Slashdot Mirror

← Back to Stories (view on slashdot.org)

Firefox 57's Speed Secret? Delaying Requests from Tracking Domains (zdnet.com)

Posted by EditorDavid on from the Quantum-improvements dept.

An anonymous reader quotes ZDNet: A Mozilla engineer has revealed one of the hidden techniques that Firefox 57 -- known as Quantum -- is using to improve page load times... It delays scripts from tracking domains, such as www.google-analytics.com. The technique was developed by Mozilla engineer Honza Bambas, who calls it "tailing". It works by delaying scripts from tracking domains when a page is actively loading and rendering...

Tailing only briefly prevents the tracking scripts loading, rather than disabling them entirely. Page load performance is improved by saving on network bandwidth and computing resources while loading a page, in a way that prioritizes site requests over tracking requests. "Requests are kept on hold only while there are site sub-resources still loading and only up to about 6 seconds. The delay is engaged only for scripts added dynamically or as async. Tracking images are always delayed. This is legal according all HTML specifications and it's assumed that well built sites will not be affected regarding functionality," explains Bambas.

119 comments

  1. With adblocking this is not even an issue. by Z00L00K · · Score: 4, Insightful

    Everyone that already runs adblocking won't notice this anyway.

    --
    If builders built buildings the way programmers wrote programs, then the first woodpecker would destroy civilization.
    1. Re:With adblocking this is not even an issue. by Anonymous Coward · · Score: 0

      Anti-adblocking sites never get visited again by me.

    2. Re:With adblocking this is not even an issue. by Antiocheian · · Score: 1

      I'm not sure about that. Default adblocking filters do not block trackers.

    3. Re:With adblocking this is not even an issue. by PPH · · Score: 1

      So what's the difference between an advertising site and a tracking site? And what's to stop an advertiser/tracker from throwing some more obfuscation into their system?

      --
      Have gnu, will travel.
    4. Re:With adblocking this is not even an issue. by Anonymous Coward · · Score: 0

      "Everyone that already runs adblocking won't notice this anyway."

      I think you mean "NoScript" -- not ad block.

    5. Re:With adblocking this is not even an issue. by Anonymous Coward · · Score: 0

      Which terrible adblocker are you using that doesn't filter out trackers by default?

    6. Re:With adblocking this is not even an issue. by squiggleslash · · Score: 4, Informative

      An advertising site serves ads. A tracking site tracks you.

      To clarify:

      Advert: a picture, movie, or some text, intended to impart a message not associated with the core article, that is there because someone paid for it to be shown.

      Tracking: the act of determining a user's path through a website or collection of websites. Typically used by marketing departments to determine the success of a page in terms of keeping users engaged within a so-called 'funnel', a series of webpages that delivers a user to a store front, sometimes by UI designers and developers to debug usability issues.

      Does this help?

      --
      You are not alone. This is not normal. None of this is normal.
    7. Re:With adblocking this is not even an issue. by arth1 · · Score: 1

      I'm not sure about that. Default adblocking filters do not block trackers.

      Who relies on default filters? Surely, people take a look every now and then to identify more items to block?

      There's also EFF's privacy badger. Too bad it only works in a couple of browsers, and that it turns on the "do not track" (which doesn't stop tracking; it just gives an additional piece of data for more accurate fingerprinting).

    8. Re: With adblocking this is not even an issue. by Anonymous Coward · · Score: 0

      The sure way to stop tracking is to track back, take an AK-47 and shoot these useless parasites.

    9. Re:With adblocking this is not even an issue. by PPH · · Score: 1

      Does this help?

      Not really. Because from my computer's point of view, both sites do much of the same thing. They set and read cookies, upload images to my cache (so visits to other sites using the same image can deduce whether I've visited before), set values in HTML5 local storage and all sorts of similar things. So if someone can come up with a characteristic specific to tracking, I can block only those pages and allow the ads that support my favorite web sites. Instead of having to block everything.

      --
      Have gnu, will travel.
    10. Re:With adblocking this is not even an issue. by Anonymous Coward · · Score: 2, Informative

      don't run the default... duh.

      abp only enables easylist by default.

      https://adblockplus.org/subscr...

      you should run easylist+easyprivacy, any easylist specific to your country, fanboy annoyances, then whatever extras near the bottom of that list you want (nocoin, malware domains, spam404, etc).

    11. Re:With adblocking this is not even an issue. by sound+vision · · Score: 1

      He just gave you the characteristics particular to tracking. I don't think the mechanisms used to implement it differ much on the client side compared to plain, non-tracking ads. Your computer isn't going to know what the server does with the information it sends back. Or the intentions of the people controlling that server, or whoever they might sell the data to. There are, however, people dedicated to determining that. They maintain block lists broken down by category. The uBlock Origin plugin for Firefox will give you a list of these lists for you to use, examine, edit, whatever.

    12. Re: With adblocking this is not even an issue. by guruevi · · Score: 0

      What are you doing here then?

