1. 42
  1.  

  2. 9

    Decentraleyes is not really supported anymore. CDNs are harmful and so more people should be migrating off anyhow.

    CleanURLs does a more for stripping tracking tokens, but even it can be replaced with uBlock Origin.

    A lot of the upcoming (or already here?) domain isolation code obsolesces this ‘style’ of container usage. What you really want containers for is say you do contract work with many clients and you need to keep all of its work isolated. Or you need multiple accounts for a service that doesn’t support logging in under two accounts.

    1. 14

      Firefox’s “total cookie protection” (formerly known as “(dynamic) first party isolation”) is doing proper storage isolation that obsoletes the privacy aspects of using containers. It’s doing so by double-keying storage like cookies not just based on the site’s domain but also on the first-party domain (i.e., what’s in the address bar). This makes facebook.com (when top-level page) not share cookies with “facebook.com widget when embeddeed in foo.com)

      However, if you want to use two logins of the same site (e.g., personal gmail, work gmail) then containers are still really nice.

      1. 2

        So you think using temporary containers with new domains opening in a new temporary container is not worth the effort?

        It runs pretty well now except for Gmail and Outlook.

        1. 1

          I have a personal preference to remove customization and complexity over time. If it works for you, keep doing it.

          Temporary containers will obviously lose and reduce state more thoroughly. Built-in “total cookie protection” might be a bit more convenient though.

      2. 1

        Thanks for the input.

        I’ve still found Decentraleyes quite effective, I have been meaning to look at LocalCDN as an alternative - I’ve added mention of that to my post. CDNs aren’t going away any time soon and are often a good thing - but I don’t want random fonts loading from around the internet just so they can track me etc…

        Good idea re: using ublock rules to perform the same behaviour as CleanURLs - I’ll look into that!

        1. 2

          In my case LocalCDN broke a couple of websites instead of giving out solutions.

          Take a read at https://blog.privacyguides.org/2021/12/01/firefox-privacy-2021-update/#localcdn-and-decentraleyes though. tl;dr is that you shouldn’t worry about tracking if you have Enhanced Tracking Protection set to Strict.

          1. 1

            Interesting! Thank you, I’ll make a note of this.

          2. 1

            CDNs good thing

            I agree with the premise behind this post. As far as fonts, blocking Google Fonts specifically covers a majority of my concern. I’ve taken this all personally and all projects I’ve contracted, I pushed for removing CDNs where possible. Self-hosted assures better tree-shaking and that the user will get the content they seek with increased privacy and the content is less likely to be blocked and if our server is down, there’s bigger problems.

            If I were to suggest additional add-ons::

            • Redirect AMP to HTML
            • Mailvelope
            • Geo URI Handler
        2. 4

          As an alternative to needing containers for sites, folks might want to consider using about:config’s privacy.firstparty.isolate which runs each ~site in its own isolated container.

          This provides the same isolation benefits as FF containers, but saves you having to create/manage/open containers. As an example, if you log into facebook.com, then visit messenger.com, messenger.com won’t be aware of your facebook.com session.

          See also: privacy.resistFingerprinting.

          1. 1

            Thanks - privacy.firstpary.isolate looks interesting - I’ll try that out, I’m actually already using privacy.resistFingerprinting, I’ve added that to the post.

          2. 4

            My favorite new extension is Wikipedia Anywhere. Highlight any text, see the wiki article.

            1. 1

              This is probably specific to language learners but on a similar note, I highly recommend Reverso Context’s addon for translation. It’s just a shame there’s no obvious equivalent on mobile.

            2. 3

              Instead of “copy plain text”, you might want to PASTE plain-text, which should work without an addon:

              • Copy something with formatting
              • Navigate to a content sink
              • Paste with SHIFT pressed (e.g., CTRL+SHIFT+V on Linux/Windows or CMD+SHIFT+V on macOS)
              1. 3

                Thanks, I do use CMD+Shift+Option+V at times, but it’s awkward and I just prefer it if everything I copy is plain text by default.

              2. 3

                Is there a good extension already that can “Disagree All / Only essential” on these new cookie compliance popups?

                1. 4

                  I find uBlock Origin gets rid of 90% of them with this rule list - https://github.com/easylist/easylist/blob/master/easylist_cookie/README.md

                  1. 3

                    Subscribed. Thanks!

                    P.S. for anyone reading, just go to https://easylist.to/

                  2. 4

                    Try Consent-O-Matic, it works on the most annoying, though sadly not all, cookie popups. You can set which categories you want to consent to and the addon specifically only agrees to those for you.

