A new study Web Browser Privacy: What Do Browsers Say When They Phone Home?, looked at the six popular desktop web browsers Google Chrome, Mozilla Firefox, Microsoft Edge (Chromium-based), Apple Safari, Brave, and Yandex, to uncover what these browsers send back to the mothership.
If you just want the result, the study found that used out of the box, Brave "is by far the most private of the browsers studied" followed by Chrome, Firefox and Safari. Brave is the only web browser that did not use identifiers that allowed tracking of the IP address over time and did not share details of web pages visited to backend servers.
Where is my Moon?
(Score: 1, Informative) by Anonymous Coward on Thursday February 27 2020, @07:09AM (1 child)
Don't use squid or its obsoleted dnsserver process for something like that. You want unbound or BIND or Knot or another recursive server set up on a trusted VPS (to hide it from your home ISP) to do the iterative process itself, rather than forwarding it on to another server. Another option is to use a recursive server setup with a global forward that does do round robin or has certain forwards set up for certain domains (e.g. google.com. always goes to 8.8.8.8), but the roots don't do DoT as far as I know so your local ISP can still snoop. Best case is to have a local server do DoT forwarding to a remote VPS running its own non-forwarding recursive server that can do the lookups for you.
(Score: 0) by Anonymous Coward on Thursday February 27 2020, @01:09PM
There is some question in my mind whether doing recursion yourself is actually better. High volume caches hit the root less. So it is a question between corporate surveillance at the cache, or federal surveillance at the root.