Everyone is already moving on to fingerprinting via canvas, localstorage, favicons and plugins with screen size and headers... a cat and mouse game for our data
Heuristics is an informed search strategy which uses known information or knowledge to make search more efficient and complete. These searches are known as search algorithms with brains
How's the update from 85 to 86 works then? I guess it won't update all cookies at once. But because of the key is now different, will it treat the old cookie as the "cross site cookies". Or ask the user individually? Does end user have to delete all cookies to make it work 100%?
@@UliTroyo I think mozilla's case here of expecting the masses to understand the meaning of "cookies" when asking them to allow or deny app breaking features like SSO is not necessarily a light change.
Shouldn't the unique ID for the key be generated more securely?? It's just appending, if I'm not wrong, I can easily write a Regex based search on keys. Maybe the feature is still in idea stage, mozilla community would obviously think about this, once it is approved.
I thought 3rd party cookies were disabled by default. (Cookies not from the main URL domain.) Cookies aren't the problem, it's scripts! I used to be frustrated waiting 6s for analytics.google.com till I found ghostery can block it and make page loads 3x faster. Ok, separate 3rd party cookies is a tweak to improve privacy, but not really. I see news sites that use 24 trackers. Ok, maybe one but 24? Ban them all. Cross site scripting is the ultimate evil, and browsers should give insecure warnings on https without integrity hash. Hussein, please do a video on tracking methods. Actually I don't mind the tracking as much as page loading delays. Google fixed the several second analytics delay, but it annoys me and I block it. We need a law that requires firefox to block google analytics, etc. or else get the user to enable tracking. How about doing a whole tutorial on tracking? I'm annoyed by the EU required cookie messages that ignore scripts that are 100x worse. The tracking scripts and XHR need to be banned by browsers. And probably by laws that protect us. Ok, that's my opinion.
Yes, blocking scripts is a good way to prevent this. But don't work for a lot of regular users. Yes 3rd party cookies is disabled by default. This separates the cookies and other storage for sites so that even when scripts are used their they only get to play with separate storage like cookies.
Hi Hussein, can you make video on network programming in Java. And different design patterns used to control socket creation and usage of sockets for better performance.
@@misternobody6798 instead of using the APIs in UI site they may implement in Backend(FB) APIs all the sites that uses/needs FB they make be asked to implement the API in backend. I am not expert in that area just shared my thoughts.
Everyone is already moving on to fingerprinting via canvas, localstorage, favicons and plugins with screen size and headers... a cat and mouse game for our data
If Firefox had any market share this would break the internet 🤩
Lol, burn
Break the internet advertisers rather!
I think... That's very cool.
One Q, from where you get these updates, you are always first to cover these topics
Seems like this 'heuristics' for allowing sso sites is a fancy way of saying 'whitelist'
forreal haha
“allowlist”
Facebook will not be happy about this, but I am haha
They already have a special one for Facebook...try Facebook Container.
1:35 fire fock xD
Beautiful!
Could you please do a video on Dev Tooling gsuite SSO?
Heuristics is an informed search strategy which uses known information or knowledge to make search more efficient and complete. These searches are known as search algorithms with brains
Cool ! Thanks for the interesting content 👍
The 'share on fb' button that most websites embed to help drive traffic tracks you, wonder if the firefox solution covers that
should right
Clever, but that appendage method looks very easy to break and bypass
🔥 🦊 ❤️
What are your thoughts on Google Floc?
How's the update from 85 to 86 works then? I guess it won't update all cookies at once. But because of the key is now different, will it treat the old cookie as the "cross site cookies". Or ask the user individually? Does end user have to delete all cookies to make it work 100%?
I don't see why this is needed. You can just block outgoing api calls to unknown origins with a csp?
GDPR already made the web cumbersome with cookie consent popups, soon enough browsers will start asking users to allow images to display..
@@UliTroyo I think mozilla's case here of expecting the masses to understand the meaning of "cookies" when asking them to allow or deny app breaking features like SSO is not necessarily a light change.
Does this mean we can trash the multi-container tabs addon?
Shouldn't the unique ID for the key be generated more securely?? It's just appending, if I'm not wrong, I can easily write a Regex based search on keys. Maybe the feature is still in idea stage, mozilla community would obviously think about this, once it is approved.
Maybe they hash the key?
It could succeed if it turns out to work and if (BIG IF) Google agrees it's a good idea.
*Opens the article in chrome
Nice video
This is awesome :)
But isn't it similar to localStorage of browsers ?
I think it is useless until every other browser implement it. Correct me if I am wrong
I thought 3rd party cookies were disabled by default. (Cookies not from the main URL domain.) Cookies aren't the problem, it's scripts! I used to be frustrated waiting 6s for analytics.google.com till I found ghostery can block it and make page loads 3x faster. Ok, separate 3rd party cookies is a tweak to improve privacy, but not really. I see news sites that use 24 trackers. Ok, maybe one but 24? Ban them all. Cross site scripting is the ultimate evil, and browsers should give insecure warnings on https without integrity hash.
Hussein, please do a video on tracking methods. Actually I don't mind the tracking as much as page loading delays. Google fixed the several second analytics delay, but it annoys me and I block it. We need a law that requires firefox to block google analytics, etc. or else get the user to enable tracking.
How about doing a whole tutorial on tracking? I'm annoyed by the EU required cookie messages that ignore scripts that are 100x worse. The tracking scripts and XHR need to be banned by browsers. And probably by laws that protect us. Ok, that's my opinion.
Yes, blocking scripts is a good way to prevent this. But don't work for a lot of regular users. Yes 3rd party cookies is disabled by default. This separates the cookies and other storage for sites so that even when scripts are used their they only get to play with separate storage like cookies.
Awesome! I'm using your videos to learn more (basically everything of www) and to crack interview. Thanks!
we should use his videos to work better and results will come when you start searching outside :) All the best anyways
Hi Hussein, can you make video on network programming in Java. And different design patterns used to control socket creation and usage of sockets for better performance.
but site A and site B can collect information independently and then they send to data to fb then can be processed.
How would FB know that they are both talking/reporting about the same unique user?
@@misternobody6798 fingerprinting maybe?
@@misternobody6798 instead of using the APIs in UI site they may implement in Backend(FB) APIs all the sites that uses/needs FB they make be asked to implement the API in backend. I am not expert in that area just shared my thoughts.
First