I would lightly recommend avoiding these addons and turning on fingerprinting protection in Firefox instead.
> about:config
> resistfingerprinting -> true
> webgl.disabled -> true
Firefox's fingerprinting protection will block canvas fingerprinting by default (put it behind a prompt). It will also spoof your installed fonts. The second setting I listed will take care of webGL, although it won't be behind a prompt, so it's annoying to re-enable for the (very few) sites that need it. I think resistfingerprinting also handles audio fingerprinting, but I'm not completely sure. I do know it reduces timer precision and a few other things.
Firefox's fingerprinting tools are being uplifted from Tor, which means people who care a lot about this and have a lot of experience in what actually helps are working on it. I am cautious of random extensions even if they're not malicious; it's very easy to get this stuff wrong and accidentally open up a new fingerprinting vector instead.
If you are going to install a new extension, install UMatrix and block Javascript by default. That won't help you with a site like Tiktok's since you'll need to turn Javascript back on for them. But a nontrivial portion of the web works without Javascript, and it really does reduce the number of attack vectors you have.
I keep my extension list very small: Ublock Origin, UMatrix, DecentralEyes, and HTTPS Everywhere. Extension sandboxing is very bad, so I don't like to install new extensions if I can help it. Firefox profiles are very cool and potentially very useful, but I don't currently use them. Maybe that will change in the future.
> I would lightly recommend avoiding these addons and turning on fingerprinting protection in Firefox instead.
A word of caution, this will tell all websites you're on UTC so it will break several things (fitness trackers, github reports, etc..). If you're banging your head against the wall (like I did) because you can't figure out why everyone thinks you're on UTC, it's because of this.
That's true, it can be really annoying, especially when you don't know the cause. On the plus side, it means I've now picked up a new skill that I didn't originally need or want.
I've also found, like, 3 date bugs in an application where I was assuming that that the server and the client would be in the same time zone.
I may be wrong, but these add-ons seem shady to me. The website pointed to as the homepage is an add-ridden site that is supposedly a community for open-source development, but all the links to 'fork me on GitHub' don't go anywhere. I can't find the source at all. This topic comes up often but these have never been posted and the add-ons have relatively few users (4k, 1.5k, 2k and 0.7k).
I don't know anything about browser add-ons. Perhaps someone who does could take a look and see what's up?
I am extremely cautious about installing any sort of browser extension; especially ones that request such intrusive permissions that could so easily be severely exploited with any given update.
Particularly an extension that wants access to all websites an d their data. Since the browser has very open permissions from the firewall, and these run under those rules it is open season for an extension dev to send out data.
The problem with that, though, is that you are one of the few people doing that, which makes you easier to target, which defeats the purpose.
I guess a real solution would have to come from a collaboration between all browser vendors, like always returning a fixed value when these tricks are detected.
(Canvas|WebGL|AudioContext|Font) Fingerprint Defender
They report and seem to block fingerprinting attempts.
https://addons.mozilla.org/en-US/android/addon/canvas-finger...
https://addons.mozilla.org/en-US/android/addon/webgl-fingerp...
https://addons.mozilla.org/en-US/android/addon/audioctx-fing...
https://addons.mozilla.org/en-US/android/addon/font-fingerpr...