How can a site see what extensions you have?
How can a site see what extensions you have?
One of the things I've seen mentioned before is that installing too many extensions can make you more unique, and thus have a negative influence on your fingerprint. This got me curious, how exactly do sites detect which extensions you have anyway? Can they outright read your list of extensions?
Furthermore, do all extensions make you more unique? I guess the answer would depend on the answer to the first question (surely, if they can just outright see your list, then the answer would be yes), but lets say you install something that seems rather innocuous, like Transparent Standalone Images, for example. Can a site see that this is installed / does it make your fingerprint more unique?
explanation
Web sites do not have any way to enumerate or query your installed extensions, and they cannot directly "see" the content scripts injected by extensions. However, some extensions do modify pages in a way that scripts in the page could recognize as being the work of a particular extension, assuming the owners of the site care to research and check for such things.One particular issue is that an extension may insert a path into the document to a page or image in the extension itself. Firefox assigns a randomized UUID to the extension at install time, and the path uses this UUID. On the plus side, this may prevent the site from associating the URL with a specific extension. On the minus side, at least in theory, a site could detect this weird URL in the page and use that for fingerprinting. See: How to prevent fingerprinting via Add-on UUID?.
is there anything else that I should notice?
Thank you!
Answered by @listless@lemmy.cringecollective.io
Web pages are not allowed to list your extensions. They can indirectly surmise you have certain extensions based on how your requests differ from expectations. For example, if they have advertisements, but your browser never actually makes any requests to load the images, CSS, JS or HTML for the advertisements, they can deduce you have an ad-blocker. That’s a datapoint they now have to ID you: “has an ad-blocker”Now let’s say they have an ad they know AdBlockPlus allows, but uBlock Origin doesn’t. They see your browser doesn’t load that ad. Another datapoint: “Not using AdBlockPlus”.
Based on what requests go back and forth between your browser and their servers, they map out a unique fingerprint.
like this
Gauging the Fallout From the US Strikes on Iran
https://www.bloomberg.com/news/newsletters/2025-06-23/gauging-the-fallout-from-the-us-strikes-on-iran?utm_source=flipboard&utm_medium=activitypub
Posted into Emerging Markets @emerging-markets-bloomberg
Nine years ago today the UK voted to leave the EU.
Since then our economy has shrunk, our creative industries have been damaged and our freedoms curtailed.
Now is the time to be having mature conversations about rejoining the EU and repairing the damage done by Brexit.
Tax expert Dan Neidle: "Reform UK is proposing a “Britannia card” that would let wealthy foreigners pay a £250k fee to move to the UK and live here exempt from all tax on their foreign income and property. All fees received would be distributed, “Robin Hood”-style, to the 2.5 million lowest-paid workers in the UK.
"Reform UK don’t include any analysis of the cost of their proposal. Our analysis of OBR data suggests the cost would likely be around £34bn over five years."
taxpolicy.org.uk/2025/06/23/br…
The £34bn cost of Reform UK’s “Britannia card” proposal
Reform UK’s Britannia Card would let wealthy foreigners pay £250,000 to avoid UK tax — but would likely cost £34bn and reduce skilled migration.Dan Neidle (Tax Policy Associates)
Musketeer – Coming Soon for Commodore 64
To the surprise of many, a brand new action-packed arcade adventure from Psytronik Software is coming to our favourite platform.
c64universe.com/2025/06/22/mus…
#Commodore64 #C64 #Commodore #retrogames #retrogaming
Musketeer – Coming Soon for Commodore 64
To the surprise of many, a brand new action-packed arcade adventure from Psytronik Software is coming to our favourite platform. Story: Set in 17th-century France, the game follows the last loyal m…The Universe of Commodore 64
Spain seeks immediate suspension of EU association pact with 'Israel'
Spain calls on the EU to push for an arms embargo over Gaza human rights violations.
Feel comfortable here
🇫🇷 Ah ce shooting… mon premier essai avec un flash cobra pour du fill-in. Mais en grand débutant que j’étais, je n'avais pas compris que la durée d'exposition serait bloquée à 1/200. Résultat, 99% des clichés cramés 😢 Du coup recours au sépia pour sauver les meubles.
🇬🇧 OMG this shooting… it was my 1st try with a flash for some fill-in. But I didn’t register that exposure will be stuck at 1/200. As a result, all the shots were burnt 😢 Hence the use of heavy sepia effect to save the day.
📅 25/08/2012
📷 #Canon550D, Canon EF 50mm f/1.8 II
⚙️ ƒ/2.5, ⏲️ 1/200, 🎥 50.0mm, 🎞️ 100
#Canon #photography #pixelfed #darktable #portrait #sepia
Iran launched a new missile barrage at Israel, triggering prolonged sirens across northern, central and southern regions, including Jerusalem.
At least four impacts were reported in Ashdod, Ashkelon, Safed and south of Jerusalem – new targets in this escalating conflict.