      --
      Custom electronics and digital signage for your business: www.evcircuits.com
    13. Re:With adblocking this is not even an issue. by Anonymous Coward · · Score: 0

      Kinda, but you're missing the dynamic - it's two sides of the same objective. The tracker develops your profile to sell targeted ads, and the advertiser sends the actual ad to you.

      So from the default perspective, they're the same and you don't want either - they're two hands on the same pusher.

    14. Re:With adblocking this is not even an issue. by Darinbob · · Score: 2

      Noscript will.

    15. Re:With adblocking this is not even an issue. by Anonymous Coward · · Score: 0

      That isn't completely correct. The vast majority of tracking pixels are loaded along with the ads. A much smaller percentage are embedded in the page itself

    16. Re:With adblocking this is not even an issue. by Anonymous Coward · · Score: 0

      The reality is most advertisers are doing both so from a differentiation perspective many of the scripts are both.

    17. Re:With adblocking this is not even an issue. by kelemvor4 · · Score: 1

      You still need noscript on top of adblock+. I didn't believe that until I tried noscript myself. There's a ton of junk that adblock misses. On slashdot.org, adblock+ misses scripts from slashdotmedia.com, stacksocial.com, taboola.com, trustarc.com, ml314.com, rpxnow.com, crsspxl.com, stack-sonar.com, licdn.com, cloudfront.net, truste.com, janrain.com, pro-market.net, fsdn.com. That's the list of domains this slashdot page is loading scripts from, not counting whatever was blocked by adblock+.

    18. Re: With adblocking this is not even an issue. by Anonymous Coward · · Score: 0

      The only thing that will do both is one that disables all JavaScript. Ad block plus will block ads but not trackers. Ghostery will block trackers and not most ads

    19. Re: With adblocking this is not even an issue. by Anonymous Coward · · Score: 0

      Exactly. People who use an ad blocker and/or Noscript see no speed improvement at all.

    20. Re: With adblocking this is not even an issue. by Anonymous Coward · · Score: 0

      Dude you got raped and passed out. Are you ok?

    21. Re:With adblocking this is not even an issue. by cdxta · · Score: 1

      I think another Speed Secret was by disabling our plug-ins. I remember reading an article a while ago about how ad-blocking in itself is one reason Firefox is slow and uses a lot of memory. Without everything having to be passed though an a 4MB pattern.ini file and nearly 1 MB elemhide.css file, of course it may be faster... A year or so ago I went though the ad-blocking list for Firefox on my PC and removed all rules with less than 5 hits which significantly cut down the list.

    22. Re:With adblocking this is not even an issue. by nyet · · Score: 1

      The number of js sources /. refers to is ridiculous. This site used to be run by more or less decent people. Now it really is run by scumbags.

    23. Re:With adblocking this is not even an issue. by hairyfeet · · Score: 1

      That is why you should use Privacy Badger which deals with trackers and works quite well. I use it both on Dragon and Pale Moon and it really gives the web a kick in the pants.

      --
      ACs don't waste your time replying, your posts are never seen by me.
    24. Re:With adblocking this is not even an issue. by AmiMoJo · · Score: 1

      Most users rely on block lists. They don't have the ability to write good filters, and simple ones are bypassed by advertisers using easy tricks like having a semi random URL.

      For many users they are 99% effective with zero effort.

      --
      const int one = 65536; (Silvermoon, Texture.cs)
      SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
    25. Re:With adblocking this is not even an issue. by arth1 · · Score: 1

      I see the value of blocklists as a starting point. But the AdBlock family of blockers all make it relatively easy to make your own additions based on the page you're looking at, as well as disabling rules that are irrelevant to you, never causing hits, and just burning cycles.
      To me it seems like buying a guitar and never tuning it, relying on a store to do it for you every now and then. There are surely people who do that too, but I'd think the majority would prefer to do things themselves and get it right..

    26. Re:With adblocking this is not even an issue. by Anonymous Coward · · Score: 0

      There's no such thing as advertising on the modern web without tracking. So the terms are synonymous.

    27. Re: With adblocking this is not even an issue. by BronsCon · · Score: 1

      Browsing with "Ads Disabled" checked.

      What, don't you have that option?

      --
      APK quotes people (including myself) without context and should not be trusted. Just thought you should know.
    28. Re: With adblocking this is not even an issue. by Cajun+Hell · · Score: 1

      This site isn't anti-ad-blocking. (Or if it's trying to do that, it doesn't even slightly work, so people with ad-blockers haven't noticed.)

      --
      "Believe me!" -- Donald Trump
    29. Re: With adblocking this is not even an issue. by Anonymous Coward · · Score: 0

      FF Nightly on Android just asked to use my camera?!?

    30. Re: With adblocking this is not even an issue. by Anonymous Coward · · Score: 0

      So you sacrificed security for speed? Got it.

    31. Re: With adblocking this is not even an issue. by guruevi · · Score: 1

      I've gotten a few notices where the ad is supposed to be saying "you're blocking ads" with a message to turn it off. I have the option to disable ads (when I'm logged in) but I've blocked ads on this site ever since they started allowing full page-covering ads and and even one that attempted to use browser exploits to replace my home page.

