Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror
×
Firefox Privacy

Firefox Starts Blocking Third-Party Cookies By Default (venturebeat.com) 69

An anonymous reader writes: Mozilla today announced a slew of privacy improvements. The company has turned on Enhanced Tracking Protection, which blocks cookies from third-party trackers in Firefox, by default. Mozilla has also improved its Facebook Container extension, released a Firefox desktop extension for its rebranded Lockwise password keeper, and updated Firefox Monitor with a dashboard for multiple email addresses. Mozilla added basic Tracking Protection to Firefox 42's private browsing mode in November 2015. The feature blocked website elements (ads, analytics trackers, and social share buttons) based on Disconnect's tracking protection rules. With the release of Firefox 57 in November 2017, Mozilla added an option to enable Tracking Protection outside of private browsing. (Tracking Protection was not turned on by default because it can break websites and cut off revenue streams for content creators who depend on third-party advertising.)
This discussion has been archived. No new comments can be posted.

Firefox Starts Blocking Third-Party Cookies By Default

Comments Filter:
  • by olsmeister ( 1488789 ) on Tuesday June 04, 2019 @11:44AM (#58707680)
    But with Chrome soon breaking most ad-blockers, I think it may be time to give it another look.
    • by Anonymous Coward

      I have been using Firefox exclusively for a long time, specifically because of its privacy features.

      It sounds like they are focusing on privacy as their primary competitive offering. And I, for one, approve.

      • by GuB-42 ( 2483988 )

        It sounds like they are focusing on privacy as their primary competitive offering. And I, for one, approve.

        I don't. And thankfully, Firefox is not all about privacy.

        Privacy is too easy. Just integrate some form of blocker and yay, privacy, "look, I am better than Chrome". And in fact, there are many Chromium forks with privacy features built-in, one doesn't need Firefox for that.

        When you are fighting against Chrome, you obviously need some privacy features, built-in or with extensions, but that's not what will make you competitive. For me, when your only argument is that you are better than one of the worst offe

        • When you're competing with (hardly "fighting against") Google Chrome, all you really need to do is be patient and wait for Google to shoot their product in the foot.

    • I moved to Chrome because it ran every window and tab in its own exclusive space, which improves security by a lot. Now, since Firefox does the same thing, and has better containerization to keep Facebook, YouTube, and other data-sloppy things hemmed in, it might just be best to move back to it.

      I do like how Chrome encrypts your settings when syncing, though. Wish Firefox offered that, so even if one's account was compromised, the synced stuff would be still protected.

      • by Anonymous Coward

        Firefox also encrypts sync data.

        https://hacks.mozilla.org/2018/11/firefox-sync-privacy/

    • by AmiMoJo ( 196126 )

      Firefox is pretty damn good now. Since they ditched the old add-on system and implemented per-tab processes performance has increased dramatically. It's also got good privacy protection built in, e.g. stuff to block canvas fingerprinting.

      It also supports add-ons for mobile, which Chrome doesn't. So you can have ad-block on mobile.

  • (Tracking Protection was not turned on by default because it can break websites and cut off revenue streams for content creators who depend on third-party advertising.)

    Why write "content creators" instead of perfectly good "authors" or "publishers"?

    And why don't these authors/publishers offer ad space directly to advertisers, as on Daring Fireball [daringfireball.net] and Read the Docs [readthedocs.io], instead of having to go through a third-party programmatic exchange?

    • by Anonymous Coward

      Why write "content creators" instead of perfectly good "authors" or "publishers"?

      "Content Creators" is more succinct than authors/publishers/videographers/animators/bloggers/vloggers/froggers/doggers/bookies/camgirls/FortniteBRstreamers/etc. It uses two clear words to capture a huge, diverse group.

      And why don't these authors/publishers offer ad space directly to advertisers, as on Daring Fireball [daringfireball.net] and Read the Docs [readthedocs.io], instead of having to go through a third-party programmatic exchange?

      Why the fuck would I want to create a separate advertising department when I can create a Google Ads account in three steps?!?

      You have a weird sense of the type of efficiencies that content creators want.

      • by tepples ( 727027 )

        "Content Creators" is more succinct than authors/publishers/videographers/animators/bloggers/vloggers/froggers/doggers/bookies/camgirls/FortniteBRstreamers/etc.

        An "author" is anyone who creates a work of authorship regardless of medium. (Source: Title 17, US Code, section 101) This includes videographers, animators, bloggers, etc.

        Why the fuck would I want to create a separate advertising department when I can create a Google Ads account in three steps?!?

        To avoid the risk of being deplatformed by Google. Or because you just launched and don't yet have enough traffic to qualify to create such an account. Or because a lot of your readers block Google Analytics and AdSense as known trackers, and you want something to serve in case Google's ad server is unreachable.

        • by g01d4 ( 888748 )

          Source: Title 17, US Code, section 101

          Pedantic. Most people read it in the first rather than third sense of this definition [dictionary.com].