The attacks exposed gaps in Israel’s air defences, despite its advanced US-supplied systems struggling against Iran’s evolving tactics.
youtube.com/watch?v=ey6fntemLM…
🕎 🇵🇸 ☮️
#Gaza #Palestine
#Press #News
- YouTube
Profitez des vidéos et de la musique que vous aimez, mettez en ligne des contenus originaux, et partagez-les avec vos amis, vos proches et le monde entier.www.youtube.com
特に有名なのは藤の花
あしかがフラワーパークと言えば、やっぱり藤!
毎年4月中旬〜5月中旬にかけて、「ふじのはな物語」と題した藤の祭典が開催されます。
#photography #写真好きな人と繋がりたい #風景写真
.
.
.
.
#fortlalatte #castle #seascape #cape
#photo #photography #castlesofinstagram #dcg9
#bzh #bretagne #plevenon
This takes me back to the research we did on comparing government blunders (and on cost overruns in megaprojects).
RE: bsky.app/profile/did:plc:fmgp3…
"""could"""? 🤔
theguardian.com/australia-news…
#YESItMakesUsATarget #Complicit #Corruption #AUSPol #News #War
Involvement in US strikes on Iran could make Australia a target, experts warn as government tight-lipped on Pine Gap
Calls for more transparency on potential use of US-Australian surveillance base at Pine Gap and Tindal airbaseBen Doherty (The Guardian)
Studi mancanti – Kostaive (e due)
Abbiamo parlato del nuovo vaccino Kostaive pochi mesi fa, con un articolo che in maniera abbastanza riassuntiva cercava di spiegare perché chi sosteneva che fosse stato approvato nel "silenzio complice dei media" stesse avvelenando il pozzo con la so…maicolengel butac (Butac – Bufale Un Tanto Al Chilo)
MAGA Gold Standard Science
Trump Turning Point
ALL GOVERNMENT EMPLOYEES WILL COME TO HEAL
msn.com/en-us/news/world/trump…
Databricks, Perplexity co-founder pledges $100M on new fund for AI researchers
https://techcrunch.com/2025/06/23/databricks-perplexity-co-founder-pledges-100m-on-new-fund-for-ai-researchers/?utm_source=flipboard&utm_medium=activitypub
Posted into Latest TechCrunch Stories @latest-techcrunch-stories-Techcrunch
Databricks, Perplexity co-founder pledges $100M on new fund for AI researchers | TechCrunch
Andy Konwinski is pledging $100 million of his own money for a new kind of institute to fund researchers. It's already backed Ion Stoica's new lab.Julie Bort (TechCrunch)
Cisl Scuola preoccupata per la pluriclasse da 19 alunni a Nave: “Situazione non ottimale”
Il segretario generale Gian Michele Mostardini si schiera con le famiglie e la dirigenza scolastica: "Scelta da riconsiderare"
The post Israelische Militäroperation birgt Leiche von deutschem Opfer des 7. Oktober appeared first on Apollo News. #news #press
Israelische Militäroperation birgt Leiche von deutschem Opfer des 7. Oktober - Apollo News
Der Deutsch-Israeli Shai Levinson wurde am 7. Oktober von der Hamas ermordet. Seine Leiche wurde in den Gazastreifen verschleppt, wo sie am Sonntag zusammen mit den Leichen von zwei anderen Opfern des Hamas-Massakers durch Israel geborgen werden konn…Redaktion (Apollo News)
Roland Häder🇩🇪 likes this.
globalist.it/politics/2025/06/…
La famosissima statura internazionale di Giorgia Meloni. Ma altissima
Meloni tra ambiguità e reticenze: niente critiche a Trump, quasi muta su Israele e promesse vuote
L’intervento della presidente del Consiglio Giorgia Meloni alla Camera, in vista del prossimo Consiglio europeo, ha mostrato ancora una volta tutti i limiti di una politica estera che si muove tra calcoli elettorali e sudditanza atlanticaglobalist (Globalist.it)
US Warns of Iranian Cyber Threats After Strikes
https://www.bloomberg.com/news/videos/2025-06-23/us-warns-of-iranian-cyber-threats-after-strikes?utm_source=flipboard&utm_medium=activitypub
Posted into Bloomberg Television @bloomberg-television-bloomberg
HyperOS 2.2: mega atualização da Xiaomi chega em breve a mais de 40 equipamentos
🔗 tugatech.com.pt/t68420-hyperos…
Modernizing Wire Harnesses for the Aerospace Industry
https://www.bloomberg.com/news/videos/2025-06-23/modernizing-wire-harnesses-for-the-aerospace-industry-video?utm_source=flipboard&utm_medium=activitypub
Posted into Bloomberg Television @bloomberg-television-bloomberg
Zouden #Schoof en #Veldkamp er nu ook iets over durven zeggen? Ik denk het niet.
politico.eu/article/emmanuel-m… #Macron #Amerika #Trump #Iran
Macron: US strikes on Iran aren’t legal
European leaders are walking a tightrope between condemning Tehran’s nuclear program while calling for restraint.Clea Caulcutt (POLITICO)
Bezos' Lavish Venice Wedding Spurs Demand for Global Billionaire Tax
Activists are protesting billionaire Jeff Bezos's wedding in Venice with calls for a global billionaire tax.