      --
      Custom electronics and digital signage for your business: www.evcircuits.com
    32. Re:With adblocking this is not even an issue. by CommanderRyalis · · Score: 1

      Use privacy badger: https://www.eff.org/privacybad...

  2. Clickbait article. Not related to speed by Anonymous Coward · · Score: 1

    The reporter is clueless about how browsers work. Rendering speed is not the same as loading time. As Mozilla said, the delay was added to improve paint performance, as trackers blocked the actual paint rendering. The page still loads with the same time, only the order of the scripts has been changed to show content faster and give a false illusion of speed.

    1. Re:Clickbait article. Not related to speed by not+flu · · Score: 3, Informative

      It isn't a false sense of speed at all, you really are getting the content you actually want faster.

  3. How about just forbidding XSS entirely by Anonymous Coward · · Score: 1

    JS throwing requests all over the place got us into this mess in the first place.

    1. Re:How about just forbidding XSS entirely by Aighearach · · Score: 3, Interesting

      That's why I use both noscript and also uMatrix!

      Unless I, the user, have a reason for wanting javascript I won't turn it on . And even if I do, I don't want your cross-site scripting! uMatrix prevents that. And if something really needs a third party script, I can turn on just the specific third parties that are related. For example, I might allow a few google domains if I'm intentionally loading a map, but if I'm not using the map I'm not going to turn those on. And even if I am, I certainly don't want the analytics.

      It seems to be getting better, actually; 5 years ago almost every site had third party JS for important functions, now more and more sites are hosting their own scripts for core functionality.

    2. Re: How about just forbidding XSS entirely by Anonymous Coward · · Score: 0

      +1 Truth

      Pages load fast when uMatrix prevents XSS from ever executing. Whoever downvoted is an advertiser whore.

    3. Re:How about just forbidding XSS entirely by ls671 · · Score: 2

      That's why I use both noscript and also uMatrix!

      Why would you use both?
      You can configure uMatrix to block everything by default just like noscript does. It is only a simple rule to edit.

      --
      Everything I write is lies, read between the lines.
  4. Good idea by Anonymous Coward · · Score: 0

    It works well - Quantum is actually fast.

  5. Save even more time and block them altogether by Noishkel · · Score: 5, Insightful

    And why shouldn't we? No one wanted to be tracked. And even more corporatist a-holes like Google have persistently gone out of their way to obscure the end users ability to even know how the system works. Screw them. It's our hardware, and it's our data. If you have a problem with this then Google should release a version of their OS that you can pay and doesn't track us and avoid the situation entirely.

    1. Re:Save even more time and block them altogether by Anonymous Coward · · Score: 2, Informative

      You can enable this in Options/Preferences > Privacy & Security > Tracking Protection, fyi.

    2. Re:Save even more time and block them altogether by Methuselah2 · · Score: 1

      Thanks, changed.

  6. But ... by Artem+S.+Tashkinov · · Score: 0

    NoScript can speed up web pages loading even more! Too bad some websites have noticed the NoScripters and made their website unusable once your disable JS execution.

    1. Re:But ... by Aighearach · · Score: 5, Informative

      Too bad some websites have noticed the NoScripters and made their website unusable once your disable JS execution.

      I say to them, Thank you! I'm glad we agree that it is best if I use another site. Everybody wins!

      Lets not fight about this adblock stuff. Not everybody agrees, and that is wonderful, it is a sign of Freedom. There is no need to be passive-aggressive and make the site appear to work at first, and then fail later when you get to the heart of the content. Detect what is detectable, and be honest and straightforwards; if you don't want me as a user, great! I can agree to that, no problem!

    2. Re:But ... by Anonymous Coward · · Score: 0

      NoScript can speed up web pages loading even more! Too bad some websites have noticed the NoScripters and made their website unusable once your disable JS execution.

      Too bad most websites rely so heavily on JavaScript that nothing works until you make an exception for every damn script in existence .

      Don't give these people credit. They don't consider whether someone maybe blocks JavaScript. Their spaghetti code barely fucking works and they don't have time to think about 1 in 1 million people who are blocking scripts.

  7. Delaying? Are you kidding? How about NO! by Anonymous Coward · · Score: 0

    Delaying? Are you kidding? How about NO!

    Blacklist the ad domains and NEVER honor those requests.

  8. Through the looking glass. by Anonymous Coward · · Score: 0

    Mozilla and Firefox have lost all credibility with the XULcoplypse and looking glass. Now I use Waterfox and there is also Pale Moon and Basilisk as alternatives that all support XUL. Speed is useless without extensions, and XUL is the most power API for them.

    1. Re:Through the looking glass. by theweatherelectric · · Score: 0

      Speed is useless without extensions

      Meh. There are 7,799 extensions available for Firefox 57+ at the moment. Doesn't seem like Firefox is "without extensions".

      Now I use Waterfox and there is also Pale Moon

      Why? They're just older, slower versions of Firefox which are unsustainable in the long term. They'll both eventually become like Firefox is now because they are both dependent on upstream development.

