“You opened this page. It already knows the following.”

https://sinceyouarrived.world/taken

@Migueldeicaza I know you knew the browser provided all of that before you opened the link. I did too.

Were you still as freaked out as me, even though you knew it was gonna happen?

@Sempf @Migueldeicaza it's one thing knowing it, but quite another seeing it unfold in front of you. Experiencing it makes it more visceral

@Offbeatmammal @Migueldeicaza This reminds me of showing developers how ineffective browser security controls are against an attacker. The developer knows that the browser is just talking to a backend server and that you can insert yourself between that space but it's very different seeing it.

@Migueldeicaza funny thing, if I use an anti-fingerprinting browser and a vpn and stuff like that, most things this page tells me are fake, but there is another website called something like amiunique.org, which tells me that the combination of all the fake things about me can still uniquely identify me on the internet... at least among its other visitors I guess

@Migueldeicaza Hello friend, I know this might be appropriate, but could you support my post? I would be very grateful🤍🕊️

@Sempf

@Migueldeicaza the gyroscope data through the browser is the one that freaks me out every time.

you'd think over a decade of Niantic shenanigans would be the salient reminder

@Migueldeicaza

Vivaldi was found wanting.

Firefox was quite a bit better.

Firefox Focus was basically the same.

Surprisingly Cromite was the best overall.

All, for whatever reason, reported the exact gyroscope position.

My question is why the fuck do browsers even report this data

@liquidparasyte @Migueldeicaza weird but nice to know that iOS and Safari are at least smart enough to block gyroscope and battery by default

@Sempf I really loved the tone, typography and disclosure- such a. Rautiful way of presenting it :-)

@liquidparasyte not Safari :-)

@Migueldeicaza
> You have not enabled Do Not Track. This is the default. It means either that you chose not to, that you did not know it existed, or that you know it makes no difference. All three possibilities are informative.

Statements dreamed up by the utterly deranged

@EndlessMason @Migueldeicaza I'm pretty sure all of these statements were dreamed up by an llm

@Migueldeicaza
This actually reminds me of support scam and ads for virus checkers from the 90s web.

A big fat popup that says "we have copied all the files from your computer
<iframe src="file://C:\">" and like... lamo, i guess.

@Migueldeicaza AI slop site just learned what basic fingerprinting is

@Migueldeicaza

It thinks I’m in london.

@liquidparasyte @Migueldeicaza I'm on Firefox, and it got the gyroscope reading completely wrong. It also reported that I was in a town about 150 miles from here, and reckoned I'd touched the screen 612 times whilst scrolling through. Nonetheless, it's an eye opener in many ways

@Migueldeicaza it did not identify my browser correctly

@Migueldeicaza it was off on my location by 600 miles

@Migueldeicaza tried it with tor browser. It does not know about gyro or so..

@Migueldeicaza Is there a way to prevent this?

@Migueldeicaza ehh, a lot of scare tactic language, and not a lot of actual explanations of the potential danger.

like, the "what renders your world" tells me nothing about how this information can actually be weaponized in any way.

or how it can tell what fonts i have. So? it gives no explanation for why this is dangerous (if it even is)

🫤

@magicalgrrrl oh bummer I will try to do better and deliver content that is more suitable for your needs. Thanks for letting me know, I will try to adjust my posts to meet your expectations in the future.

I apologize profusely for not meeting the moment.

@liquidparasyte @Migueldeicaza

felt a bit better after I read

https://vivaldi.com/blog/shared-networks-tracking-fingerprinting/

and noticed that the battery level was indeed inaccurate

@magicalgrrrl It did explain that.

Each data point alone is not important in itself, no more than any single ridge on the tip of your finger. It is the combination of them all into a whole that makes a unique fingerprint, that strips away your anonymity on the internet.

Once you become a known entity, your dossier can be fleshed out, bought, and sold. The US government has been buying this information, no warrant required. Anyone could.

@Migueldeicaza

@Migueldeicaza

It's location was 5000miles off. It's time said afternoon when it's morning. Makes me think tor does a pretty good job.

@Migueldeicaza idk its a nice project but i prefert projects like https://coveryourtracks.eff.org/
because they give you actual tips and tools
https://sinceyouarrived.world/taken just leaves you with a sense of awe and dispair

@Migueldeicaza this is cool but at this point I can practically smell LLM-coded websites. They all look the same. This one feels LLM-written as well.

@Migueldeicaza lol it got half of the things incorrect, despite me not taking any particularly extreme measures to protect anything.

@nev oh bummer I will try to do better and deliver content that is more suitable for your needs. Thanks for letting me know, I will try to adjust my posts to meet your expectations in the future.

I apologize profusely for not meeting the moment.

@Migueldeicaza most of this didnt shock me much. except for yhe fucking gyroscope why the fuck are websites using this data???

spooked me so much i enabled the sensors off dev feature on android

@Migueldeicaza happy to see almost all the data are completely wrong. Using Firefox with privacy plugins pays off.

@Migueldeicaza

Fun stuff, it says I am in Lepzig, but opened the page from another far away city.

Says I have a very modern extremely high resolution screen, that is spoofed and changes quite often.

Browser Firefox, well it is broadly based on it.

Languages in the browser, it got those right.
Fonts, told me I am unique, except it was spoofed too.

For those using plain firefox or chrome, chromium the results will be way more interesting.

For Tor it gets stuck enumerating the browser.

@Migueldeicaza this is a cool page, but it’s also run by a grifty AI thing

@WilmBoerhout @Migueldeicaza

To see a more complete #AmIUnique parameter list:

https://amiunique.org/fingerprint

@Migueldeicaza dark grey text on a black background is hard to read on a small screen. Reader mode is not available for the site.

@Migueldeicaza

It will never know that I did not click the link.

if you want it to not do this, RFP works. if you want RFP but still respecting dark-mode preference, enable privacy.fingerprintingProtection and set privacy.fingerprintingProtection.overrides to +AllTargets,-CSSPrefersColorScheme (it still reports timezone as UTC with this and you can disable that too but I don’t remember how to and don’t care about websites showing time that’s off by an hour for half the year so much)

@Migueldeicaza it was almost entirely wrong for me 😂

but i'm a special snowflake.. but honestly most of that is the info a server needs to send you a reasonably complex page and make it work ok for you. webpages have been turing complete for a minute.

@Sempf @Offbeatmammal @Migueldeicaza ah damn it didn't work for me
most things report "your browser blocks this" and some things like location or language are a shot in the dark