this post was submitted on 08 May 2026
738 points (96.7% liked)

Privacy

48499 readers
464 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 6 years ago
MODERATORS
k_o_t@lemmy.ml
tmpod@lemmy.pt
Yayannick@lemmy.ml
ranok@sopuli.xyz
738
A web page that shows you everything the browser told it (sinceyouarrived.world)
submitted 4 days ago by yogthos@lemmy.ml to c/privacy@lemmy.ml
241 comments fedilink hide all child comments
top 50 comments
sorted by: hot top controversial new old
[–] crow@leminal.space 3 points 1 day ago* (last edited 1 day ago)

Thanks for sharing, I was already using a decent anti-fingerprinting browser (Fennec) but the fact that it gave away my timezone made me research a bit more and I'm now on IronFox, which has a toggle to spoof it, and reports a fake screen resolution. Great! I'm now unique on coveryourtracks though

[–] nixukty@lemmy.zip 67 points 4 days ago* (last edited 4 days ago) (2 children)

Vibe coded af, how has nobody spotted this. The website swears the text was written by a human, and either they have contracted chronic GPT-virus or are an LLM

edit: this is made by Rise Up Labs which is an ai psychosis company

[–] neon_nova@lemmy.dbzer0.com 17 points 4 days ago (2 children)

How can you tell that it was vibe coded? Genuine question.

[–] nixukty@lemmy.zip 16 points 3 days ago

AI is quite good at web design now, but it still has a distinct style. Claude in particular LOVES to mix serif and monospace fonts. This isn't necessarily a guarantee based on just that, but it did trigger my alarm bells.

The second biggest thing is the language. LLMs absolutely SPAM slightly vague, short phrases separated by punctuation.

The language on each data point also is pretty repetitive which implies either sub agents were called or the model was asked individually to write something about it in a specific tone.

The final nail in the coffin was the company that made it, Rise up labs, which advertised all their AI software on their home page

[–] jpeps@lemmy.world 15 points 3 days ago (3 children)

One clue to me is the "how many times you moved" statement. One actual human "move" is worth hundreds of what the site calls a move. A human would notice that but the reality of it means nothing to an AI.

Secondly just the language used being quite dramatic but also generic.

load more comments (3 replies)
load more comments (1 replies)
[–] dessalines@lemmy.ml 132 points 4 days ago (22 children)

This ones my fave: https://amiunique.org/fingerprint

It shows the percentages of people who use your same browser features (called similarity ratios), and can determine whether you're unique in their dataset. Can help for tweaking browser settings to try to make yourself not unique.

[–] Kefla@hexbear.net 44 points 4 days ago

Yay, I'm completely unique! I won!

Wait a minute

[–] sobchak@programming.dev 30 points 4 days ago (1 children)

TIL LibreWolf randomizes some fingerprinting targets.

[–] 0_o7@lemmy.dbzer0.com 12 points 4 days ago

Yes and it will appear unique every time because every visit is using a different combination.

You'll be unique be less trackable.

load more comments (20 replies)
[–] plz1@lemmy.world 54 points 4 days ago (1 children)

"We know your IP address". No kidding, that's how IPv4 works, even if the browser wasn't ~~leaking~~ offering it.

[–] iglou@programming.dev 11 points 4 days ago (10 children)

The point is not that they know your IP, but that even your IP already gives away information. That's why they start with the information, rather than the IP being the source.

This is not intended to be for people who understand how this works.

And as someone else said, probably vibe coded.

load more comments (10 replies)
[–] zeezee@slrpnk.net 84 points 4 days ago (2 children)

all trackers hate this one trick

[–] Zach777@lemmy.ml 26 points 4 days ago (1 children)

Unironically a solid way to block a lot of tracking. Although they can still fingerprint you I think.

[–] Brimstone@lemmy.ml 50 points 4 days ago (2 children)

Nothing makes you more unique than being one of the few people who disable java script

load more comments (2 replies)
[–] floquant@lemmy.dbzer0.com 16 points 4 days ago

Only a handful of data points surfaces by this website come from JS APIs, most are either header-based or some other browser behaviour that is independent from JS

[–] Karl@literature.cafe 5 points 2 days ago

My jaw dropped when I read the what angle my device is being held at, how many times I scrolled and tapped, what my position is!!!

How is this even legal?!

I always thought they just took my location, my device name etc. I had no idea it's this deep.

[–] TherapyGary@lemmy.dbzer0.com 44 points 4 days ago (1 children)

1000014440

And yet here they are showing me their webpage in darkmode 😒

[–] darksecret@lemmy.zip 9 points 3 days ago

Well they did say they don't use the information 🤣

[–] quick_snail@feddit.nl 16 points 3 days ago (2 children)

This volume requires JavaScript. That is part of the point — your browser is what is being read.

Looks like I'm safe

load more comments (2 replies)
[–] pwxd@lemmy.zip 27 points 4 days ago* (last edited 4 days ago) (4 children)

Well too bad!

[–] thethunderwolf@lemmy.dbzer0.com 21 points 4 days ago (1 children)

🗿

the data is still there tho

[–] pwxd@lemmy.zip 13 points 4 days ago (4 children)

Can't trust vibecoded website tbh cause they're just saying BS there, as longest the javascripts off, it wouldn't be able to obtain the obvious data of your devices

[–] moseschrute@lemmy.world 10 points 3 days ago* (last edited 3 days ago) (1 children)

You absolute can fingerprint someone without JavaScript enabled. This article explains what signals a website can use when JS is disabled, and those signals include probing what CSS features your browsers supports.

https://fingerprint.com/blog/disabling-javascript-wont-stop-fingerprinting/

Unfortunately it looks like the demo link in their article doesn’t exist anymore. It definitely used to, because I remember testing it few years ago. But the write up is still good.