  9. Ghostery and Privacy Badger by baomike · · Score: 3, Informative

    I notice that no one has mentioned these, why not?

    1. Re:Ghostery and Privacy Badger by Anonymous Coward · · Score: 0

      Probably because Firefox 57 broke almost every single plug-in and most still haven't been updated. I spent three hours trying to get my browser back into a workable state after the update until finally having to revert back to 56. The browser is worthless without its community plug-ins which the devs have apparently decided they don't give a shit about. I think the real secret to why this version is so much faster is that there aren't enough plug-ins left to cause any significant overhead.

    2. Re: Ghostery and Privacy Badger by Anonymous Coward · · Score: 0

      I don't like how Mozilla rolled out Frefox 57 and the changes to extensions. However, a lot of extensions have been updated, including NoScript, uBlock, uMatrix, and many others. There's no reason to assume that extensions that aren't being actively updated will continue to function in perpetuity. It just isn't reasonable to expect endless backward compatibility, which can be at the expense of both speed and security.

    3. Re:Ghostery and Privacy Badger by Misagon · · Score: 3, Informative

      I saw "Google Analytics" listed as one of the sites that Firefox delays. I run Privacy Badger in Chromium, so I checked quickly what it blocks on this site and apparently, Slashdot uses Google Analytics but Privacy Badger does not block it.
      I suppose that there could be lots of other sites that are let through but which Firefox prioritises down when loading.
      This means that running Privacy Badger is not a replacement for the prioritisation scheme that Firefox is doing.

      --
      "We mustn't be caught by surprise by our own advancing technology" -- Aldous Huxley
    4. Re:Ghostery and Privacy Badger by Anonymous Coward · · Score: 0

      Install Waterfox. Be happy. Still runs XUL exts.

    5. Re: Ghostery and Privacy Badger by Dagger2 · · Score: 1

      It is, however, reasonable to permit extension devs to update their extensions to fix breakage. However, for many extensions, Mozilla are not permitting them to do that.

      Endless backwards compatibility is indeed not possible for these extensions, but that was never expected anyway and it's not a reason to prevent devs from putting the work in if they want to.

    6. Re: Ghostery and Privacy Badger by Anonymous Coward · · Score: 0

      Can you elaborate? How is Mozilla stopping devs from updating their extensions?

    7. Re: Ghostery and Privacy Badger by wonkey_monkey · · Score: 1

      It is, however, reasonable to permit extension devs to update their extensions to fix breakage. However, for many extensions, Mozilla are not permitting them to do that.

      How so?

      --
      systemd is Roko's Basilisk.
    8. Re: Ghostery and Privacy Badger by Anonymous Coward · · Score: 0

      They removed the Firefox functionality those extensions relied on, and refuse to implement it in the new version.

    9. Re:Ghostery and Privacy Badger by Anonymous Coward · · Score: 0

      Ghostery sells your browsing habits to the trackers.
      And yes, they did allow their source code to be seen at one point so people could verify it was anonymized, they have since gone closed source and made changes to their product and license agreement so you have no idea what they are collecting now.

    10. Re: Ghostery and Privacy Badger by Anonymous Coward · · Score: 0

      Privacy Badger has been working since my first build of Firefox 57 (way before release) and unlike all you lazy bastards I just checked and Ghostery works as well on the 59.0a1 build I'm running now.

      Let's stop with the bullshit please.

    11. Re:Ghostery and Privacy Badger by theweatherelectric · · Score: 1, Informative

      Probably because Firefox 57 broke almost every single plug-in

      Ghostery and Privacy Badger both work with Firefox 57+ and so do 7,799 other add-ons. Your narrative doesn't hold up.

    12. Re:Ghostery and Privacy Badger by Sannemen · · Score: 4, Informative

      Ghostery, probably because it keeps you private while, guess what?, selling your data... https://www.ghostery.com/faqs/...

    13. Re:Ghostery and Privacy Badger by AmiMoJo · · Score: 1

      It blocks it for me. Are you sure you didn't click it over to green at some point?

      --
      const int one = 65536; (Silvermoon, Texture.cs)
      SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
    14. Re:Ghostery and Privacy Badger by pots · · Score: 1

      Privacy Badger blocks via heuristics, so the results are going to be a little inconsistent. I run it alongside Disconnect, for a blocklist-based privacy filter as well. Of course, neither one blocks Google Analytics, since NoScript filters it out before it gets to them...

      The advantage with the heuristics approach is that it will catch new things, and things which otherwise don't get included into blocklists.

    15. Re: Ghostery and Privacy Badger by Dagger2 · · Score: 1

      Firefox won't even load bootstrapped extensions now unless signed by Mozilla's system addons key, which is unavailable to the public and which they won't use to sign any non-Mozilla addons (even though they were happy to use it to sign a marketing tie-in with a TV show, but that's a whole separate issue). They also won't allow you to upload the new version to AMO which prevents you from shipping updated versions to anybody that installed the extension from AMO in the first place (even if those users could use the updated version, which they can't).

