Just yesterday this guy comes up too me, big guy, hairy guy, tears in his eyes, and when I remove the ball gag he says “Sir, would you spank me. I heard you were the best, and I want the best.” And so I bent him over and spanked him to within an inch of his life. Other people, they would have stopped after a couple swats, but I really let him have it on his beautiful bear backside.

Laughed until I cried. Showed others. Same result.

Seriously. These people deserve this the same way that if this was 1995 and they fueded with the guy that owns the local newspaper, it wouldn’t go well for them either.

What TF did they expect? Such delicate snowflakes.

Seriously, these people are publicly making mistakes that my grandma would make. If there’s a best practice for safety and security, they actively don’t do it.

Man, I had stuff to do today. Now I’m just going to end up watching this over and over for 7 hours.

You’re correct. I was thinking of how I have Floorp set up.

CreepJS doesn’t see NoScript as an extension and only catches me if I don’t switch IPs. Time zone is also worth adjusting of one is serious.

Of course, and I’m saying that while turning JS on for Bob’s website is maybe acceptable, leaving it turned off for gstatic, googleadmamager, etc. also on Bob’s website is easier than the other way around. Layers of defense. Don’t count on canvas blocker.

Though this is just for what you want to obscure. It doesn’t make any sense to openly interact with Google or Meta products with all this going on. Use for your socials, anything tied to your name or face, regular vanilla FF with containers for safety. Let G associate that IP/geography and fingerprint with what you HAVE to do publicly visible. Then you close FF, change VPN locations, and open private mode Librewolf. It’s full plausible deniability. Or use TOR, same same.

Convenience and security are a trade off. Find the balance that works for you based on your threat model. It’s different for everyone.

You can. Librewolf with canvas blocker, turned on in settings, Chameleon, and uBlock and/or(?) JS blocker like NoScript. Edit.

Canvas blocker and a JS blocker limits a lot of what Google can see and fingerprint per page. And you’ll be shocked at first how many pages have google trackers that a JS blocker kills. It’s easier to turn things on one at a time than claw back data once it’s out of your hands.

Chameleon spoofs a lot of other details, like browser, system time, languages, headers, etc. So for what can be seen, it’s always changing and harder to corroborate. This plus moving VPN locations is what is needed.

Also, TOR does the job, but not the most fun internet experience.