using 7-bit ASCII, but can you parse something from this millennium?”.

Beyond that there's all the parameters of the actual connection that lives beneath http. What tls ciphers do you support? What extensions?

The exposure of the basic information needed to make a request reveals information which may be sufficient to significantly track a user.

[–] Potatar@lemmy.world 1 points 3 days ago

I fucking hate this. Let me zoom, stop reacting and centering omfg.

[–] jenesaisquoi@feddit.org 8 points 3 days ago (1 children)

Firefox has built-in tracking protection.

[–] Waldschrat@lemmy.world 9 points 3 days ago* (last edited 3 days ago) (1 children)

I know that it has that in theory, but my Firefox just reached a lower score on https://coveryourtracks.eff.org/ (which was posted in this threat, thanks!) than a Safari. Firefox has good tracking protection but has an absolute unique fingerprint, was 100% identifiable as the first on the site, as to Safari, which scored a bit less in tracking but had a not unique fingerprint.

[–] sugar_in_your_tea@sh.itjust.works 2 points 3 days ago (1 children)

Probably because Safari is default macOS and most people leave it at default settings. I doubt Apple is doing anything special here.

[–] ILikeBoobies@lemmy.ca 4 points 3 days ago

Apple is doing good on the privacy browser front because it makes the data they collect more valuable