@QuHno said in Worrying news about Startpage and DuckDuckGo:
@Dr-Flay I wonder why hidemysearches doesn't use POST but GET in their search form at the top of the about page and on their homepage ...
All search engine I use are put in POST, Startpage too
@quinca71 Yes almost all AV companies have something similar. I was using AVG's Rescue Disk perhaps ten years ago or more. If you use your favourite search engine for "Rescue Disk", you will find manyThey all seem to work as well as the other although some are much more user friendly than others.
I've used this one (once) and it appeared to work well and was user friendly.
This is an important feature now as most locked into Windows cannot figure out the Unix/Linux menu system.
As Rescue Disks they are separate OSes and need to be manually reconnected to the network , then the AV updated before use.
I also always Disconnect from the network when doing such a scan as this prevents any malicious code from "Calling Home" to disrupt the scan
Somehow I prefer Rescue Disks but I am used to them and I find they have more functionality and flexibility in case you need more than just a scan.
@dr-flay said in Beware of the Facebook VPN:
@anajames said in Beware of the Facebook VPN:
The reason I have never opted for a free VPN service. Free VPN service means you have to pay a price for it in some other way and that is definitely your personal data.
That is only true for totally free services. There are free VPN accounts with limited speeds, data allowance and exit nodes. They make the money with people upgrading to a premium account.
I don't need a VPN very often or for big things, so the free Avira VPN does me just fine.
Invading your privacy is not the only way to make money when offering free services. There are often paid upgrades or other products available.
If you only use a VPN in a timely manner, for example to watch a restricted video in your country, a free trusted VPN can suffice (For this, it is often enough for me to use the Startpage proxies or watch the video in its search result. For this I like Startpage), but this, many free are not, some are directly a fake, traffic with your data or they even steal bandwidth, using your IP as a server.
In the free VPN you have to be very careful, nobody gives anything for free and a server always costs money.
Always read the small letters in their conditions of service.
@greybeard said in Is Vivaldi affected? "Who Left Open The Cookie Jar?":
It seems that Chrome, Chromium, Safari, Opera and even Tor Browser (a total of "7 browsers, 31 ad blocking extensions and 15 anti-tracking extensions, the defenses put in place to prevent cookie abuse have gaps." from https://www.theregister.co.uk/2018/08/17/usenix_cookies/ )
The study done in Belgium says that the culprit is the inbred PDF reader PDFium.
JS in the PDF may trigger or trick the browser (as in the case of Cliqz to not delete Third Party Cookies.
Also they say the following privacy extensions are affected: AdBlock Plus, Disconnect, Ghostery, uBlock Origin and apparently others.
The article at the link above says it all better than I.
Here also is a link to the study:
Again Vivaldi is not mentioned so I am hoping V does not use PDFium to render PDF files.
Can anyone clarify this?
I tried the test page they have and the links for cross site tracking and Vivaldi blocked them. Seems to be OK for now, good research article.
@catweazle Yes, forgot I also use Privacy Badger. Hanven't tried nano Adblocker. I do know what Ghostery does, much like WOT, but some swear by them. Ghostery has been off my system for a while now but I did have it running with uBkock previously and that's why I decided to mentioned it.
I've never really Trusted Cloudfare. As a user only I do my best to avoid them.
I know Vivaldi uses Cloudfare... perhaps it is their best option(?).
Since I must use an IBM product (Trusteer) for banking I've tried Quad9 (mentioned above) and find it quicker than my ISP's default configuration so will stick with it. (Using OpenDNS as backup.)
@steffie said in Brave introduces private tabs with TOR:
@catweazle said in Brave introduces private tabs with TOR:
when we use the smartphone for banking
...which i will never ever ever do, & i find it astounding that so many blithely do.
So I just noticed this now on some web site, and was curious about how V even stores this password. So is this a bug and should never have shown ? Is my password being saved anywhere ?
Lol I wasn't even logged into google so I dont know how it saved with Google Smart Lock ?
I see that V has brought in all the passwords from Chrome via Smart Lock - is this also a bug ?
@bvamundsen said in Vivaldi timeliness adopting chromium security updates?:
The user string with the chromium used to build, but bracket with back-ported, if brackets are allow by the UserString standards.
That may break webpages which rely on version numbers.
On Vivaldi "About" page start a string with the base chromium built upon, plus the added brackett (back-ported) to indicate that back-ports have been applied.
A pinned page here in the Security Forum, which would show the Vivaldi Release numbers and the Chromium base used and then if any CVE's were back-ported to the Vivaldi release the CVE's applied. This page would be a best effort by someone working with the developers, so they aren't pulled away from their important work.
If you think such pageis useful and missing in Vivaldi, please make a request.
How to make a feature request for Vivaldi
If you think your problem can be solved by a missing feature, please add a request at https://forum.vivaldi.net/category/113/feature-requests in the corresponding thread for your browser version.
and send a report if your issue is so urgent.
Please read How to Report a bug for Vivaldi carefully and then report the bug to Vivaldi bugtracker.
The previous version of DNSCrypt was also available for programmable routers.
Hopefully v2 will also get round to making router builds.
v2 is still not complete, so priorities may be focused on the features first.
New Opera has had an ad-blocker for years; they also use it to block those coin mining scripts. Since it is not an extension the blocking occurs sooner in the loading process and thus is supposed to make page loading faster (according to them - I haven't timed it) ,,, and yes, you can easily turn it off or on. So maybe Google is noticing.