BEWARE ! People who create fake email account to login to social media.

A facebook employee explained me how tracking works. Its not the email address Meta is concerned about. Its the IP, device identifiers and location. Meta doesnt care about the email at all apart from sending you emails for notification. Even with a fake email they exactly know who you are. Let’s say you visit CNN.com which has facebook tracker. Facebook has the IP and the device identifiers. Now you login with fake email account on Instagram, facebook knows that’s the IP ans the same device hence it “must” be the same person That’s how facebook creates shadow profiles.

zelifcam, (edited )

deleted_by_author

    •
    SoonaPaana,

    This is a very harsh response. If possible, please try to be kinder.

    PM_me_your_vagina_thanks,

    What is this, a forum for soft cunts?

    _haha_oh_wow_,
    _haha_oh_wow_ avatar

    Shouldn't privacy be for everyone?

    Rusty,

    Why would he want to be German children?

    simple,

    Its not the email address Meta is concerned about. Its the IP, device identifiers and location.

    This actually applies to the entire internet, look into fingerprinting. This website checks how susceptible you are to it: coveryourtracks.eff.org

    stebo02,
    @stebo02@sopuli.xyz avatar

    what is the best way to regularly change your fingerprint? (I’m using firefox)

    qwerty4313432,

    Tor Browser, the most trusted and reliable. Also maybe Brave.

    BallShapedMan,
    @BallShapedMan@lemmy.world avatar

    Fantastic link, I need to do better than I am. I appreciate you sharing this.

    simple,

    For what it’s worth protecting against fingerprinting is pretty hard, so don’t feel bad if it tells you your browser has a unique fingerprint. For most people (if you’re using Firefox) going to the settings and turning on strict tracking protection and “Do Not Track” set to always send is good enough and will probably stop most attempts by blocking domains that will try fingerprinting. And use Ublock Origin, people.

    JonEFive,

    use Ublock Origin,

    Yep. I have a blanket “block all Facebook” rule. A lot harder to gather info if your browser refuses to load data and scripts coming from their domains.

    BallShapedMan,
    @BallShapedMan@lemmy.world avatar

    I use Firefox and Ublock, I’ll do the do not track now!

    MORTARS,
    @MORTARS@lemmy.ml avatar

    Mullvad’s website has this nice widget that checks if your ip address can be found by dns too. Good for busting competitors

    gabriele97,
    @gabriele97@lemmy.g97.top avatar

    OMG this scared me. I thought I was “enough” protected

    dan1101, (edited )

    That site says “Your browser has a unique fingerprint” even though I run Firefox, uBlock, Privacy Badger, and have privacy.resistFingerprinting set to true. My main problem may be plugins, once you have more than a few your set can be pretty unique.

    Byereddithellolemmy, (edited )

    Try LibreWolf

    Edit: interesting to see this was up voted, then downvoted. Would be good to understand why someone disagrees that LibreWolf would be a viable option here.

    DrRatso,

    Iirc unique == identifiable necessarily, because your fingerprint might be different while still unique the next time around.

    ctr1, (edited )
    @ctr1@fl0w.cc avatar

    Try going down the page and looking for the categories with more than a few bits of identifying information. I’m running LibreWolf with just uBlock Origin and Dark Reader (which I don’t think influences results) and I’m able to get nearly-unique, instead of unique (but I do get unique on default settings). TBB gets non-unique, which is a good set of results to compare to.

    In my case I noticed that my fonts were really unique so I set browser.display.use_document_fonts = 0. Also I use my WM to set my page resolution to 1920x1080, which seems to have a better fingerprint than the default LibreWolf floating resolution of 1600x900 (and even the letterboxing resolutions, from what I can tell).

    I just spent some time testing again and checking for anything else. RFP does force a generic user agent, but unfortunately it keeps the version information and I can’t figure out how to change it with RFP on. Would be nice to set it to the ESR version used by TBB (which has lower bits), but I’m not sure if that would lead to a more unique fingerprint (if, say, a feature was detected that is available in later versions but not ESR).

    Edit: just tried Mullvad browser, and it’s non-unique! Might be the best option.

    aaaaaaadjsf,
    @aaaaaaadjsf@hexbear.net avatar

    It’s almost impossible not to have a unique fingerprint online with how stuff is tracked. Websites are tracking user agents, screen resolution, your GPU/web graphics renderer, etc.

    The only way is to disable JavaScript, but good luck to using the internet without it

    qwerty4313432,

    Never heard about Tor Browser? Nice “privacy” community you’ve got here.

    clobubba,

    deleted_by_author

    •
    pjhenry1216,

    There's a decent bit in their site as to how fighting fingerprinting by trying to be more common can make you still stand out, so mullvad may not work out depending on how it implements this concept. Randomizing fingerprinting sounds like it could work (I haven't researched it so I don't have enough info to agree or disagree, but sounds legit at the very least) and expecting their report to understand that is beyond the scope of the tool. I mean, you couldn't actually test that method is effective without recording it over multiple sessions/days/etc. Sure you want a unique fingerprint, but seeing a unique fingerprint once doesn't mean it's working.

