Can cookie storage in `Local Storage` & `File system` be BLOCKED?
-
steffie@solydk[/tmp/vivaldi-snapshot-cache/Default] 20:19:26 Mon Jun 29 $> ls Cache 'Code Cache' steffie@solydk[/tmp/vivaldi-snapshot-cache/Default] 20:19:43 Mon Jun 29 $>
-
How about symlinking the relevant user data dirs to the tmp dir? Although I think they will lose their file handles once gone and they won't be recreated. You'd need to write a wrapper script to create and symlink them on Vivaldi launch...
Some possible flags to try:
--disable-local-storage
--disable-shared-workers
(not really sure what this is)I guess if you really hate Service Workers you could always symlink to
/dev/null
-
@Pathduck β¦or
chown root
andchmod g= o=
-
Thanks both for your replies -- not actually ignoring them per se, but atm am still distracted by some tests i've been doing in my Test profile. Am falling-over hungry for my dinner now so need to leave off here for a bit, but in essence [& with more detail to be fleshed out later]:
- Using CAD + chromium cookie settings in a specific combo subtly different to how i've been doing it in my main profile, seems so far ... repeatably ... to be achieving my goals.
More to come, later...
-
@Steffie This combo seems to be working ok, thus achieving my objective.
- This
Cookie AutoDelete
[CAD] suite ofCoreSettings
:
{ "settings": [ { "name": "activeMode", "value": true }, { "name": "cleanCookiesFromOpenTabsOnStartup", "value": true }, { "name": "contextMenus", "value": true }, { "name": "contextualIdentities", "value": false }, { "name": "debugMode", "value": false }, { "name": "delayBeforeClean", "value": 15 }, { "name": "discardedCleanup", "value": true }, { "name": "domainChangeCleanup", "value": true }, { "name": "enableGreyListCleanup", "value": true }, { "name": "enableNewVersionPopup", "value": false }, { "name": "greyCleanLocalstorage", "value": false }, { "name": "keepDefaultIcon", "value": false }, { "name": "localstorageCleanup", "value": true }, { "name": "notificationOnScreen", "value": 3 }, { "name": "showNotificationAfterCleanup", "value": false }, { "name": "showNumOfCookiesInIcon", "value": true }, { "name": "sizePopup", "value": 16 }, { "name": "sizeSetting", "value": 16 }, { "name": "statLogging", "value": true }, { "name": "whiteCleanLocalstorage", "value": false } ] }
- This CAD suite of
Expressions
:
{ "default": [ { "expression": "*.forum.manjaro.org", "listType": "WHITE", "storeId": "default", "cleanLocalStorage": false, "cookieNames": [], "id": "J207nmFkG" }, { "expression": "*.forum.vivaldi.net", "listType": "WHITE", "storeId": "default", "cleanLocalStorage": false, "cookieNames": [], "id": "v6DGRjoLd" }, { "expression": "*.manjaro.org", "listType": "WHITE", "storeId": "default", "cleanLocalStorage": false, "cookieNames": [], "id": "UfZFmN01v" }, { "expression": "*.ourguide.com.au", "listType": "WHITE", "storeId": "default", "cleanLocalStorage": false, "cookieNames": [], "id": "GuVCO1RSP" }, { "expression": "*.searx.ninja", "listType": "WHITE", "storeId": "default", "cleanLocalStorage": false, "cookieNames": [], "id": "tMH4a10ME" }, { "expression": "*.vivaldi.net", "listType": "WHITE", "storeId": "default", "cleanLocalStorage": false, "cookieNames": [], "id": "tahJ1PqHs" }, { "expression": "forum.manjaro.org", "listType": "WHITE", "storeId": "default", "cleanLocalStorage": false, "cookieNames": [], "id": "r21k-ALY5" }, { "expression": "forum.vivaldi.net", "listType": "WHITE", "storeId": "default", "cleanLocalStorage": false, "cookieNames": [], "id": "wdcGLG0XI" }, { "expression": "ourguide.com.au", "listType": "WHITE", "storeId": "default", "cleanLocalStorage": false, "cookieNames": [], "id": "w3WHqScK6" }, { "expression": "searx.ninja", "listType": "WHITE", "storeId": "default", "cleanLocalStorage": false, "cookieNames": [], "id": "DEHRHH094" } ] }
- These
chrome://settings/content/cookies
values:
Allow sites to save and read cookie data (recommended)
= Enabled
Clear cookies and site data when you quit Vivaldi
= Enabled
Block third-party cookies
= Enabled
Allow [*.]ourguide.com.au embedded on [*.]ourguide.com.au [*.]vivaldi.com [*.]vivaldi.net [*.]searx.ninja [*.]forum.manjaro.org
Note that despite it appearing to be an unnecessary duplication, i found out the hard way that if i do only #1 & 2, but omit #3's "Allow" list, i lose all my defined login states & page customisations of those particular sites at the next V launch.
I also discovered tonight why my earlier tests of CAD a few days back failed.
