this post was submitted on 03 Feb 2025
369 points (98.4% liked)

Technology

61456 readers
4114 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
369
Give permission. Don't give permission. They know where you are anyway (timsh.org)
submitted 2 days ago* (last edited 2 days ago) by [email protected] to c/[email protected]
61 comments fedilink hide all child comments
 

An amazing bit of digital detective work here. Seems like Linux mobile is your only off ramp from being exhaustively tracked

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 9 points 2 days ago (5 children)

Is there any straightforward way of stopping this besides dropping off the grid?

[–] [email protected] 2 points 1 day ago* (last edited 1 day ago)

Use a custom DNS and/or hosts file. You can cut them off the grid by blocking data upload to SSP. Don't install many apps, for games that can be played offline, play them offline. EDIT: AdGuard DNS doesn't block the 1st URL (o.isx...) in the page. 2nd URL is blocked.

[–] [email protected] 9 points 2 days ago* (last edited 2 days ago)

Using firefox in strict mode with ublock origin, cookie auto-delete, and a VPN to change your IP every now and then should stop location tracking and cross-site tracking. Sites will still know you've visited them and what pages you've been to in that session, but that is impossible to stop.

The main thing is don't use apps, they can collect tons of data and tie it directly to your physical device, and run in the background while not actively using it.

Using a web browser is really the safest option I can think of because you have control over almost everything.

[–] [email protected] 14 points 2 days ago (2 children)

Route all or traffic through tor. Never log into anything. Never use the same identity twice. Ahh and live in a hut in the woods never going to shops or cities that have security cameras.

[–] [email protected] 8 points 2 days ago* (last edited 2 days ago) (2 children)

I think it's more: "Don't use a smartphone". It'll send those requests through any internet connection. No matter if it's a VPN or Tor.

[–] [email protected] 2 points 1 day ago (1 children)

Google hardcodes DNS into their hardware appliances...
So you'd need to block outgoing DNS requests except for your DNS server and god forbid you change location with a smartphone.

[–] [email protected] 1 points 1 day ago (1 children)

I think this is about apps and not the operating system. But yeah, the stock ROMs also phone home to Google. You'd need to patch that. For example like custom ROMs like GrapheneOS do. I don't see another viable alternative. But that still leaves you with the issues with the apps mentioned in the article.

[–] [email protected] 2 points 6 hours ago (1 children)

I wouldnt be surprised if Google hardcoded DNS servers even if you override it with a "private dns"

[–] [email protected] 1 points 2 hours ago* (last edited 2 hours ago)

I think it's unlikely that they mess with people's DNS settings. That would just break lots of stuff and internet would stop working for a small amount of people. But there are things like certificate pinning and probably similar things for DNS. We nowadays often circumvent DNS servers and use DOH on an application level. Plus there are things like connectivity checks (made for public wifi portals etc), AGPS... that all connect to Google servers... Well, unless you have that changed, as I said. But that's not something the user can change. You need the whole operating system re-built with different servers in place.

[–] [email protected] 5 points 2 days ago (1 children)

I forgot I'm in a minority of people running a properly secure degoogled ROM.

[–] [email protected] 5 points 2 days ago* (last edited 2 days ago) (1 children)

Same, same. But the occasional app refusing to work due to missing Play services, all the Instagram posts everyone except me took notice of, and all the hoops I have to jump through, kind of remind me of that regularly.

[–] [email protected] 1 points 11 hours ago (1 children)

@hendrik @muntedcrocodile then don't use that app. Done.

[–] [email protected] 1 points 10 hours ago* (last edited 10 hours ago)

Just comes with the downside that I can't take part in every day life, talk to my friends, stay connected with old friends, borrow an electric bicycle, transfer money easily... I have to drive to a shop only to see it's closed and they posted that on Instagram... I mean there's a whole world out there which I don't just want to disconnect from and become some sort of hermit...

[–] [email protected] 2 points 2 days ago (1 children)

...where are chains allowed to abuse security camera footage for ad tracking?

[–] [email protected] 6 points 2 days ago

Bunnings in Australia until very recently and u have basically 0 protections in the states.

[–] [email protected] 4 points 2 days ago

I imagine an ad blocker could prevent this data going out, unless the hosts were generic and the game/app simply won't work without allowing those connections. I've never seen an app be [obviously] broken from my ad blocker but I am interested in running a similar experiment to see just how much data is going out.

[–] [email protected] 1 points 1 day ago

None worth pursuing