Can I get your honest opinion on these two? Snakeoil or not?

Welcome (((Chrome))) user.

How is HTTPSeverywhere a botnet? And can you prove that smart https is safe to use?

Decentraleyes
Basically blocks library GETs and uses a local copy instead

Not that user, but I guess he dislikes the EFF certificate observatory that HTTPS Everywhere uses to check certs but you can disable that easily, it is a hog since it works using a whitelist that's pretty massive nowadays
Smart HTTPS it's FOSS and no one has found it to be malicious

>schlome
lol

Descentraleyes it's a must unless you don't use websites that rely on third party resources

I can't for the life of me figure out what decentraleyes actually does.

Attached: 1540347591674.png (413x549, 71K)

I was told Ghostery is avoid-tier, why is that?

Sites nowadays fetch resources (like scripts, libraries and fonts) from third party sources to save on bandwidth (usually Google)
Descentraleyes caches some of those, specifically the libraries, so you don't contact Google when you visit a website, reducing your fingerprint and saving some bandwidth

Both are fine and a good investigation for privacy.

The must-have basic addons: ublock origin, umatrix, https-everywhere, decentraleyes, cavasblocker, privacy badger.

Made by an ad company, slower and more limited than uBlock, their lists are less maintained than most other lists too

It's botnet.

from what I read, you're covered with umatrix and ublock and wouldn't need privacy badger

Well that seems nice.

Https everywhere is a placebo and doesn't contribute to your security whatsoever because every site that needs https already has it.
Decentraleyes is also useless.

Ghostery was bought by an ad company half a decade ago and the addon is less efficient and useful than uBlock Origin.

>privacy badger
You don't need it when you have uBlock Origin.
>cavasblocker
Unnecessary with privacytools.io about:config tweaks.

You miss the point of HTTPS Everywhere.

eff.org/https-everywhere/faq#why-use-a-whitelist-of-sites-that-support-https-why-cant-you-try-to-use-https-for-every-last-site-and-only-fall-back-to-http-if-it-isnt-available

ublock origin and umatrix work with block lists, while privacy badger learns from browsing - so they extend each other, I'd say

so is ublock origin all you really need?

and umatrix to prevent scripts running

uO can block scripts too. But uMatrix has some things that uO doesn't liking blocking cookies and CSS. There's a couple of other things too. Gorhill really needs to merge everything into 1 extension though.

Attached: uO.png (1063x762, 91K)

Decentraleyes is underrated and an absolute must if you don't want cdn's to botnet you. HTTPS Everywhere is fine but Smart HTTPS is also a valid alternative.

It originally was one extension, but he split them into two so uMatrix could be the user-friendly one.

what's a cdn? does using a vpn protect against it?

jfc
At least use a search engine first

So why have a user-unfriendly one?

I like the idea behind decentraleyes.

Attached: de.png (1969x692, 134K)

so do you need decentraleyes if you use a vpn?

For autists that want even finer grained control.

Depends what you're trying to achieve. For privacy not really as you're not giving up your real IP. For speed and saving bandwith maybe since your fetching locally. But it will most likely be very minimal.

Attached: d.png (682x550, 42K)

>Https everywhere is a placebo and doesn't contribute to your security
wrong, forcing sites to use https is by definition, not a placebo
whatsoever because every site that needs https already has it.
sure, if all you do is browse facebook and twitter all day
>Decentraleyes is also useless.
wrong, CDNs also have analytics
>Unnecessary with privacytools.io about:config tweaks.
wrong, doesn't cover everything, and it is beneficial to know what sites are using canvas through the indicator badge

is privacy possum okay?

>only 1077

Attached: 2018-10-25-195920_grim.png (1213x65, 9K)

Decentraleyes strips some data from the CDN requests as well, so it improves your privacy. It's a bit faster, too.

Decentraleyes is particularly nice if you are using uMatrix. It allows you to unblock a few CDNs by default, which makes many more sites work by default/ with only allowing first party javascript. If you do this though, you need to have decentraleye block unknown files from the CDNs.

If I block all scripts by default and barely allow any will decentraleyes not need to fetch CDNs?

>Decentraleyes strips some data from the CDN requests as well
I forgot about that

Attached: 1.png (884x462, 54K)

Obviously you'll only fetch a CDN domain if you allow it via umatrix.

what's a canvas?

I stopped using Https everywhere when they changed their permissions.
Why on gods green earth should that addon need to read my stored data?

Attached: 1529586196739.jpg (960x1051, 262K)

What site do you need https on? Protip, https is useless unless you're logging in on a site.
>doesn't cover everything
Yes it does. One of their about:config settings completely block canvas access.

I use both, https for security, decentraleyes is honestly not an inpebetrable shield but it anoy tracking website.