      If your extension happens to be simple enough to be possible within the WebExtensions API then you can convert it to a WE and you'll be fine, but many extensions simply can't be done as WEs (and a lot of those that can are only possible with some pretty bad hacks -- e.g. having to inject your code into each and every website that's loaded rather than just once per browser window).

  10. really? by Anonymous Coward · · Score: 0

    I thought their secret was to stop performing memory management and error-checking. I don't think I've ever used such an unstable version of Firefox since proir to 3.1.

  11. Who is going to write the mod? by Required+Snark · · Score: 3, Informative
    The one that doesn't even send the tracking data back, or even better sends random results?

    It's not like any of us asked to be tracked, or get any benefit out of it. Our online existence has become a huge source of income while government and big business know far too much about our private lives. Maybe we should be taking the initiative to "opt out" of tracking in a way that will make a real difference.

    --
    Why is Snark Required?
    1. Re:Who is going to write the mod? by Anaerin · · Score: 1

      Who needs a mod? FF has "First Party Isolation" (Not enabled by default, use the about:config setting "security.firstparty.isolate" to enable it), which doesn't set or send cookies for any third party items loaded on a page. They can load their tracking images and the like just fine, but there's no id attached to them, so every time is a "different user".

    2. Re:Who is going to write the mod? by Anonymous Coward · · Score: 0

      The one that doesn't even send the tracking data back, or even better sends random results?

      It's not like any of us asked to be tracked, or get any benefit out of it. Our online existence has become a huge source of income while government and big business know far too much about our private lives. Maybe we should be taking the initiative to "opt out" of tracking in a way that will make a real difference.

      The proper way to deal with it is to get THEM to block YOU. The script shoud be sending the trackers several gigabytes of junk data a month. This immediately prevents them from getting any tracking data on you, but the real fun happens when such a plugin is widely adopted - basically a permanent DDOS unless they block you - and that's exactly what you want.

  12. FF 56 by Anonymous Coward · · Score: 0

    That explains why FF 57 isn't any faster for those of us who used to have a working version of NoScript and uBlock. FF 57 is garbage. I believe Moz is on the take from companies like Google to make NoScript and other real tracking protection not work anymore all in the name of "speed." I can't believe anyone with a brain is praising the garbage that is FF 57.

    1. Re:FF 56 by Anonymous Coward · · Score: 0

      Yeah, you're right. You should claim a refund.

    2. Re:FF 56 by geoskd · · Score: 1

      Yeah, you're right. You should claim a refund.

      I did. I returned the product and got a full refund. I now use another vendors product, and they get the money from the limited tracking I permit.

      --
      I wish I had a good sig, but all the good ones are copyrighted
    3. Re:FF 56 by Anonymous Coward · · Score: 0

      NoScript works again, you can stop bitching about it and update now.

    4. Re:FF 56 by Anonymous Coward · · Score: 0

      NoScript does not work again. It is complete shit compared to what it used to be.

    5. Re: FF 56 by Anonymous Coward · · Score: 0

      Can you provide any evidence, or are you just butthurt that it doesn't look the same?

    6. Re:FF 56 by theweatherelectric · · Score: 0

      make NoScript and other real tracking protection not work anymore all in the name of "speed."

      Firefox has tracking protection built-in. Set it to "always" and it will be on in both normal and private browsing modes. NoScript works in Firefox 57+ and the author of NoScript says Firefox has "the best Browser Extensions API available on any current browser".

      Your claims don't match up to the practical realities. Just use Firefox and be happy.

    7. Re:FF 56 by Anonymous Coward · · Score: 0

      so use umatrix, that still works fine, and is better then noscript anyway

  13. There's an even simpler method by quonset · · Score: 2

    Block all such scripts using add-ons such as uMatrix.

    It's truly amazing how fast pages load even on older systems when this technique is employed.

  14. Re:really? -lies by Anonymous Coward · · Score: 1

    I think you are being dishonest and/or your computer is broken.

  15. Not in the browser by nospam007 · · Score: 1

    " It delays scripts from tracking domains, such as www.google-analytics.com."

    You should block all these domains at the router level, so it makes all the browser faster also the ones on your mobile gadgets.

    1. Re:Not in the browser by willoughby · · Score: 1

      I played around with this a couple of years ago and it didn't work for me. The browser would freeze while it awaited response from the blocked domain. What did I do wrong?

    2. Re:Not in the browser by veron.claudio · · Score: 1

      i've been doing router level ad-blocking. hope i never have to go back.

    3. Re:Not in the browser by bongey · · Score: 1

      Did you have your filter respond with a tcp reject?

    4. Re:Not in the browser by flex941 · · Score: 2

      You probably did DROP instead of REJECT.

  16. Waiting for the escalation by McFortner · · Score: 2

    How long before cleaver web programmers have the page require the tracking be completed before it sends vital parts of the page to the browser?

    The clock is ticking.... (pun intended)

    --
    Beware of Sales Reps bearing gifts.
    1. Re:Waiting for the escalation by Anonymous Coward · · Score: 0

      It won't be long before the users of that site stop using it because it is slow.