          Or because a lot of your readers block Google Analytics and AdSense as known trackers

          You'd think content creators would want to protect their readers from the same. If it's really that much effort then there's a business opportunity for someone somewhere.

          • by tepples ( 727027 )

            You'd think content creators would want to protect their readers from the same.

            Not if allowing readers to be tracked extracts three times the CPM [pineight.com] compared to protecting readers.

      • by Anonymous Coward

        Why the fuck would I want to create a separate advertising department when I can create a Google Ads account in three steps?!?

        You have a weird sense of the type of efficiencies that content creators want.

        Simplicity is nice. But why do google route ads through their third-party server. Why not have your server pick up ads from Google and serve them out directly? That way, no blocking and the content creator get the same simplicity.

        Fortunately, they won't do this, so we can keep our browsers ad-free. No sympathy for those depending on ads. Set up a webshop and sell something, if money is what you want. Loosing the cat videos is a low price to pay for loosing the ads.

    • And why don't these authors/publishers offer ad space directly to advertisers, as on Daring Fireball [daringfireball.net] and Read the Docs [readthedocs.io], instead of having to go through a third-party programmatic exchange?

      Because trying to manage everything yourself is a PITA, especially for small businesses who don't have dedicated departments for these things?

      (I ruthlessly block stuff, mind you; just saying that I understand the motivation to use third party stuff.)

      • by fph il quozientatore ( 971015 ) on Tuesday June 04, 2019 @12:57PM (#58708278)
        You guys set it up as a false dichotomy. The alternatives are not "manage your ads yourself" and "use third-party cookies". There are perfectly legitimate ways to manage the third-party ad business without all the privacy breaking and obnoxious javascript. For instance, the ad company could say "please run this script on your server each hour; it downloads new static gifs that you can serve yourself to your customers".
        • by Merk42 ( 1906718 )
          But unless that option exists, that's not up to the content creator.
        • If such a service exists, I will seriously consider it for my website.

        • Having advertisers run scripts serverside is exactly what the industry is moving towards, since you can't block that.
          https://exde601e.blogspot.com/... [blogspot.com]

          It's like jumping from the frying pan into the fire - not a good idea.

          • by Anonymous Coward

            Oh, I can block that. If the content server also serves ads, then the ads aren't third-party.

            But they are still ads. Scripts can be recognized and blocked. Videos don't autostart here, and sound is muted. The sites I browse rarely use video anyway. If they fall back on banners, block images of a certain size, or located in a certain folders. "/ads/"

            If they get really good at hiding ads, run text through a bayesian spamfilter and kill "advertising speech". For images, block the ones with garish colors. Only

        • by tepples ( 727027 )

          the ad company could say "please run this script on your server each hour; it downloads new static gifs that you can serve yourself to your customers"

          I doubt that advertisers would readily trust the publisher's self-reported view and click statistics.

      • They don't necessarily have to manage it themselves, the advertising network just has to engineer an easy to use add-on
    • by Merk42 ( 1906718 )
      It's more work on the author/publisher to manage it and there's more of a chance that the product being advertised is something that the user isn't interested in, so people would just block them anyway.
    • Comment removed based on user account deletion
    • I don't believe for a second that what Pocket shows you is based on popularity.

  • by Anonymous Coward on Tuesday June 04, 2019 @12:20PM (#58707948)

    I don't blame Chromium engine for this one sided web. I blame Google and Chrome browser for basically making up their own standards like Microsoft once did with Internet Explorer. I finally decided it was time to stop complaining and do something about it. I uninstalled Chrome and installed Firefox and I plan to work through any obstacles that might cause me to go back to Chrome. Users should at least try to ween themselves off Chrome and possibly even Google services. Its time to even out the web for the greater benefit of not making it the Google web.

  • by Anonymous Coward

    Firefox is blocking third party cookies from known trackers by default, not all third party cookies by default. TFA says this and Mozilla says this on their blog posts from today. TFS somehow mangles this.

    Mozilla is using the Disconnect list to determine known trackers: "For new users who install and download Firefox for the first time, Enhanced Tracking Protection will automatically be set on by default as part of the ‘Standard’ setting in the browser and will block known “third-party tra

  • ...Chromium did the same!!

  • Back in the 20th century, the web was intended to bring in pictures and other content from 3rd parties. After all, when storage is cheap and content is relatively static, it's significantly more expensive to host your entire web site than it is to just link to off-site images.

    These days, I would prefer for sites to route ALL content through their own domain so I know who to blame if the web site is "abusive."

    So instead of foo.com calling images, scripts, and videos from bar.com, baz.com and foocdn.com, it

  • On the one hand, this is great for most people. On the other, it's like as ad-blockers took off... it made companies find ways around it whereas before people who had opted in weren't that much in an arms race.

  • Great. I'm getting YAUFF?

You are always doing something marginal when the boss drops by your desk.

Working...