                    1. 3

                      Using “Cookie AutoDelete” and “I don’t care about cookies” addons at the same time is doing it for me.

                      1. 2

                        i use an addon called “i don’t care about cookies”, it gets rid of almost all banners

                        1. 1

                          Super Agent does this. It’s pretty good but it broke enough sites I stopped using it. (I have very low patience for this kind of problem.) https://www.super-agent.com/

                        2. 2

                          If you’re going to get into containers, I would pair multi-account containers with https://addons.mozilla.org/en-US/firefox/addon/temporary-containers/. You can set this up so that each tab opens in a fresh (new) container, but you can also configure it so some sites have a persistent container. I tend to do this for things I frequent (e.g., GitHub), but for a lot of other things I just log-in as I need to.

                          1. 2

                            When I tried temporary-containers, it created hundreds of temporary containers which were visible in my containers. It made it really difficult to use other container based extensions.

                          2. 2

                            What is the password manager that folks here use? Is there one recommended by Mozilla?

                            1. 2

                              I’ve always liked and recommended 1Password as it’s had the best UI, features and independent security audits - BUT - as of 1Password 8 they’ve moved from a native application to an Electron webapp which isn’t only bad for performance - but Electron is one of the last pieces of software I’d want handling secrets, it’s not even sandboxed!

                              A lot of people have been switching to Bitwarden - but that has the same problem - the desktop “app” is Electron as well.

                            2. 2

                              Why is there a container addon needed for every site?

                              1. 1

                                Because Firefox doesn’t have a single addon that manages containers for multiple sites.

                                1. 3

                                  Isn’t that what multi account containers do?

                                  1. 1

                                    Nah they just enable containers, then you have to configure containers (as addons)

                                    1. 2

                                      You can create a container for each site, isn’t that what the other extensions do anyway?

                                      1. 1

                                        Yeah but it doesn’t remember them each time you open the browser - its quite silly behaviour.

                                        1. 7

                                          You can tell Firefox to always open a specific site in a container with just the base container add-on.

                                          1. 1

                                            Oh wow they’ve fixed it! For the longest time this didn’t work. Post updated!

                                          2. 1

                                            Wat. I don’t think we’re talking about the same extension.

                                            Update: in fact I might not be talking about the same extension as OP, so, not your fault. I’ll check.

                                            Update again: nope, comment above shows I was thinking about the same extension. But hey, give it another go, now XD

                                2. 1

                                  FWIW, I’m always installing “Copy as Markdown”, and recently started liking TabStash. (Assuming NoScript and/or uBlock Origin as obvious first ones.)

                                  1. 1

                                    For people who like vertical tab trees, I’d like to throw in a vote for Sideberry. It’s similar to tree-style-tab except configuration and UI is (IMO) simpler. unfortunately it seems to have issues persisting the tree structure between browser restarts, I’m not sure if this is just my machine being weird though.

                                    1. 1

                                      I used containers for years, but now just use unlock origin in combination with https://github.com/arkenfox/user.js

                                      1. 1

                                        What I really need is a way for me to specify that a container is for a specific website only. For example, I always forget to open in a new container when using google, and with twitter, it is really hard to, and I don’t want either to track me beyond the first click.

                                        1. 1

                                          Open the site you want, click on the container tabs icon, select always open in container .

                                          1. 1

                                            I use twitter, google, stackoverflow, reddit etc. to obtain links to new and interesting websites. The problem is that, these websites are often different, and I do not visit them often enough to make it worth creating a container for them. So what I want is some ability to say: Only open google websites in the google container. For all others, which opens from some link, open in the default container. I am also fairly diligent in deleting cookies in the default container. So, opening it in default is OK with me so long as google/twitter etc. doesn’t get to track it.

                                        2. 1

                                          I use Twitter a lot, so I use “Bot Sentinel”. It’s a general “user quality measurement” to get an idea if you’re being baited in a convo or not.

                                          1. 1

                                            No NoScript?! Possibly one of the greatest security improvements to the browser?

                                            Great list nevertheless and I learned some new things.

                                            1. 1

                                              Can noscript be enabled on a container specific fashion?

                                              1. 1

                                                I do not know.

                                              2. 1

                                                Noscript is good for security - but for me it’s not worth how annoying as it breaks so many websites.

                                                1. 2

                                                  That is a question of priorities. Also, it doesn’t really break websites, just web applications in disguise … ;)

                                                  Personally, I don’t touch the web without it. It really helps you understand what people are doing, and gives fine-grained control.

                                                  Another recommended extension is jshelter.org from FSF. And saving webpages with WebMemex is just so much nicer than any of the alternatives…