Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Edit ubo to not recommend installing all filter lists #1238

Merged
merged 11 commits into from
May 16, 2022
Merged

Edit ubo to not recommend installing all filter lists #1238

Changes from all commits
Commits
Show all changes
11 commits
Select commit Hold shift + click to select a range
6f73ee9
Edit ubo to not recommend installing all filter lists
May 15, 2022
f0ff656
fix
May 15, 2022
f1ceb82
Add brave://adblock warning
May 15, 2022
ae8cbf7
update brave warning
May 15, 2022
6dadbc7
Add warning to UBO
May 15, 2022
42c595a
fix danger
May 15, 2022
f65fb1b
Warning fix
May 15, 2022
a1e4461
wording fix for safari
May 15, 2022
81b39be
Update docs/browsers.en.md
May 15, 2022
de813ff
Update docs/browsers.en.md
May 15, 2022
0cff87d
Remove the AdGuard URL Protection bc it doesn't even work
May 16, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
16 changes: 9 additions & 7 deletions docs/browsers.en.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -138,6 +138,10 @@ We recommend setting *Aggressive* which can be found in :material-menu: **Settin

We also suggest changing the fingerprinting blocker to *Strict* in :material-menu: **Settings** → **Shields** → **Fingerprint blocking**. You can always downgrade it if you need to on a per-site basis.

!!! danger "Do not use brave://adblock!"

Brave allows users to select additional adblock filters by visiting brave://adblock. We recommend that you do not use this feature and stick to the default settings provided by the Brave Shield to not stand out from other braves users and to not increase your attack surface. If there is a vulnerability in the Shield, third party filters can provide malicious rules to exploit it.

##### Social media blocking

Disable social media components in :material-menu: **Settings** → **Social media blocking**.
Expand Down Expand Up @@ -262,7 +266,7 @@ Do note that Private Browsing does not save cookies and website data, so it won'

##### iCloud Sync

While synchronization of Safari History, Tab Groups, and iCloud Tabs uses E2EE, bookmarks sync does [not](https://support.apple.com/en-us/HT202303); they are only encrypted in transit and stored in an encrypted format on Apple's servers. Apple may be able to decrypt and access them.
Synchronization of Safari History, Tab Groups, iCloud Tabs, and saved passwords are E2EE. However, bookmarks are [not](https://support.apple.com/en-us/HT202303). Apple can decrypt and access them in accordance with their [privacy policy](https://www.apple.com/legal/privacy/en-ww/).

If you use iCloud, we also recommend checking to ensure Safari's default download location is set to locally on your device. This option can be found in :gear: **Settings** → **Safari** → **General** → **Downloads**.

Expand All @@ -280,7 +284,7 @@ We generally do not recommend installing [any extensions](https://www.sentinelon

**uBlock Origin** is a popular content blocker that could help you block ads, trackers, and fingerprinting scripts.

We suggest enabling all of the [filter lists](https://github.com/gorhill/uBlock/wiki/Dashboard:-Filter-lists) under the "Ads," "Privacy," and "Malware domains". The "Annoyances" and "Multipurpose" lists can also be enabled, but they may break some social media functions. The *AdGuard URL Tracking Protection* filter list makes extensions like CleanURLs and NeatURLs redundant.
We suggest leaving the extension in its default configuration, as extra filter lists can add additional [attack surface](https://portswigger.net/research/ublock-i-exfiltrate-exploiting-ad-blockers-with-css).

[Extension Info](https://github.com/gorhill/uBlock#readme){ .md-button .md-button--primary }

Expand All @@ -292,11 +296,9 @@ We generally do not recommend installing [any extensions](https://www.sentinelon
- [:fontawesome-brands-opera: Opera](https://addons.opera.com/extensions/details/ublock)
- [:fontawesome-brands-github: Source](https://github.com/gorhill/uBlock)

We also suggest adding the [Actually Legitimate URL Shortener Tool](https://raw.githubusercontent.com/DandelionSprout/adfilt/master/LegitimateURLShortener.txt) list and any of the regional lists that might apply to your browsing habits. To add this list, first access settings by clicking on the uBO icon, then the settings icon ( :gear: ). Go to the bottom of the Filter lists pane and place a checkmark next to Import under the Custom section. Paste the URL of the filter list above into the text area that appears below and click "Apply changes".

Additional filter lists do slow things down and may increase your attack surface, so only apply what you need.

uBlock Origin also has different [blocking modes](https://github.com/gorhill/uBlock/wiki/Blocking-mode). The easy mode [might not](https://www.ranum.com/security/computer_security/editorials/dumb/) necessarily keep you safe from every tracker out there, whereas the more advanced modes let you control exactly what needs to run.
!!! danger "Stick to the default filter lists"

Additional filter lists do slow things down and may increase your attack surface, so only apply what you need. If there is a vulnerability in uBlock Origin, third party filters can provide malicious rules to exploit it.

### AdGuard for Safari

Expand Down