News and Discussions about Reddit
Welcome to !reddit. This is a community for all news and discussions about Reddit.
The rules for posting and commenting, besides the rules defined here for lemmy.world, are as follows:
Rules
Rule 1- No brigading.
**You may not encourage brigading any communities or subreddits in any way. **
YSKs are about self-improvement on how to do things.
Rule 2- No illegal or NSFW or gore content.
**No illegal or NSFW or gore content. **
Rule 3- Do not seek mental, medical and professional help here.
Do not seek mental, medical and professional help here. Breaking this rule will not get you or your post removed, but it will put you at risk, and possibly in danger.
Rule 4- No self promotion or upvote-farming of any kind.
That's it.
Rule 5- No baiting or sealioning or promoting an agenda.
Posts and comments which, instead of being of an innocuous nature, are specifically intended (based on reports and in the opinion of our crack moderation team) to bait users into ideological wars on charged political topics will be removed and the authors warned - or banned - depending on severity.
Rule 6- Regarding META posts.
Provided it is about the community itself, you may post non-Reddit posts using the [META] tag on your post title.
Rule 7- You can't harass or disturb other members.
If you vocally harass or discriminate against any individual member, you will be removed.
Likewise, if you are a member, sympathiser or a resemblant of a movement that is known to largely hate, mock, discriminate against, and/or want to take lives of a group of people, and you were provably vocal about your hate, then you will be banned on sight.
Rule 8- All comments should try to stay relevant to their parent content.
Rule 9- Reposts from other platforms are not allowed.
Let everyone have their own content.
:::spoiler Rule 10- Majority of bots aren't allowed to participate here.
view the rest of the comments
If you install the duckduckgo browser and turn on app tracking protection, you'll see just how much data is harvested from mobile apps, which is genuinely scary.
This is why these sites are pushing the mobile app. It's much harder to prevent trackers through an app than it is through a web browser.
I just installed this and am trying the app tracking protection (it's in beta, for those reading who haven't used it). Shockingly, Candy Crush Soda doesn't come up with a list of junk being tracked. whew or something
Here's a screenshot from Discord:
Some of that seems unnecessary (device boot time). But it's not all scary spooky tracking. Some permissions/information is required for certain features.
For example, you can't rotate your app UI if you're not allowed to know screen orientation. Or maybe they do a low power mode if device battery is low, or a warning that the app might not function well if the OS or device is old.
Not saying you're wrong or that Discord is right. Just pointing out that a long list of permissions isn't on its own a bad thing, if those permissions are required for specific features, and not just for the sake of data harvesting.
This is why though I appreciate what DDG is doing, it's not informing users about the context of what these permissions are used for, leading to a lot of fear over the wrong things. The data may not even be leaving the device but the implication DDG makes is that it is.
As a side note, I prefer to use DNS66 to filter data and ads by domain, then manually set my Android app permissions as needed.
This is one hundred percent sensationalism. Just because the app pulls it doesn't mean that it's being used to track you down. It's probably just for crash reporting etc.
Lets also not forget the massive amount of OS versions, hardware variants, resolutions, and localisations apps like Discord need to auto-adjust themselves to work with. If it fails it will absolutely need that info in the report so devs can fix it.
A lot of these are just standard things that things like crash reporters pull. In other words, Discord probably included a crash reporter in their app, and it pulls things like memory usage, device state, os version, what orientation the device is in, etc so that when a crash happen, it can tag those to the developers. Those are all useful variables to the developers to understand what is causing the crash.
Tons of apps use crash reporters to keep their app stable. I'm sure most apps will pull the vast majority of this information. That doesn't mean that they're using it to track you.
Certainly not all scary. I don't work with these that collect the data but wonder if it isn't just some deviceData.collect() function or something.
Device boot time could be used for a user that clears their cookies to track and match sessions. Using that, and matching it with other information could give very reliable ways to fingerprint users.
Christ.
Do you happen to have a screenshot of the data that is harvested? I am genuinely curious.
I don't have specific info on what's harvested, but I have had mine active for a while and I'm at 300k tracking attempts blocked in the last 7 days. It's absolutely wild.
Edited to add - they don't specify what is being attempted, just what each company is known to track generally.
Yeah, don't be shocked. Without the blocker every app makes one successful attempt and just tracks, with the blocker they attempt again and again like a hamster running against a wall.
Some apps won't work with the blocker. I tried to block Chrome and after a while none of the apps I have installed would work, until I unblocked it.
Examples: I turned on the duckduckgo protection, opened the official app and visited a couple posts.
https://files.catbox.moe/sqbg87.jpg https://files.catbox.moe/nj7y8d.jpg
Thank you! I can't believe that. So it basically wants to know literally everything about you. That's so disgusting and creepy. We need privacy laws that protect against stuff like this, yesterday.
I can see them requesting city, but beyond that, this is wayyyy too much.
Yea its pure insanity and greed. This is just one of many examples of why I have dual piholes on top of ad blocking extensions.
How is DuckDuckGo Browser able to see what data other apps are trying to collect? I would have expected Android's app sandboxing to block that sort of thing. Does the device need to be rooted or something?
When you turn on app tracking protection, it activates an always-on VPN that funnels the trackers to a deadzone so that they can't actually phone home.
Just search TrackerControl on the Fdroid store.
The Mozilla VPN app has a feature to block some ads and trackers on your internet connection. https://support.mozilla.org/en-US/kb/how-do-i-change-my-privacy-features
Just wish duck duck go had PWA support. It would be my default browser if so.