    2. Re:Waiting for the escalation by Anaerin · · Score: 1

      That is what was happening - Loading the tracking code was delaying the initial paint of the site. FF changed it so that the tracking code was loaded "as needed" and not delaying the initial load and paint of the site.

    3. Re:Waiting for the escalation by McFortner · · Score: 1

      But next is REQUIRING the tracking data to be completely loaded and executed first. Can't let that ad revenue get away, don't you know.

      --
      Beware of Sales Reps bearing gifts.
    4. Re: Waiting for the escalation by Z00L00K · · Score: 1

      Then link to a fake tracker that sets a value that's fake.

      --
      If builders built buildings the way programmers wrote programs, then the first woodpecker would destroy civilization.
  17. INMHO, Chrome/ium is the only winner. by Anonymous Coward · · Score: 0

    It seems that Firefox can not compete against Chrome/Chromium in terms of performance, usability, lesser memory consumption, lesser disk consumption, lesser latencies, etc.

  18. Really kill those third party user trackers by Anaerin · · Score: 5, Interesting

    FireFox inherited a small security update from the Tor project called "First Party Isolation". It's in newer versions of FF, but isn't turned on by default as it can break some authentication systems.

    What it does, is only allow cookies to be sent and received by the site in the page's URL. So, for instance, while visiting YouTube.com, images and the like from google.com can load, but have no cookies attached, and do not receive those cookies.

    To enable it, go to about:config and find "privacy.firstparty.isolate". Set it to true and restart the browser, and enjoy surfing the web knowing that you're not being tracked from site to site.

    1. Re:Really kill those third party user trackers by Pieroxy · · Score: 4, Informative

      Exactly what Apple has done with Safari, on both iOS and OSX. Except that Apple enabled the option by default.

      --
      Write boring code, not shiny code!
    2. Re:Really kill those third party user trackers by Dagger2 · · Score: 2

      As I understand it, that's not exactly what it does. Third-party sites are still allowed to use cookies, but they get access to a different set of cookies depending on which first-party site they were loaded from.

      You can reject all cookies from third-party sites by setting network.cookie.cookieBehavior=1.

  19. Ads without tracking by tepples · · Score: 1

    So what's the difference between an advertising site and a tracking site?

    A publisher* that doesn't track your browsing across multiple websites will sell its ad space directly to advertisers and host its own ads rather than handing the ad space off to a third party ad network or ad exchange. Daring Fireball and Read the Docs are examples.

    * A "publisher" is a site that shows ads, and an "advertiser" is a company that pays a publisher for ad space.

  20. Privoxy by Anonymous Coward · · Score: 0

    I have been using Privoxy for years to block a mired of crap. There is a list of tracking sites you can dump into it to block every tracker.

  21. Block third-party resources by tepples · · Score: 1

    So if someone can come up with a characteristic specific to tracking, I can block only those pages and allow the ads that support my favorite web sites.

    A site with ads but no tracking will have its own store front where advertisers can buy ad space. This process doesn't need to place third-party cookies or images on viewers' devices. Therefore, to block tracking, block the loading of resources from unaffiliated domains. Use the Public Suffix List to find which hostnames are part of the same domain, and add cookieless domains used for static resources to a whitelist if they're obviously operated by the same publisher. Yes, this breaks CDNs used to deliver widely used script frameworks, such as jQuery, but a lot of tracking haters on Slashdot also seem to think script in the browser should never have existed anyway.

  22. Funny it is acceptable to firefox by Anonymous Coward · · Score: 0

    that my bandwidth that I pay for is used for analytics that I dont approve of.

  23. Heresy by easyTree · · Score: 1

    Prioritising the user over the advertiser? ^_^

    Black Helicopters dispatched to your location. Await airlift.

    --
    Requiem for the American Dream
  24. Net Neutrality by Waccoon · · Score: 1

    Just to be devil's advocate, I don't like the idea of things like this being "hidden". Firefox does give you control over how it blocks trackers and which list of known trackers exist on the Internet. Hopefully those settings also allow you to control how (and if) trackers are throttled, as well.

  25. I do that (& far more) in hosts via... apk by Anonymous Coward · · Score: 0

    See subject & NEW APK Hosts File Engine 10++ 32/64-bit https://www.google.com/search?hl=en&source=hp&biw=&bih=&q=%22APK+Hosts+File+Engine%22+and+%22start64%22&btnG=Google+Search&gbv=1/

    Ads/script/malware rob speed/security/privacy/bandwidth.

    Hosts add speed (via hardcodes/adblocks), security (vs. bad sites/malware/poisoned dns), reliability (vs. dns down), & anonymity (vs. dns requestlogs/trackers).

    Less power/cpu/ram + IO use vs. DNS/routers/addons/antivirus + less security bugs/complexity & faster vs. addons/routers/remote dns!

    Avoids DNSChangers in routers/IP settings & dns redirect (99++% of ISP DNS != patched vs. it) + DNS tracking & lighten DNS load & resolve faster via local RAM!

    * Via what u NATIVELY have in a FASTER kernelmode IP stack (does more w/ less).

