Privacy

47219 readers

195 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 6 years ago

MODERATORS

Master Browser Fingerprint Spoofing with Expert Techniques (www.browsercat.com)

submitted 12 hours ago by ghodawalaaman@programming.dev to c/privacy@lemmy.ml

10 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] Hirom@beehaw.org 10 points 10 hours ago (2 children)

By spoofing the fingerprint, developers can make their automated tools impersonate real users more convincingly, thereby bypassing bot detections.

Many OSS projects and personal web servers have bot detection because they would otherwise drown under (AI) scrappers and other bots traffic. Hosting or bandwidth cost is often unsustainable without bot protection.

If you don't want to kill these projects, honor robots.txt by default, use throttling, don't try to circumvent bot blocks. Look if there's a purpose built API available to bots. If they don't want to offert such API, go find something else to do.

[–] ghodawalaaman@programming.dev 4 points 10 hours ago (1 children)

well if a person decide to use this attack small OSS projects server then we are failed as humanity. I shared this article to fight against big tech surveillance if people use it to damage FOSS project I highly discourage that behavior.

[–] Hirom@beehaw.org 7 points 8 hours ago* (last edited 8 hours ago)

The article focuses on techniques that help bots spoof browsers, to make them impersonate a typical human visitor.

It's not obvious how this helps people protect themselves against surveillance while being online. Using python scripting is not a practical way to browse. But it's handy to write scrappers.

It's certainly useful to misbehaving bots that try to evade anti-bots protection.

[–] LytiaNP@lemmy.today 2 points 10 hours ago (1 children)

Most open source projects just hit everything with a PoW captcha instead of trying to guess if a user is real or not, so trying to spoof enough to look like a real user won't change all that much anymore.

[–] Hirom@beehaw.org 6 points 10 hours ago* (last edited 10 hours ago)

That's true. The reason is there's lots of bot traffic spoofing real users, sometimes even going through residential proxies.

When bots spoof users well, the last option for projects is use these PoW captcha that annoy everyone. Enshitification continues.