It's always fascinating to me to read these horror stories about modern websites because I've disbabled JS and see almost none of this crap. I don't understand how these website still get...
It's always fascinating to me to read these horror stories about modern websites because I've disbabled JS and see almost none of this crap. I don't understand how these website still get visitors. If a barkeeper would punch everyone in the face if they orders a drink, he would be out of a job very quickly, even if the drinks were free. But somehow websites can do whatever they want and users are ok with it.
First, I'm fascinated that you're able to use the web with JS disabled. But to your point, basically nobody outside of highly technical users has any idea that any of this is going on. On the...
First, I'm fascinated that you're able to use the web with JS disabled.
But to your point, basically nobody outside of highly technical users has any idea that any of this is going on.
On the bright side, a good ad blocker can prevent nearly all of this crap.
To be honest, I run with ad blockers installed myself so I also do not see most of this garbage. Between Facebook Container, uBlock Origin, Privacy Badger, and DuckDuckGo Essentials pretty much...
To be honest, I run with ad blockers installed myself so I also do not see most of this garbage. Between Facebook Container, uBlock Origin, Privacy Badger, and DuckDuckGo Essentials pretty much everything malicious is blocked enough that I don’t meaningfully interact with most of it.
I use NoScript on my desktop, set to forbid all JS. I can whitelist domains, both temporarily for that visit or permanently. I can also just disable it on a tab for sensitive work like govt sites...
I use NoScript on my desktop, set to forbid all JS. I can whitelist domains, both temporarily for that visit or permanently. I can also just disable it on a tab for sensitive work like govt sites and forms.
Many pages I'll need to trust a domain, usually the main host and sometimes a CDN, then refresh and get the fully working website without another dozen domains loading whatever they want. I wouldn't recommend it for most folks, but for me, I consider it making websites more usable and friendly.
I do also use ublock origin, it does a lot of good, just not as aggressive about certain elements, like auto play videos for instance -- I'd rather not load those at all.
I'm similarly bemused by reports like your own of people using the web without JS in 2026. Unless you've restricted yourself to visiting a very small curated set of sites I've got to imagine...
I'm similarly bemused by reports like your own of people using the web without JS in 2026. Unless you've restricted yourself to visiting a very small curated set of sites I've got to imagine that's more frustrating than liberating overall.
I mean, I think you and I are probably in agreement for the most part... I use Firefox's advanced tracking protection in strict mode, and uBlock Origin + Decentraleyes + CanvasBlocker + Bypass Paywalls Clean, and an always-on VPN. I am 100% on board with controlling your own device, protecting your privacy, yada yada. But JavaScript drives the web today, adding a ton of value and frankly I can't imagine the web is even viable without it. Turning it off entirely feels like going vegan but refusing to eat beans.
I've only really used uBlock Origin, do you find the additional Firefox add-ons you mentioned make a difference? I had Privacy Badger and Facebook Container installed for some time but I didn't...
I've only really used uBlock Origin, do you find the additional Firefox add-ons you mentioned make a difference? I had Privacy Badger and Facebook Container installed for some time but I didn't notice a massive difference. I had NoScript for a while but it basically broke every website and I had to disable it so much it wasn't really doing anything any more. And use NordVPN in the browser. I'm guessing the "difference" is something that happens in the background instead of something you notice though. I'm rambling, I guess my question is: how did you land on your current stack "uBlock Origin + Decentraleyes + CanvasBlocker + Bypass Paywalls Clean"?
Honestly, with uBlock Origin you already cover a lot. A lot of the other things exist somewhere on a spectrum where context matters a lot. VPNs are a great example, certainly with a lot of the VPN...
Honestly, with uBlock Origin you already cover a lot. A lot of the other things exist somewhere on a spectrum where context matters a lot. VPNs are a great example, certainly with a lot of the VPN providers you are for the most part adding latency to your experience and effectively a second ISP. In some cases it even makes your fingerprint more unique since a lot of the IP ranges used by VPN providers are known. It also entirely depends on the country you are in, how much you do trust your ISP, etc, etc.
A tool like DecentralEyes does make some sense, but requires the extension to be kept uptodate. Which to my knowledge is no longer done. There is a fork called LocalCDN that is still actively maintained. Again, it makes some sense. A request to a CDN will still be done the first time you require a library, but after that the CDN can't track you across other websites that use the same library.
At the point where you really no longer have a unique fingerprint you end up with a browsing experience I'd personally hate to be honest. With a lot of steps in between you might actually make yourself more unique as your browser effectively starts to act out of place.
Yeah this aligns more with my experience. I had CanvasBlocker, used Firefox's advanced tracking protection set to strict, and there were just oddities I would keep encountering of things that...
At the point where you really no longer have a unique fingerprint you end up with a browsing experience I'd personally hate to be honest. With a lot of steps in between you might actually make yourself more unique as your browser effectively starts to act out of place.