    APK

    P.S. - Safe https://www.virustotal.com/en/file/e01211ca36aa02e923f20adee0a3c4f5d5187dc65bdf1c997b3da3c2b0745425/analysis/1433430542/ (self checking vs. infection of it built-in)

  26. Addons=inferior/inefficient/faulty vs. hosts by Anonymous Coward · · Score: 0

    Hosts protect when addons can't (or as well):

    Bad sites (past ads)
    Botnet C&Cs
    DNS down/poisoned
    Trackers (dns logs/ads/transparent ISP proxy)
    Dns blocks
    Spam/phish payload
    Slowdown 2 ways: adblocks & hardcodes
    Hosts = Ez edit.

    AB+ 151mb https://www.google.com/search?q=Adblock+memory+consumption&btnG=Search&hl=en&gbv=1/

    UBlock 64MB https://www.google.com/search?q=UBlock+memory+consumption&btnG=Search&hl=en&gbv=1/

    Hosts~6mb

    Addons = ClarityRay defeatable & crippled http://www.businessinsider.com/google-microsoft-amazon-taboola-pay-adblock-plus-to-stop-blocking-their-ads-2015-2/

    NoScript tag parses. Hosts block script prior to it!

    No 1 addon does as much.

    Stacked addons slowup.

    ADDONS = EXPLOITABLE https://news.slashdot.org/comments.pl?sid=11166303&cid=55266729/

    APK

    P.S.=> APK Hosts File Engine 10++ 32/64-bit https://www.google.com/search?hl=en&source=hp&biw=&bih=&q=%22APK+Hosts+File+Engine%22+and+%22start64%22&btnG=Google+Search&gbv=1/

  27. Best tracker blocker (& far more) bar-none by Anonymous Coward · · Score: 0

    See subject & NEW APK Hosts File Engine 10++ 32/64-bit https://www.google.com/search?hl=en&source=hp&biw=&bih=&q=%22APK+Hosts+File+Engine%22+and+%22start64%22&btnG=Google+Search&gbv=1/

    Ads/script/malware rob speed/security/privacy/bandwidth.

    Hosts add speed (via hardcodes/adblocks), security (vs. bad sites/malware/poisoned dns), reliability (vs. dns down), & anonymity (vs. dns requestlogs/trackers).

    Less power/cpu/ram + IO use vs. DNS/routers/addons/antivirus + less security bugs/complexity & faster vs. addons/routers/remote dns!

    Avoids DNSChangers in routers/IP settings & dns redirect (99++% of ISP DNS != patched vs. it) + DNS tracking & lighten DNS load & resolve faster via local RAM!

    * Via what u NATIVELY have in a FASTER kernelmode IP stack (does more w/ less).

    APK

    P.S. - Safe https://www.virustotal.com/en/file/e01211ca36aa02e923f20adee0a3c4f5d5187dc65bdf1c997b3da3c2b0745425/analysis/1433430542/ (self checking vs. infection of it built-in)

  28. Addons=inferior/inefficient/faulty vs. hosts by Anonymous Coward · · Score: 0

    Hosts protect when addons can't (or as well):

    Bad sites (past ads)
    Botnet C&Cs
    DNS down/poisoned
    Trackers (dns logs/ads/transparent ISP proxy)
    Dns blocks
    Spam/phish payload
    Slowdown 2 ways: adblocks & hardcodes
    Hosts = Ez edit.

    AB+ 151mb https://www.google.com/search?q=Adblock+memory+consumption&btnG=Search&hl=en&gbv=1/

    UBlock 64MB https://www.google.com/search?q=UBlock+memory+consumption&btnG=Search&hl=en&gbv=1/

    Hosts~6mb

    Addons = ClarityRay defeatable & crippled http://www.businessinsider.com/google-microsoft-amazon-taboola-pay-adblock-plus-to-stop-blocking-their-ads-2015-2/

    NoScript tag parses. Hosts block script prior to it!

    No 1 addon does as much.

    Stacked addons slowup.

    ADDONS = EXPLOITABLE https://news.slashdot.org/comments.pl?sid=11166303&cid=55266729/

    APK

    P.S.=> APK Hosts File Engine 10++ 32/64-bit https://www.google.com/search?hl=en&source=hp&biw=&bih=&q=%22APK+Hosts+File+Engine%22+and+%22start64%22&btnG=Google+Search&gbv=1/

  29. "hidden" by Anonymous Coward · · Score: 0

    I thought firefox was open source. Is this list hidden on a third party domain that gets pinged everytime my browser wants to do a request?

    1. Re:"hidden" by Ash-Fox · · Score: 1

      I thought firefox was open source. Is this list hidden on a third party domain that gets pinged everytime my browser wants to do a request?

      Source code is available here for you to check:

      https://archive.mozilla.org/pu...

      --
      Change is certain; progress is not obligatory.
  30. There is no place like 127.0.0.1 by yooy · · Score: 1

    There is no place like 127.0.0.1 http://winhelp2002.mvps.org/ho... Host flash: https://journalxtra.com/linux/...

