hansolo

joined 1 week ago
[–] hansolo@lemmy.today 4 points 9 hours ago

Then it automatically connects for emergency calls, and ya cooked.

[–] hansolo@lemmy.today 25 points 9 hours ago

No. Full stop. No.

No device that can or should connect to the internet. At all. SD card camera at most. Leave your phone at home, charging, playing an 8 hour YT playlist to your dog.

Don't want Clearview AI destroying your life 3 months from now? Cover your full face, arms, and legs. You can and WILL be identified easily from even a partial facial image. Hat, sunglasses, bandana. Guy Fawks mask. You do you, but you have to commit to it. Don't take anything off until you are sure you're concealed and not visible from any cameras.

You are trying to casually tempt the second most advanced surveillance state on earth. There is no room for error anymore.

[–] hansolo@lemmy.today 9 points 9 hours ago (2 children)

You are not smarter than a well-resourced set of my military grade contractors that sell intel to law enforcement.

No networked devices. At all. This isn't hard! The entire Civil Rights Movement happened with zero mobile phones. You can do the same. Write important info in a notebook. SD card camera if you must.

[–] hansolo@lemmy.today 6 points 9 hours ago (2 children)

But the phone imei is still always yours. If there's a SIM in there, or it connects to a mobile service, you're cooked anyway.

[–] hansolo@lemmy.today 8 points 9 hours ago

2018-2019 is when they officially turned the corner and decided to focus only on ad revenue. But the SEO abuse dove it into the ground by 2014ish. They were making money enough to expand by orders of magnitude into other areas, so they simply didn't want to tweak their search or strategy and kill their golden goose that funded things like Good Drive and their shit social network and loon, etc.

[–] hansolo@lemmy.today 7 points 10 hours ago

Let's say you use a VPN, and all your internet traffic comes from an IP in London. 178.238.10.1.

It doesn't matter if you have a VPN, if you log in to anything with any account tied to your real name (yourname@gmail.com), your email and anything done on that London IP are all linked. Google builds a profile on you based on the activity on that IP. AND your browser profile. Private/incognito window or not, if there's a Google tracker on the site, they connect it all. Google doesn't care about private windows. If you go to reddit in a private window on the same IP as your gmail, Google sees that and tracks every page you look at.

So let's say that you log into your email from work. Google now has a treasure trove of new info about you and people you know. Same for FB, who uses the fact that you and someone else were logged on from the same IP range to suggest new friends.

Let's pretend that you live in China and still have access to a VPN and want to learn about the Tienanmen Square Massacre. But the government can ask Google about you. What do you need?

  • an IP never ever used with an account associated with an account with your real name.
  • a no-log VPN that won't tattle on you if asked what sites did you access on a specific date.
  • a browser fingerprint never ever associated with an account tied to your real name.
[–] hansolo@lemmy.today 29 points 16 hours ago* (last edited 15 hours ago) (2 children)

Since January Google has been using browser fingerprinting and IP triangulation to track across incognito windows.

Meta wants in the game as well. Nothing done on a phone with Meta apps is done in isolation.

Edit: seems like only vanilla mobile browsers affected. Brave was not vulnerable, DDG minimally so, and I expect Iron/Waterfox with uBlock would also not have allowed tracking.

https://securityonline.info/androids-secret-tracking-meta-yandex-abused-localhost-for-user-data/

[–] hansolo@lemmy.today 2 points 16 hours ago

No, you use one as the backup. That's why I said use JShelter, but if a site breaks beyond use, switch IPs and then reload with NoScript instead to be more selective of what is blocked and what's not. That way I can still block Cloudflare and Google and Apple and still let the actual site load. And JScreep seems (for me, YMMV) to treat each as distinct fingerprints.

IMO if you know you can have multiple fingerprint profiles anyway based on which combo of extensions you use that do roughly the same job, that's a net benefit.

[–] hansolo@lemmy.today 7 points 1 day ago (2 children)

The why is browser fingerprinting. Which Google started using as of January to track everyone.

https://abrahamjuliot.github.io/creepjs/

So if you go to ANY page with Google trackers, even in private mode, Google knows.

[–] hansolo@lemmy.today 3 points 1 day ago

For vanilla FF I use multi - account containers, uBlock, and privacy badger.

For other FF forks like Librewolf, I get more blocky, like JShelter, a random agent switcher, and if that breaks a site beyond use I try Chameleon and NoScirpt.

[–] hansolo@lemmy.today 21 points 1 day ago (7 children)

It is, but it's a use case that has a shitload of money behind it.

Do you know why we have had reliable e-commerce since 1999? Porn websites. That was the use case that pushed credit card acceptance online.

The demand is so huge that firms would rather stumble a bit at first to save huge amounts for a bad but barely sub-par UX.

[–] hansolo@lemmy.today 3 points 1 day ago (1 children)

Holy shit. Yes, it does. Thanks! Hadn't heard of it until today

view more: next ›