Yeah this aligns more with my experience. I had CanvasBlocker, used Firefox's advanced tracking protection set to strict, and there were just oddities I would keep encountering of things that didn't work right or as expected. I ended up giving it up as it just wasn't worth the headaches.
I considered using Mullvad browser but it doesn't come with the password manager I use as a default (Bitwarden) and they do seem to advise that installing other extensions kind of defeats the purpose of using it since every extension you add makes it more unique and identifiable. I don't know if just adding Bitwarden would make it fully unique, I didn't try it.
It's always fascinating to me to read these horror stories about modern websites because I've disbabled JS and see almost none of this crap. I don't understand how these website still get visitors. If a barkeeper would punch everyone in the face if they orders a drink, he would be out of a job very quickly, even if the drinks were free. But somehow websites can do whatever they want and users are ok with it.
First, I'm fascinated that you're able to use the web with JS disabled.
But to your point, basically nobody outside of highly technical users has any idea that any of this is going on.
On the bright side, a good ad blocker can prevent nearly all of this crap.
To be honest, I run with ad blockers installed myself so I also do not see most of this garbage. Between Facebook Container, uBlock Origin, Privacy Badger, and DuckDuckGo Essentials pretty much everything malicious is blocked enough that I don’t meaningfully interact with most of it.
I use NoScript on my desktop, set to forbid all JS. I can whitelist domains, both temporarily for that visit or permanently. I can also just disable it on a tab for sensitive work like govt sites and forms.
Many pages I'll need to trust a domain, usually the main host and sometimes a CDN, then refresh and get the fully working website without another dozen domains loading whatever they want. I wouldn't recommend it for most folks, but for me, I consider it making websites more usable and friendly.
I do also use ublock origin, it does a lot of good, just not as aggressive about certain elements, like auto play videos for instance -- I'd rather not load those at all.
Why use both NoScript and uBlock Origin? uBO already includes all functionality of noscript
I've had NoScript longer, it's straightforward whereas I can't make heads or tails of ublock's UI.
I'm similarly bemused by reports like your own of people using the web without JS in 2026. Unless you've restricted yourself to visiting a very small curated set of sites I've got to imagine that's more frustrating than liberating overall.
I mean, I think you and I are probably in agreement for the most part... I use Firefox's advanced tracking protection in strict mode, and uBlock Origin + Decentraleyes + CanvasBlocker + Bypass Paywalls Clean, and an always-on VPN. I am 100% on board with controlling your own device, protecting your privacy, yada yada. But JavaScript drives the web today, adding a ton of value and frankly I can't imagine the web is even viable without it. Turning it off entirely feels like going vegan but refusing to eat beans.
I've only really used uBlock Origin, do you find the additional Firefox add-ons you mentioned make a difference? I had Privacy Badger and Facebook Container installed for some time but I didn't notice a massive difference. I had NoScript for a while but it basically broke every website and I had to disable it so much it wasn't really doing anything any more. And use NordVPN in the browser. I'm guessing the "difference" is something that happens in the background instead of something you notice though. I'm rambling, I guess my question is: how did you land on your current stack "uBlock Origin + Decentraleyes + CanvasBlocker + Bypass Paywalls Clean"?
Honestly, with uBlock Origin you already cover a lot. A lot of the other things exist somewhere on a spectrum where context matters a lot. VPNs are a great example, certainly with a lot of the VPN providers you are for the most part adding latency to your experience and effectively a second ISP. In some cases it even makes your fingerprint more unique since a lot of the IP ranges used by VPN providers are known. It also entirely depends on the country you are in, how much you do trust your ISP, etc, etc.
A tool like DecentralEyes does make some sense, but requires the extension to be kept uptodate. Which to my knowledge is no longer done. There is a fork called LocalCDN that is still actively maintained. Again, it makes some sense. A request to a CDN will still be done the first time you require a library, but after that the CDN can't track you across other websites that use the same library.
CanvasBlocker might help a little bit in combating fingerprinting, but fingerprinting is a complex issue to begin with.
At the point where you really no longer have a unique fingerprint you end up with a browsing experience I'd personally hate to be honest. With a lot of steps in between you might actually make yourself more unique as your browser effectively starts to act out of place.
Yeah this aligns more with my experience. I had CanvasBlocker, used Firefox's advanced tracking protection set to strict, and there were just oddities I would keep encountering of things that didn't work right or as expected. I ended up giving it up as it just wasn't worth the headaches.
I considered using Mullvad browser but it doesn't come with the password manager I use as a default (Bitwarden) and they do seem to advise that installing other extensions kind of defeats the purpose of using it since every extension you add makes it more unique and identifiable. I don't know if just adding Bitwarden would make it fully unique, I didn't try it.