  31. Re:Net Neutrality - aka, no adblock by hsthompson69 · · Score: 1

    Well, to be the devil's devil's advocate, isn't this an arguably *good* thing in support of non-net-neutrality? If ISPs could throttle tracking domains, or spam emailers, wouldn't that be an unadulterated good for the hundreds of millions of people who might not be running the latest firefox browser?

    tl;dr - if consumers actually value different traffic differently, why should ISPs be prevented from prioritizing traffic they value, and throttling traffic they don't?

    I get it, the ISP "value" might be different from the end consumer "value", but in the case of spam and tracking domains, it seems they align pretty well. In fact, it seems like ISP throttling based on consumer preferences might be the only useful check on the dominance of companies like google, facebook, amazon, etc.

  32. Good. Advertisers, wise up or get out! by Anonymous Coward · · Score: 0

    I've noticed that some websites have ads that bog the entire page down if you happen to disable video autoplay in the about:config (media.autoplay.enabled = false). I don't mean the normal lag that occurs from loading up videos or other nonsense, I mean tens of seconds of spinning its wheels, generating hundreds of errors in the console, etc. while dealing with domains with "trk" in their names, and all sort of other ad-related crap. It's like disabling one curse (autoplay videos) has enabled another (scads of javascript errors) because of badly-written javascript code that doesn't gracefully handle the situation if autoplay is disabled.

    I want to support the sites I visit by leaving ads enabled, but it's crap like this that make me want to install an ad blocker and say "screw the lot of you". Write your ads as lightweight and robust code or expect ad revenues to disappear.

  33. If they can delay them... by JustNiz · · Score: 1

    ..then why can't they provide the user with a simple switch to blacklist them entirely?

    1. Re:If they can delay them... by theweatherelectric · · Score: 1

      They do. Set Firefox's built-in tracking protection to "always" and it won't load them at all.

  34. Re:Net Neutrality - aka, no adblock by JustNiz · · Score: 2

    >> isn't this an arguably *good* thing in support of non-net-neutrality?

    Not really. I never gave any of those companies permission to spy on me. That has nothing to do with how much bandwidth they get.

  35. Ghostery perfectly works in FF57. by Herve5 · · Score: 1

    Ghostery, I don't know. But now I know you are not credible.

    --
    Herve S.
  36. Addons=inferior/inefficient/faulty vs. hosts by Anonymous Coward · · Score: 0

    Hosts protect when addons can't (or as well):

    Bad sites (past ads)
    Botnet C&Cs
    DNS down/poisoned
    Trackers (dns logs/ads/transparent ISP proxy)
    Dns blocks
    Spam/phish payload
    Slowdown 2 ways: adblocks & hardcodes
    Hosts = Ez edit.

    AB+ 151mb https://www.google.com/search?q=Adblock+memory+consumption&btnG=Search&hl=en&gbv=1/

    UBlock 64MB https://www.google.com/search?q=UBlock+memory+consumption&btnG=Search&hl=en&gbv=1/

    Hosts~6mb

    Addons = ClarityRay defeatable & crippled http://www.businessinsider.com/google-microsoft-amazon-taboola-pay-adblock-plus-to-stop-blocking-their-ads-2015-2/

    NoScript tag parses. Hosts block script prior to it!

    No 1 addon does as much.

    Stacked addons slowup.

    ADDONS = EXPLOITABLE https://news.slashdot.org/comments.pl?sid=11166303&cid=55266729/

    APK

    P.S.=> APK Hosts File Engine 10++ 32/64-bit https://www.google.com/search?hl=en&source=hp&biw=&bih=&q=%22APK+Hosts+File+Engine%22+and+%22start64%22&btnG=Google+Search&gbv=1/

  37. Stop riding apple's cock by Anonymous Coward · · Score: 0

    Stop riding apple's cock.

  38. Best hosts file mgt. program for Windows by Anonymous Coward · · Score: 0

    See subject & NEW APK Hosts File Engine 10++ 32/64-bit https://www.google.com/search?hl=en&source=hp&biw=&bih=&q=%22APK+Hosts+File+Engine%22+and+%22start64%22&btnG=Google+Search&gbv=1/

    Ads/script/malware rob speed/security/privacy/bandwidth.

    Hosts add speed (via hardcodes/adblocks), security (vs. bad sites/malware/poisoned dns), reliability (vs. dns down), & anonymity (vs. dns requestlogs/trackers).

    Less power/cpu/ram + IO use vs. DNS/routers/addons/antivirus + less security bugs/complexity & faster vs. addons/routers/remote dns!

    Avoids DNSChangers in routers/IP settings & dns redirect (99++% of ISP DNS != patched vs. it) + DNS tracking & lighten DNS load & resolve faster via local RAM!

    * Via what u NATIVELY have in a FASTER kernelmode IP stack (does more w/ less).

    APK

    P.S. - Safe https://www.virustotal.com/en/file/e01211ca36aa02e923f20adee0a3c4f5d5187dc65bdf1c997b3da3c2b0745425/analysis/1433430542/ (self checking vs. infection of it built-in)