Didier Kryn - 10.01.25, 18:46:23 MEZ:
> Le 10/01/2025 à 15:04, Arnt Karlsen a écrit :
> > and a brand spanking new throw-away one-time web browser user
> > allowing cookies etc tracking firmly down /dev/null thru VPN's
> > for controversial stuff
>

>      I use to configure browers to automatically delete cookies on exit,
> but this feature of a one-time user might be a damn good idea. Just
> needing to set up a script to create/delete a one-time user with a
> random name... why not inside a new VM with a random hostname...

I install Temporary Containers add-on at least in "Automatic Mode" on most
of my Firefox profiles. On some of my Firefox profiles I combine that with
official Firefox Multi Account Containers add-on. That are not the only
extensions I use, but regarding those I use for isolation.

As I close one of the temporary containers all data is lost with it.
Except for browsing history and if I would allow it form data saving which
is global.

>      But the main security issue these days isn't that much the cookies,
> provided you delete them systematically; it's, in my opinion, that you
> are forced to create accounts on many Internet services like social
> insurance and ISP, with personnal data and these data have a high
> probability to be stolen by criminals, while the company or
> administration responsible of the service isn't liable for the dammage.
> It seems, up to now, the banks are taking data security more seriously
> than others, which means it is possible.

Yeah… that container isolation helps with cross-site attacks withing your
browser, however I am not aware of anything that protects you from
organizations which do not take security seriously except for trying to
avoid those organizations. But often enough you do not know whether an
organization is taking security seriously or not.

On my main profile I use external KeepassXC password storage via KeepassXC
add-on. But also that does not protect from those organizations.

Best,
--
Martin