    LinkedinLenin,

    I still use uMatrix to block javascript and other shit by default, then enable as needed.

    there’s an unfortunate tension between privacy and anonymity (and usability): the more you change about your behavior and system to preserve privacy, the more you stand out as a unique individual.

    Multi-tiered threat modeling is a good way to find the best of as many worlds as you can tolerate. Maybe you use tor browser for anything it doesn’t hopelessly break. Use hardened firefox for other things. Vanilla firefox profile for when a site doesn’t work for whatever reason. Chromium when necessary. By dynamically shifting between security levels as your threat model necessitates, you can maintain usability while preserving some amount of privacy. The downside is time and effort, but baby steps are fine. Switch out corporate apps and services with open source ones over time. There’s decent-to-great alternatives for most things microsoft/google

    aaaaaaadjsf,
    @aaaaaaadjsf@hexbear.net avatar

    Obviously. Device fingerprinting is much, much more advanced than that. IP, device screen resolution and type, etc. And that’s just the basics

    Nioxic,

    And people dont share devices?

    I have a family pc in the living room. We all use it.

    Im not on facebook though.

    forgotmylastusername,

    There’s got to be more metadata involved in fingerprinting. The type of content you’re looking at. Maybe even deriving some sort of signature from your mouse movements.

    Janis,

    LOL

    Jimmycakes,

    Google knows who you are based on your browser window size. You can’t escape shit from these guys.

    yoz,

    True

    user224,
    @user224@lemmy.sdf.org avatar

    Is that why Tor Browser has those edges?

    Dougas,

    Exactly. Makes fingerprinting more difficult. If everyone has the same windows size you can’t make out who’s who based just on that

    Nioxic,

    Fullscreen 1080p

    Whos this john? He has a billion pcs!

    heird,

    Firefox has containers that allows you to seperate all websites in categories where they can’t reach anything outside of it.

    There’s a special one for Facebook

    AlecSadler,

    There are still…I dunno…probably DNS hops, IP, time’s of day, browser window size, browser user agent…

    And if you access any page with any similar parameters on your phone or another household device on any site with FB tracking, it’s over.

    It looks like in the last 7 days my phone has cutoff over 150,000 different tracking attempts and that’s just catchable ones and on my phone.

    ReversalHatchery,

    Canvas, webgl, audio fingerprinting and others I think are still effective through the container.

    sturmblast,

    just don’t use the bullshit in the first place

    possiblylinux127,

    Its not that simple. They are literally everywhere

    sturmblast,

    it is pretty simple actually there’s a lot of tools to block and ignore these companies in a lot of ways. you can also choose to not use any other products which is a very simple thing to do as well

    nonearther,

    I don’t use Facebook but I’m 100% sure they have my data.

    A lot of apps that uses Facebook login, debugger, React Native, etc. allows it to collect as much user data as it can and send it to FB servers because that’s the default.

    max,

    I’m pretty sure React/React Native doesn’t have any Facebook tracking built in. The dev community would crucify them for that.

    ReversalHatchery,

    I would highly doubt that. They don’t care, most of them not just willingly but intentionally insert google tracking code and similar.

    max,

    There are definitely a lot of developers that are like that, but you also have the open source junkies. The latter group would go absolutely bananas.

    Dubious_Fart,

    I dont have facebook, and I explicitly tell family not to put my pictures on their facebook pages or mention me at all.

    I’m still 100% convinced facebook has my biometric data, my home address, and what I ate for dinner last week.

    The amount of data they collect is insane, and intrusive.

    Every time it comes up, i’m reminded of a sex worker who was doxed by facebook because she in a parking lot that a former client was in, and it had used proximity data and shit to link her Sex Work Phone/Facebook Account, to her real Phone/Facebook account, which was then given to the client as a suggested contact.

    ram,
    @ram@lemmy.ca avatar

    Facebook takes biometric data from pictures that aren’t uploaded to the platform. All it takes is for them to have access to the filesystem of the user’s mobile OS.

    This is why I fullstop do not let people take photos of me where I can help it. I’m fucking tired of being made a datapoint.

    carloshr,
    @carloshr@feddit.cl avatar

    There’s a lo of information that sites, not only Facebook, use to track you. Email address can be one this. Anyway, I consider that using anonymous email address is a good idea not only to avoid tracking, also for security reasons I case of filtering, for instance.