Archived version: archive.is/newest/commondreams…
Disclaimer: The article linked is from a single source with a single perspective. Make sure to cross-check information against multiple sources to get a comprehensive view on the situation.
Bezos' Lavish Venice Wedding Spurs Demand for Global Billionaire Tax
"This isn't just about one person—it's about changing the rules so no billionaire can dodge responsibility, anywhere," said one Greenpeace campaigner.jessica-corbett (Common Dreams)
Yet another film emulation camera app for iOS: mood.camera. So far it looks cool and works pretty well. Hat tip to @jedda's latest postroll for a link to this article which talks about mood.camera in detail: gobino.be/mood-camera-recipe-c…
#photography #apps #iOS #FilmEmulation
Mood.camera recipe - Cuban Neg 📷
Digging into the different mood.camera emulations and creating my own "cuban neg" variant.gobino's bites
#Masthon v0.3 Alpha is released now ! 
You can now use threading.
Masthon is a package made with love 
by @org_literie_gator that links your #python programs to the #mastodon #API. All #code is #opensource and published on gitlab at gitlab.com/Gator3000/masthon.g…
You can install it with #pip
`pip install git+https://gitlab.com/Gator3000/masthon.git@v0.3a`
Documentation is available at Gator3000.gitlab.io/masthon, but not really updated.
Let me know if you want to contribute !
it's happening! "The Secret Rules of the Terminal" is coming out tomorrow!
(update: it's out now!! you can get it here: wizardzines.com/zines/terminal…)
here's the table of contents:
reshared this
Scotiabank Hires JPMorgan’s McDowell to Lead Corporate Banking
https://www.bloomberg.com/news/articles/2025-06-23/scotiabank-hires-jpmorgan-s-mcdowell-to-lead-corporate-banking?utm_source=flipboard&utm_medium=activitypub
Posted into Business @business-bloomberg
ejiltalk.org/the-illegal-israe…
The Illegal Israeli-American Use of Force Against Iran: A Follow-Up
Yesterday, the United States joined Israel in its use of force against Iran by conducting a precision bombing operation targeting Iranian nuclear sites. Like Israel’s use of force before it, this u…EJIL: Talk!
A Day Before the Election, Poll Shows Mamdani Besting Cuomo in NYC Democratic Mayoral Primary
New poll shows Zohran Mamdani narrowly leading Andrew Cuomo in NYC Democratic mayoral primary.
A Day Before the Election, Poll Shows Mamdani Besting Cuomo in NYC Democratic Mayoral Primary
"On the day before the election, we stand on the verge of toppling a political dynasty and winning a city we can afford," wrote Mamdani.eloise-goldsmith (Common Dreams)
Judge denies creating "mass surveillance program" harming all ChatGPT users
Link: arstechnica.com/tech-policy/20…
Discussion: news.ycombinator.com/item?id=4…
Judge rejects claim that forcing OpenAI to keep ChatGPT logs is mass surveillance
OpenAI will fight order to keep all ChatGPT logs after users fail to sway court.Ashley Belanger (Ars Technica)
relic4322
in reply to Holeheadou92984 • • •everything you do to customize your browser makes your browser fingerprint unique. but you have a mostly unique fingerprint due to things you arent considering as well. system related stuff that your browser tells about you.
you have some options. 1) there are addons that limit privacy issues, 2) use a local web proxy, im using squid proxy for example just have it running on an old laptop. Optionally, I would also say, from a privacy standpoint look into DNS blackholing pihole, unbound, etc, and there are plenty of other things.
my favorite addons are ublock, privacy badger, i run noScript which is probably more painful than most are willing to put up with but I have heard that jShelter is a good compromise.
Holeheadou92984
in reply to relic4322 • • •relic4322
in reply to Holeheadou92984 • • •The problem with hardening your system is that you become more identifieable unless you provide fake data. For example, here are my test results from coveryourtracks.eff.org
Within our dataset of several hundred thousand visitors tested in the past 45 days, only one in 2054.58 browsers have the same fingerprint as yours.
Holeheadou92984
in reply to relic4322 • • •Postmortal_Pop
in reply to relic4322 • • •relic4322
in reply to Postmortal_Pop • • •Yes, you can give fake info. I would say thats kinda the next step. Harden your browser and associated tech stack so you are secure. Then provide fake data that is generic enough so that it blends in. firefox or chrome standard agent, windows 11, etc.
for example
deviceatlas.com/blog/list-of-u…
List of User-Agent strings 2025
DeviceAtlasHoleheadou92984
in reply to Holeheadou92984 • • •Answered by @listless@lemmy.cringecollective.io
relic4322
in reply to Holeheadou92984 • • •plugins are definitely detectable.
just came across this, worth checking out your browser security.
coveryourtracks.eff.org/
Cover Your Tracks
coveryourtracks.eff.orgskarn
in reply to relic4322 • • •relic4322
in reply to skarn • • •