Slashdot Mirror
'ClickClickClick' Site Reveals How Much Browsers Know About Your Online Behavior (news.com.au)
mi writes: The site called ClickClickClick annotates your every move on its one and only page. Turn on the sound to listen to verbal annotations in addition to reading them. The same is possible for, and therefore done by, the regular sites as they attempt to study visitors looking for various trends -- better to gauge our opinions and sell us things. While not a surprise to regular Slashdotters, it is certainly a good illustration... Dutch media company VPRO and Amsterdam based interactive design company Studio Moniker have created the site to remind online users about the "serious themes of big data and privacy." Studio Monkier designer Roel Wouters said, "It seemed fun to thematize this in a simple and lighthearted way."
Since I block all this crap, all I get is error messages.
funny how recognizable the dutch accent is... (mayebe an extra information to steal : sound and analyze the language)
just like my post :P
Now, if it could illustrate something dramatically different and on a higher level than the very technical cursor moves and clicks, normal internet users might also find it interesting. "I moved 100px left? Well, duh, I know that."
Free, as in your money being freed from the confines of your account.
but is that really all they can figure out ?
Yeah, it knows when you have clicked stuff and moved your mouse around. I mean, you might as well freak out that the ATM machine knows which buttons you pushed on the keypad. How else is the machine meant to know how you want to interact with it?
What would be scarier is if they hacked google's tracking system and showed you all the information 'don't be evil incorporated' knows about your online activities.
It didn't reveal much? Guessed the number of CPU cores wrong (says four, I've got two but perhaps it counts hyperthreading?). Using Firefox with an adblocker, on a Mac.
It could've done OS and browser fingerprinting, show possible location based on IP, shown a number of social networks that I usually log into, etc.
Somewhat disappointed actually :) Or perhaps relieved :)
8 of 13 people found this answer helpful. Did you?
we have NoScript, though more and more retarded websites totally refuse to work without JS enabled. Luckily ./ is not one of them.
I honestly do not see the need for java, ecma or any other client side scripting. How long till we see an internet Butlerean Jihad and we go back to dumb browsers and apps that handle specific protocols? Even client side cookies are not nescessary. Would it increase server load? Sure, but server processing power is effectively commodity level.
So what is really gained from all the cross domain scripting, cookies, in browser scripting etc that is worth more than privacy? The internet is ad driven these days, but that does not mean it needs to be. Charge everyone based on data output to the net, if you are a content provider, it is going to cost more, if you are a consumer, much less but wrap it into the bandwidth costs.
Right now, we all pay for these stupid ads and click bait. Now some of you will say they use noscript or adblock or whatever, even you still pay for the clickbait because someone has to pay for it. We may not pay for it directly, but we pay for it in costs elsewhere. Where do you think the advertising budgets come from? The products that get sold.
And then you say that you never buy that product, fine, but as the cost of items go up, all the associated costs go up also. So while I may not click on the tabobrain clickbait, someone does and when you go around the drain enough times, we all wind up paying for it in inflation.
What is the ad budget for a medication, not the marketing budget, just the ads? 30%? 40%? More? How much bandwidth is consumed by all the junk ads? Imagine if all that went away...
Yeah it is 5:30 and I am old and dreaming but still imagine
Let Google do the same :
* Your credit card number is 5500 4567 3436 7804
* You spent $3754.17 on Amazon in 2016
* Your coordinates are 39.2904 N, 76.6122 W
* Your dad has undiagnosed cancer since may 2016.
* Your wife cheated on you yesterday. Twice! At 39.166537, -76.624614 and 39.204198, -76.655321, with Google users #5465487874 and #497987544
Have a nice day, and remember : "don't be evil"!
"Looking at subjects timezone, he probably should be at work!"
:-)
I'm a minority race. Save your vitriol for white people.
Horry shiet!
All I get is a white page with a link:
https://www.google-analytics.c...
I mean who really runs javascript from unknown sites?
The website was able to determine how many cores I have.... and that's about it. I hope they don't try to sell that highly classified information to the Chinese government.
Better even: go into about:config and gut as much javascript functionality as possible. That's my default profile.
For pages that insist on javascript (and which I have to use: not many, perhaps once, twice a month) I use a throwaway profile.
I trust my browser... only a bit. I'd prefer a proxy (independent from my browser) to do the gutting, something akin to Privoxy. Some day I'll be there (this proxy could, e.g. instead of dropping cookies and single-pixel-parasites, just send some phantasy values (or even better: pick a random value from an aggregator).
Somehow I don't believe that.
This page sucks. Boring and doesn't reveal anything interesting.
