Solved how to block a site's cookies starting with . ?
-
I am viewing a web site, let's call it www .xyz.com.
It dumps a whole bunch of cookies in my browser.
Too many calories, I don't want their cookies, so in the Settings, Privacy and Security, Website Permissions, I enter www .xyz.com, and beside Cookies I choose Block.Yet, www .xyz.com persists and still places cookies under .xyz.com.
How do I stop this in vivaldi?
NB. I deliberately added spaces into the URLs above so that the editor would not mark this message as spam and block it
-
@joss Well, the correct syntax for Chromium, with a wildcard to also catch
www.
and other subdomains would be:
[*.]xyz.com
Problem is, Vivaldi won't accept this syntax ...So I prefer to use the regular Chromium settings page and add sites there, it's cleaner:
chrome://settings/content/siteData
You can add this page to a web panel for instance if you do this a lot, or just bookmark it.You can also use the Site Info > Cookies & site data > Manage (etc) dialog, but it's not as clean IMO.
Results in a rule like:
https://[*.]bbc.com:443
Which is basically the same thing. Except it (presumably) would allow cookies fromhttp://bbc.com
but that's not a major issue in any case these days. -
That seems to have done the job -- thank you.
-
Jjoss has marked this topic as solved
-
@joss It's important to know, for completeness, that "Site Data" is much more these days than just cookies. It includes Session/Local Storage, IndexedDB, Service Workers etc. These are all modern "web specs" used by sites to store data on your system. Some sites might break if these things are outright blocked.
Third-party cookies are its own setting separate from Site Data as Google plans to phase these out (but probably never will...) I recommend to block all third-party cookies in any case, as very few sites require them to function and their primary use is for tracking and showing ads.
Another new thing to be aware of is Partitioned Cookies. These are actually third-party cookies (i.e. not coming from the site you're visiting), but set to only be loaded by the one site/domain.
https://developer.mozilla.org/en-US/docs/Web/Privacy/Privacy_sandbox/Partitioned_cookies
So even if you block third-party, you will see cookie entries from other domains, with a Partition Key set to a specific domain. Apparently, these are "better for privacy" but I'm not so sure as Google is the primary entity behind this "standard".Since I don't want to spend time troubleshooting broken sites if I block (first-party) cookies/site data, I allow all (except third-party). Then I use the Cookie Autodelete extension to automatically clean cookies some seconds after a tab is closed, unless the site is whitelisted in CAD. This avoids cluttering up my browser with tons of unwanted cookies while also allowing more site functionality on some sites.
https://github.com/Cookie-AutoDelete/Cookie-AutoDelete
Unfortunately, CAD does not handle partitioned cookies (yet), and is not compatible with Manifest v3, but hopefully that support will come.