- I had wrongly assumed that the chromium expression syntax shown in #3, would be identical to the CAD expression syntax shown in #2, & as i have had #3 done for months & months, i initially simply copied them from chromium cookie settings page then pasted them into the CAD Settings page.
- Wrong! CAD could not read them, hence upon relaunch lost all my page status', leading me to wrongly blame CAD as a failure, when in fact it was my own error.
- Once i tonight removed those original erroneous CAD expressions then configured them "the CAD way", it worked.
Finally to mention the all-important objective of protection against those damn
Local Storage
&File system
wotsits.- My CAD CoreSettings nicely cause the "ordinary" cookies from all closed tabs [once the domain no longer exists in any open tabs] to be deleted 15" later.
- If any of those sites also had either or both of the offensive items stored, these do NOT get deleted at this point. That's a shame, but...
- ...upon V close & relaunch, they then get deleted!
- Several hours ago, highly ironically, an old thread resurfaced about some users unfortunately still getting occasional lost tab session upon launch. I made a new post mentioning that my main profile has not suffered that bug for a long time. Whilst that remains true atm tonight, my Test profile has fared worse. During my hours of testing tonight, there were three or four occasions when closing the Test profile window caused a crash during closure, & upon Test relaunch all the tabs were gone AND none of the nasty target storage cookies had been deleted by CAD. However if i then reclosed & relaunched the Test window, this time they were deleted. It seemed that each time the V window closed cleanly, CAD worked properly & upon relaunch the tabs remained whilst the nasty cookies were gone.
I have now imported my Test profile's CAD settings [per #1 & 2 above] into my main profile's CAD. Over the remainder of this week as i do all my normal daily browsing workflow, this will be the acid test for the success or not of this new paradigm.
- This
-
@Steffie Glad to hear you found a workable solution
A couple of notes:
You have "cleanLocalStorage": false" set in CAD for the domains, it won't clear this data, but since your solution still clears it along with the other nasties at restart I guess it doesn't really matter.
Clear cookies and site data when you quit Vivaldi = Enabled
I had (wrongly) assumed this was your setting all along and data was not being cleared on quit. Glad that it seems to work as advertised. I guess the above setting combined with the Allow list lets you set the domains you don't want data cleared from. If these sites also use Local Storage (etc) this will still persist, right?
Also, this will clear out your cache (apart from the allowed sites), so might have performance implications. But as long as that's what you want (and you have a fast connection) no worries.
On crashing+lost tabs: Sounds like you got quite a few of these during testing. Many users complain of the same, and if you're able to find a reproducible way of recreating such a crash, it would likely help the V team a lot if you can find the time to report it. Maybe crashes are related to messing around with the Chrome setting pages.
-
@Pathduck Ta. Only a partial response; tis v late here & i am beginning to see double...
This is what the documentation says:
Expression Options
Uncheck 'Keep LocalStorage' on New Greylist Expressions
Default: Disabled
For those who want to always default to clean LocalStorage on browser restart for that site.
Only affects NEW expressions. Existing ones will keep their current settings.
Uncheck 'Keep LocalStorage' on New Whitelist Expressions
Default: Disabled
For those who want to always default to clean LocalStorage whenever the automatic cleaning happens for that site.
Only affects NEW expressions. Existing ones will keep their current settings.Maybe i have misunderstood it? I took these to refer only to the local storage behaviour for my grey- & white-listed sites... & as such, those few are the ones that i do want to retain their cookies. Per my OP, it is all the other sites whose cookies i want to not be stored, or at least auto-removed during the session or at start of next session.
@Pathduck said in Can cookie storage in `Local Storage` & `File system` be BLOCKED?:
Clear cookies and site data when you quit Vivaldi = Enabled
I had (wrongly) assumed this was your setting all along
That indeed HAS been my longterm setting. It's just that stupidly chromium seems to toggle it each time i change the master switch from allow cookies to block all cookies.
-
Well, it had been going great all day, exactly as i'd hoped... but now it's failed again:
![0_1593500628226_2020-06-30, 17-02-26.png](Uploading 100%)
![0_1593500440333_d030b6c0-f8dc-40af-a990-0dc2680cceae-image.png](Uploading 100%)
![0_1593500571995_2020-06-30, 17-02-26.png](Uploading 100%)
Gaaaah!
PS: This forum software fails so frequently for uploading images!
-
@Steffie I suspect if you look at the content of these entries they will say "None / 0 B".
I suspect a Chromium bug
-
@Pathduck Good idea, i'd not thought to look at it that way. Fwiw:
edition.cnn.com locally stored data Remove All File system Origin https://edition.cnn.com Persistent storage None Temporary storage 0 B Database Storage Origin https://edition.cnn.com Size on disk 4.7 KB Last modified Thursday, 2 July 2020 at 13:50:02
mashable.com locally stored data Local storage Origin https://mashable.com Size on disk 27 B Last modified Thursday, 2 July 2020 at 13:18:40
www.reddit.com locally stored data Remove All File system Origin https://www.reddit.com Persistent storage None Temporary storage 0 B
www.thefarside.com locally stored data Remove All Local storage Origin https://www.thefarside.com Size on disk 12 B Last modified Thursday, 2 July 2020 at 11:19:02
www.theguardian.com locally stored data Remove All File system Origin https://www.theguardian.com Persistent storage None Temporary storage 0 B
-
@Steffie I have no idea, I also get some unexplained entries in the siteData page that should've been removed. These show only File System and zero actual data:
Persistent storage None Temporary storage 0 B
Your entry for Reddit, Guardian is similar, your other examples have DB or Local storage, no idea why those haven't been removed.