Which one paid liberal moron put it on slashdot's main?
Color me unimpressed. It tells me I moved my mouse on its page. It tells me when I click on its page. I would surely hope a web page gets those events. It does not seem to tell the user about all the fingerprinting information it can get, or much about cookies, beyond the fact that it sets one.
Embarrassing: it actually gets some things wrong, like the saying that I moved the mouse to the upper left (when I did not).
The idea is good, but the implementation seems to be pretty limited...
Enjoy life! This is not a dress rehearsal.
clickbait...
So it was able to detect how many cores my CPU has, and my cursor navigation and how many clicks. I don't see this kind of thing a privacy issue. Now if it could access my email address, my computer name, or any more personal information that would be more shocking. I actually would be fine if sites could only gather this kind of information. Unfortunately we know that's not the case, but the site really fails to get its point across.
no comment on the DNS query nor on the route
basically this site is new media, it gathers data but uses a pre recorded voice to describe it i.e. it uses predefined comments about a users state....
it's a bit like the Huxley comment on society... it may be valid but really its recycled can we please have a new comment ?
thanks this is the internet its a little different (not huge but a little)
John Jones
Hey, how did it find out about the body? Hmm, I'd better cover my traces.
My first program:
Hell Segmentation fault
All I get is a blank white page with a little spinning cursor.
Yet another reason why i love uMatrix
tried to view page, but NoScript blocked all content ! Oh well , nothing to see here!
CPU Cores
Webbrowser type
Window Size
Cursor Position
Cursor Velocity
Cursor Acceleration
Averages of these last three
Button Clicks
Not even slightly scary.
They got you to click. Now they have a lot more data-points on you.
Along with the army of other cross-scipting javascript based sites your failure is complete.
It's good you're using free software, and you should use more of it (preferring a free software OS and a computer that runs nothing but a free OS with free software on top of it). But you shouldn't feel relieved. Just because your browser got things wrong in this test doesn't mean your proprietary (therefore untrustworthy-by-default) OS will fail too. People visit these sites and erroneously think they're safer using a proprietary OS to run their free software browser (or worse, they endorse a proprietary browser written by a company known to spy on its users). I'm guessing you chose MacOS for some convenience. You should know that software in control of the keyboard, mouse, camera, and mic find that a convenient choice for their interests too.
Digital Citizen
I don't get it. All it does it is tell me where I move my mouse. It's like an intro to javascript site. My anti-tracker-fu is the bomb!
Of course YOU like it - it doesn't work! Adblock can't do (or do as well) 16 things hosts do 4 speed, security & reliability:
1.) Protect vs. bad sites (past ads)
2.) Protect vs. fastflux botnet C&C servers
3.) Protect vs. dynamic dns botnet C&C servers
4.) Protect vs. DGA botnet C&C servers
5.) Protect vs. downed DNS (reliability)
6.) Protect vs. DNS redirect poisoned/downed dns
7.) Protect vs. trackers
8.) Protect vs. spam payloads
9.) Protect vs. phish payloads
10.) Protect vs. caps
11.) Get past dns blocks
12.) Keep off dns request logs
13.) Speed up 2 ways (adblocks & hardcodes)
14.) Work on anything webbound multiplatform.
15.) Ez data edit
16.) Block ads more efficiently in cpu/ram/I-O use
APK
P.S.=> Ab+ does less vs. hosts less efficiently (a 128-151mb memory hog http://cdn.ghacks.net/wp-conte...)
ClarityRay defeats it
Ab+'s bribed not to work by default http://www.businessinsider.com...
AdBlock's SLOWER: http://superuser.com/questions...
APK Hosts File Engine 9.0++ SR-4 32/64-bit https://www.google.com/search?...
Ads rob speed, security (malvertising) & privacy (tracking).
Hosts add speed (hardcodes/adblocks), security (bad sites/poisoned dns), reliability (dns down), & anonymity (dns requestlogs/trackers) natively.
Works vs. caps & PUSH ads.
Avg. page = big as Doom http://www.theregister.co.uk/2... & ads = 40% of it.
Hosts != ClarityRay blockable (vs. souled-out to admen inferior wasteful redundant slow usermode addons)
Less power/cpu/ram + IO use vs. DNS/routers/addons/antivirus (slows you) + less security issues/complexity.
Compliments firewalls (blocking less used IP addys vs. hosts blocking more used domains) & DNS (lightens dns load).
Gets data via 10 security sites.
APK
P.S. - Safe https://www.virustotal.com/en/... (Verified by Malwarebytes' S. Burn "seen the code & it's safe" http://forum.hosts-file.net/vi... )