Looks like the demo is open source: https://github.com/fingerprintjs/blog-nojs-fingerprint-demo

load more comments (1 replies)
load more comments (3 replies)
load more comments (3 replies)
[–] LeeeroooyJeeenkiiins@hexbear.net 21 points 4 days ago

Your screen is 360 by 640 pixels, rendered at 4x density — which means it is almost certainly a recent, high-end display

GUESS AGAIN, IDIOTS! undyne-joy

[–] rumba@lemmy.zip 3 points 2 days ago

I hit it with Firefox and it gave 24 points. Firefox refused to disclose my battery level. But did give it my angular geometry.

I opened it in Brave and it lied about my screen resolution and colored up my fonts, my battery. It refused to give up my angular geometry.

Why the hell doesn't firefox just include some of those white lies?

[–] lobo@lemmy.world 3 points 2 days ago

central europe, maybe its due to architecture the isp has wifi access points around the city and people connect to them

back when it was starting there wasnt even isolation between clients, we used to send random shit to printers on the network as kids

[–] Agent641@lemmy.world 25 points 4 days ago (1 children)

Well they tried

load more comments (1 replies)
[–] TheLeadenSea@sh.itjust.works 39 points 4 days ago

Really interesting and slightly scary, thanks for sharing!

[–] luciferofastora@feddit.org 4 points 3 days ago

It identified my many-years-old phone with "360x760 pixels rendered at 3x density" screen as "recent, high-end display". Bitch, this wasn't even high-end when I bought it. It was small, it was cheap, it was barely "recent" when I bought it.

[–] brillotti@lemmy.world 31 points 4 days ago (2 children)

Funny how websites can read the gyroscope. It can also be used as a microphone. https://crypto.stanford.edu/gyrophone/

load more comments (2 replies)
[–] QuinnyCoded@sh.itjust.works 8 points 3 days ago* (last edited 3 days ago) (2 children)

I wonder, do phones have 6dof tracking (space + rotation) or 3dof tracking (just rotations)
because if it's 3dof I'm calling bullshit on some of this.

I have 7 3dof fullbody trackers for vrchat (cough cough !VRChat@sh.itjust.works cough cough) and they're so damn inconsistent and need to constantly be ready to be calibrated to line up with what your body is actually doing. Having 1 3dof device can definitely detect walking or swinging, no shot it can tell if you're in bed or on a couch

load more comments (2 replies)
[–] herseycokguzelolacak@lemmy.ml 33 points 4 days ago (4 children)

I prefer https://www.deviceinfo.me/

load more comments (4 replies)
[–] beernutz@lemmy.zip 17 points 4 days ago (3 children)

Your finger moved 899 times.. what????

load more comments (3 replies)
[–] pruwybn@discuss.tchncs.de 14 points 4 days ago (3 children)

Time to start installing and uninstalling random fonts everyday.

[–] iglou@programming.dev 24 points 4 days ago* (last edited 4 days ago) (1 children)

And then you become even more identifiable cause you're part of the 10 madmen in Google's database who do it

[–] Spezi@feddit.org 10 points 4 days ago

In reality hes the only madmen but switches IPs in between

[–] quick_snail@feddit.nl 11 points 3 days ago

Or you could use chameleon browser extension.

It changes your data every 5 minutes

load more comments (1 replies)
[–] Zerush@lemmy.ml 7 points 3 days ago (1 children)

Only 50% correct in my case (similar to Browserleaks), correct the OS, Screenresolution, Country but wrong site, wrong even the ISP

load more comments (1 replies)
[–] tpihkal@lemmy.world 19 points 4 days ago (1 children)

Great news. My VPN is working!

load more comments (1 replies)
[–] eureka@aussie.zone 20 points 4 days ago (1 children)

I'm glad it acknowledges explains the impacts of anti-fingerprinting measures. I've seen some others assume that a random canvas is unique rather than one of the many people randomising it the same way, leading to a false "unique" assessment.

Your browser appears to be returning the viewport in place of the real screen — anti-fingerprinting at work. The substitution is itself distinctive.

Your browser masked your graphics processor. Firefox and Safari have started returning generic strings — "Mozilla", "Apple", "or similar" — instead of the real renderer. The fact that yours did so tells us, with reasonable confidence, which browser you are running. The mask is also a fingerprint.

load more comments (1 replies)
[–] darcmage@lemmy.dbzer0.com 28 points 4 days ago (2 children)

So a prettier and minimal version of https://coveryourtracks.eff.org/ ?

load more comments (2 replies)
[–] Stimpy@lemmy.world 23 points 4 days ago (1 children)

This post helped me discover that my SurfShark VPN built-in kill switch does not work within the Android app. My home IP was showing.

I turned kill switch on at the OS level and my IP was correctly showing the VPN IP.

load more comments (1 replies)
[–] tristynalxander@mander.xyz 19 points 4 days ago (2 children)

I definitely have misleading information on there, which is great, but I probably need more.

load more comments (2 replies)
[–] racoon@lemmy.ml 5 points 3 days ago

Amiunique.org

[–] zdhzm2pgp@lemmy.ml 7 points 3 days ago (1 children)

How many points of identification are needed to positively ID you? Something like 35 IIRC according to Cover Your Tracks/EFF? Might be remembering wrong 🤔

[–] bold_atlas@lemmy.world 3 points 3 days ago* (last edited 3 days ago)

"31 data points"

Hell yeah! i is ghost.

load more comments
view more: next ›