Some light reading on the issue:
https://www.html5rocks.com/en/tutorials/file/filesystem/#toc-requesting-quota
https://developer.mozilla.org/en-US/docs/Web/API/Window/requestFileSystem
https://security.stackexchange.com/questions/177591/are-chrome-file-system-api-not-supercookies-why-are-people-not-worried-about-th"To use PERSISTENT storage, you must obtain permission from the user to store peristent data. The same restriction doesn't apply to TEMPORARY storage because the browser may choose to evict temporarily stored data at its discretion."
-
I assume vivaldi works differently to vanilla chromium.
What i did with chromium is block all cookies and storage and allow per site if it caused an issue.Firefox works better than chromium in this regard.
I don't like the way chromium adds search engines by it self too.
You could of course install an extension..cache history cleaner is a good example.Also there are flags which can be disabled like file handling etc,not sure if they work though.
I find this behavour disturbing too but i don't think it id for nefarious uses.If you visit a number of sites regularly and they need to set local storage then persistent clearing would seem pointless.
-
Hello All,
Realize that this one (in particular) is quite the necro-thread, but the question seems to come up elsewhere so I thought I'd throw in the $0.02.
Also begging apologies in advance, since most of you seem way more educated on all this than I am. OTOH nowhere did I see "my" solution mentioned, and although it does appear to work 100%, I understand that maybe it's not exactly how everyone would want it to function.
So there I was, cracking up about a mention (in another thread) about whether or not a user had accessed the NY Times, and if those had been the service workers now constantly reloading themselves. In my case, at one point in the past I had had an on-line subscription to the paper, then eventually cancelled it. Some months later, I started getting the following, every time:
As others have experienced, no amount of playing with "Settings" inside of Vivaldi would ever prevent this from happening.
(Nor, for that matter, do some of those functions work properly anyway, such as blocking specific cookies, deleting cookies after closing, etc.)
Before I decided whether or not to dig way more deeply than I probably could manage -- using a highly-detailed solution described elsewhere in the forums -- I stumbled upon a setting in uBlock, which is to create a "dynamic filtering rule". I followed the example given and created this:
* * 3p-frame block * nytimes.com * block
...and wouldn't you know it? AFAICT, nothing from the NYT shows up anymore. At least not in
vivaldi:/settings/content/All cookies and site data
Hope this works for anyone who hasn't already implemented it.
//Modedit: fix code
-
@TheChiefTM Hello and Welcome to the Vivaldi Community
Necro indeed
I fixed your code - this forum uses Markdown so an
*
at the start of a line means a list. See: https://commonmark.org/help/Your rule for
nytimes.com
basically means that all requests to the domain will be blocked. Meaning all resources, including a lot of the static content as well. NYT hosts most of its static content on thenyt.com
domain so most (?) will still show.Your other rule means all third-party frames will be blocked everywhere. Basically you won't be able to see video embeds or other type of embeds on any site. But hey, to each their own right?
https://github.com/gorhill/uBlock/wiki/Dynamic-filtering:-rule-syntax
The only rule I have for the NYT is:
nytimes.com * 3p-script block
Don't even know why exactly I have it - I rarely read the site anyway. Probably from the testing in this topicI use Cookie Autodelete set to delete everything but cache from non-whitelisted sites. After closing a tab, it deletes all cookies+storage+workers after some seconds.
I also have filters in uBlock to stop Service Workers dead, except from sites where I need them for site functionality. Mostly because I just hate the bloody things:
! Block all Service Worker requests, with some exceptions ||$csp=worker-src 'none' @@||$csp=worker-src 'none',domain=docs.google.com @@||$csp=worker-src 'none',domain=mail.google.com @@||$csp=worker-src 'none',domain=spotify.com @@||$csp=worker-src 'none',domain=w3schools.com @@||$csp=worker-src 'none',domain=mega.nz @@||$csp=worker-src 'none',domain=sdf.org
Not sure if it's able to delete everything everything though, and honestly I don't really care. I wouldn't get too hung up on whatever the Chromium internal siteData says is stored locally. It's probably not good for much anyway, if tracking is your concern.
-
Hello 'Duck,
Thank you for your input, and apologies not only for the delayed response but for having used improper formatting the first time around.
Funny you mention that my second rule prevents video and other types of embeds everywhere. Videos I most certainly did wish to block; the only real "problem" I run in to is with Captcha boxes, which also do not load. But I've found a workaround so no big deal.
Off-topic but had not seen a way to send a PM: I was fortunate enough to have visited Tromso ten years ago, and even managed to useably learn over a thousand words of the language! Couldn't possibly get by with it anymore though. Take care.