    MagneticFusion,

    This is why I always use a VPN. Yes I know it’s not a magic bullet for privacy but saying “you don’t need a VPN” is also a lie

    koper,

    Using a VPN does exactly nothing against cookies or device fingerprinting.

    MagneticFusion,

    I never said it does. But it does prevent your IP from being used as a unique identifier. I have a hardened Firefox browser to prevent cookies and device fingerprinting but an IP address is just another form of fingerprinting and approximate location data that using a VPN hides.

    possiblylinux127,

    But the VPN company still has your data

    MagneticFusion,

    firstly, you can choose a good VPN provider like Mullvad or iVPN. Secondly, even if the VPN company had all your data, it is not much worse if worse at all than your ISP having your data, and at least you have an IP address that is not actually yours.

    People who argue VPNs are useless are just plain naive. Yes VPNs are over hyped by youtube sponsorships its not gonna keep you protected from a hacker that gets access to your bank accounts password, but it will improve privacy by a bit.

    possiblylinux127,

    There is no such thing as a “good VPN provider”. VPNs were not created for privacy. They exist to allow individual users and groups to network together in enterprise environments

    If you want more security use i2p or tor

    HelixDab2,

    I am using Firefox, and with a shit-load of add-ons that supposedly prevent unwanted cookies and fingerprinting. I use a VPN.

    I was permanently banned from Reddit (for advocating firebombing nazis, as if that’s a bad thing). When I logged in to an alternate account, that account was also permanently banned. Any account I tried to create after that point ended up being banned within a week, regardless of whether or not I was using it. I checked online. Apparently this has become fairly common in the last 2-3 years.

    While you can minimize your digital fingerprint, it’s almost impossible to prevent all digital fingerprinting. The EFF says that I have very strong protection against digital fingerprinting, but I’m still identifiable to a company with sufficient resources to devote to the task.

    superkret,

    Did you log in from mobile, too?

    GorbinOutOverHere,

    All you have to do to avoid reddit perma bans is to log in on a browser without cookies, on a VPN, and that’s it. If you’re still getting permabanned instantly on new accounts you’re doing something wrong. Maybe you’re using a VPN address that has been banned, idk. I ban evaded multiple accounts for years and only stopped because after I moved my IP changed and I don’t need to fuck with the VPN anymore

    The main thing is you’ll be shadowbanned probably and you’ll have to fuck around with getting karma and begging the admins to un-shadow ban you if your posts don’t show up

    HelixDab2,

    I’ve been using a VPN for several years. I’ve tried using every major browser except Mulvad and Librewolf. As far as I can tell, they’re doing some form of digital fingerprinting that I can’t block. My only option would be getting an entirely new computer. I went through and overwrote/deleted 15 years of comment history (but have not deleted accounts), it’s just not worth it to me.

    HughJanus, (edited )

    Meta applies a myriad of advanced and complicated tracking methods. Email is a very popular and easy one. I believe the one you’re referring to is called a tracking pixel.

    For example, some browsers block tracking Pixels, but if you’re logged into Amazon with an email address that Meta knows, they will sell your shopping habits to Meta to show you ads.

    Echo71Niner,
    Echo71Niner avatar

    Who gives a flying fuck, why are you people still using that trash failbook!

    strawberry,

    they got one hell of a marketplace

    scytale,

    While browser containers won’t work since you’re using the same IP anyway, blocking the trackers themselves would be more effective. DNS blocking, uBlock, and Privacy Badger can help block fb trackers on websites. So fb knows your ip, but at least they can’t track you across other sites.

    EricHill78,

    People say that it’s redundant using Ublock and Privacy Badger together but I’ve tested Ublock without PB and with PB on the cover your tracks site. Without it it states that I’m partially protected and with both on it says I’m covered. I used ungoogled chromium for the test.

    N4CHEM,

    I don’t know if it is the case here, but uBlock Origin lets some trackers through and redirects them to empty addresses, so they are effectively useless, good as blocked. This is done so the website doesn’t detect that you blocked the tracker, in order to avoid breaking website functionality.

    EricHill78,

    That definitely makes sense.

  • All
  • Subscribed
  • Moderated
  • Favorites
  • privacy@lemmy.ml
  • ngwrru68w68
  • rosin
  • GTA5RPClips
  • osvaldo12
  • love
  • Youngstown
  • slotface
  • khanakhh
  • everett
  • kavyap
  • mdbf
  • DreamBathrooms
  • thenastyranch
  • magazineikmin
  • anitta
  • InstantRegret
  • normalnudes
  • tacticalgear
  • cubers
  • ethstaker
  • modclub
  • cisconetworking
  • Durango
  • provamag3
  • tester
  • Leos
  • megavids
  • JUstTest
  • All magazines
    •