I believe that the only two privacy extensions you really need to meet 90% of your privacy goals are uBlock origin + NoScript

uBlock origin is effective because it stops the injection of ads which might contain and inject code. NoScript forces you to look at which scripts you really need for the website to function. Say you visit a trusted site, like your lemmy instance, then you can enable running of javascript by default the next time you visit the site. You’ll be surprised how functional some sites are even without javascript. I did not like the idea of browsers having Javascript: it’s remote code execution and if there’s anything malicious in there and your browser is not patched against it you’re fucked. This way yeah it’ll be annoying when you first visit a site but it remembers your settings for the next time you visit.

  • ExtremeDullard@lemmy.sdf.org
    link
    fedilink
    arrow-up
    104
    arrow-down
    3
    ·
    8 months ago

    You don’t need Noscript anymore uBlock Origin handles everything Noscript handles and much more, and it affords more granular control.

    • LWD@lemm.ee
      link
      fedilink
      arrow-up
      22
      ·
      8 months ago

      Using Noscript eventually causes me to give up using Noscript, which is probably the one thing I was supposed to avoid…

      • DreadPotato@sopuli.xyz
        link
        fedilink
        arrow-up
        16
        ·
        8 months ago

        This was my experience as well, it was just way too inconvenient… Which is the crazy part, because it really shouldn’t be.

        • LWD@lemm.ee
          link
          fedilink
          arrow-up
          9
          ·
          8 months ago

          That’s why uBlock Origin is such a blessing: so many people have already contributed to figuring out what to block on so many websites.

    • magikmw@lemm.ee
      link
      fedilink
      arrow-up
      6
      ·
      8 months ago

      Eh you can go with a blacklist approach and try to selectively block tracking instead of whitelisting everything until a site works.

  • Ebby@lemmy.ssba.com
    link
    fedilink
    arrow-up
    25
    arrow-down
    2
    ·
    8 months ago

    I use both, but a big complaint of noscript is the inability to tell what scripts were blocked. I end up unblocking ***CDN.com or ***static.com and if that doesn’t work, check each until it does. Sort of defeats the purpose.

    I installed it on my parents computers and trying to teach them how to get necessary function working again is beyond them.

    I have instead installed privacy badger since I read it also blocks scripts.

          • ivn@jlai.lu
            link
            fedilink
            English
            arrow-up
            8
            ·
            8 months ago

            You’re right, I should have explained.

            Privacy Badger was known to be able to learn what to block but local learning could be used to fingerprint you so it was removed. Nowadays it’s only a list based blocker, while the list is still automatically generated on their side through learning it mostly overlap with regular tracking protection list used with uBlock Origin.

            They also claim other features but they are either outdated (google outgoing link protection last update is 9 months old and is based on the old url schema) or already covered by uBlock Origin (uBlock Origin can now sanitize urls with the removeparam filter, facebook outgoing link protection is included in the “AdGuard URL Tracking Protection” filter list, for third party widget blocking enable the “EasyList – Social Widgets” list).

            It’s also in Arkenfox “Don’t bother” extension list.

            Better use Firefox in strict mode with uBlock Origin.

  • Quacksalber@sh.itjust.works
    link
    fedilink
    arrow-up
    22
    arrow-down
    2
    ·
    8 months ago

    I much prefer uMatrix over NoScript, it is way more intuitive. And even though uMatrix is no longer updated, it still works better than NoScript for me. My Firefox Android has gotten soft-locked by NoScript in regular intervals. Since they enabled uMatrix for Firefox Android again, I have had no such issues.

      • Patches@sh.itjust.works
        link
        fedilink
        arrow-up
        10
        ·
        8 months ago

        Just spend hours pouring over JavaScript for every single website you ever visit. It absolutely won’t consume you, or leave you constantly frustrated with broken websites

  • delirious_owl@discuss.online
    link
    fedilink
    arrow-up
    16
    arrow-down
    4
    ·
    8 months ago

    You can still be tracked with that.

    I wouldn’t run without Chameleon set to change my borwaser properties every 60 seconds, which makes tracking fingerprinting useless.

    • PoorPocketsMcNewHold@lemmy.ml
      link
      fedilink
      arrow-up
      8
      arrow-down
      1
      ·
      8 months ago

      Actually, tracking the extremely unique individual with sometime, nonsensical features is making you hyper-easy to track on websites. Maybe it could be useful per browsing sessions, but every 60 seconds in non-sensical, a compatibility nightmare and defeat even the deception method of faking your browser features.

  • ComradeSharkfucker@lemmy.ml
    link
    fedilink
    English
    arrow-up
    8
    arrow-down
    8
    ·
    edit-2
    8 months ago

    Adnauseum is also very good, its based on ublock but instead of just blocking ads it will also randomly “click” them to add noise to advertiser data

    • ivn@jlai.lu
      link
      fedilink
      arrow-up
      1
      ·
      8 months ago

      Click fraud is a big thing with a lot of countermeasures, it’s not as easy as adnauseum pretends it is. I doubt it does anything.

      • PoorPocketsMcNewHold@lemmy.ml
        link
        fedilink
        arrow-up
        2
        ·
        edit-2
        8 months ago

        It is as effective as uBlock with the same settings. The ad-deception “auto-clicking” method shouldn’t and doesn’t have any results to the end-user as it should just confuse the ads companies themselves. Still looking forward to potential documentation on how effective it may or may not be nowadays.