• 0 Posts
  • 8 Comments
Joined 1Y ago
cake
Cake day: Jun 22, 2023

help-circle
rss

That’s… That’s the… Well nevermind…


Remember kids, everything is a data mining trap. Be sure to submit your resume with zero PII, and at least 1024-bit encryption.


Depends on what you are using them for.

E.g., if you maintain a Proton email account because you don’t want your emails mined for businesses to advertise at you, then you give very little info away by your bank finding out about the purchase.

If you use it because you’re engaging in activity that could be considered illegal, then your bank knowing about the purchase is probably the least of your problems if someone starts digging. Mysudo has to respond to a court order just like your bank and has access to all of the same PII


If you don’t subscribe it’s pretty unlikely that you’re going to have legal grounds to sue over anything to begin with



This app may share these data types with third parties

Location, App info and performance, and Device or other IDs

This app may collect these data types

App activity, App info and performance, and Device or other IDs

Why?


The idea of it is as simple as it is dangerous. It would provide websites with an API telling them whether the browser and the platform it is running on that is currently in use is trusted by an authoritative third party (called an attester). The details are nebulous, but the goal seems to be to prevent “fake” interactions with websites of all kinds. While this seems like a noble motivation, and the use cases listed seem very reasonable, the solution proposed is absolutely terrible and has already been equated with DRM for websites, with all that it implies.

It’s all a bit nebulous at the moment, but at least initially it seems to me like your browser’s “attester” would have a lot of insights into your browsing habits. It also has the potential of killing 3rd party browsers like FF who could lose access to websites unless they jump onboard, and who may still lose access if websites decide not to trust their (hopefully more private) attestation service.

There’s still a lot of whatifs floating around because Google just surprise pulled this project out of their ass days ago after working on it in secret for at least a year.


Add-ons give you a lot more choice and control than baked in options.

What’s stopping Brave’s blocker from just allowing ads from Brave’s services? Can you see under the hood to tell if it’s blocking everything or just surface level stuff?

A proprietary built in blocker is only as trustworthy as the people that made it, and as the links in this discussion suggest, Brave isn’t earning much trust.