🆕 Software Suggestion | Privacy Pass #2087

New Issue

2020-10-11T12:32:05Z

wuniversales commented

2020-10-11 12:32:05 +00:00

(Migrated from github.com)

Basic Information

Name: Privacy Pass
Category: Browser extensions
URL: https://privacypass.github.io/ (Open source)

Description

The Privacy Pass extension implements the Privacy Pass protocol for providing a private authentication mechanism during web browsing. Privacy Pass is currently supported by Cloudflare (And hCaptcha) to allow users to redeem validly signed tokens instead of completing CAPTCHA solutions.

Why I am making the suggestion

It works quite well, improves privacy, and avoids using too many captchas.
(Especially it is useful if you browse with tor browser)

My connection with the software

No, I am just a user using the extension.

I will keep the issue up-to-date if something I have said changes or I remember a connection with the software.

## Basic Information **Name:** Privacy Pass **Category:** Browser extensions **URL:** https://privacypass.github.io/ (Open source) ## Description The Privacy Pass extension implements the Privacy Pass protocol for providing a private authentication mechanism during web browsing. Privacy Pass is currently supported by Cloudflare (And hCaptcha) to allow users to redeem validly signed tokens instead of completing CAPTCHA solutions. ## Why I am making the suggestion It works quite well, improves privacy, and avoids using too many captchas. (Especially it is useful if you browse with tor browser) ## My connection with the software No, I am just a user using the extension. - [x] I will keep the issue up-to-date if something I have said changes or I remember a connection with the software.

Mikaela commented

2020-10-19 14:12:29 +00:00

(Migrated from github.com)

Are there that many captchas to need it with onion-location and their other solution being things?

wuniversales commented

2020-10-20 14:44:02 +00:00

(Migrated from github.com)

In tor navigation, there are many captcha because almost all websites use cloudflare (And cloudflare forces many tor users to complete a captcha), with this complement, the captcha protocol is improved.

It works for tor, but also for normal navigation.
It's not just limited to tor.

In addition to this, it is not necessary to fill in so many captcha since they give you "trust tickets" every time you solve a captcha.

Note: The "Trusted Tickets" I mention are actually tokens.

The "trusted tickets" you have can be seen in the browser extension.
The tickets are exchanged in the next captchas that appear, that is, it will not be necessary for you to resolve the captcha.
Tickets will be discounted as captchas appear, finally you will run out of tickets.
When you run out of tickets you will have to solve the captcha, and again you will receive tickets that you can exchange.
For each captcha that a user solves in "cloudflare", they give you 30 "cloudflare" trust tickets.
If the web has "hcaptcha", in this case, for each resolved captcha, they give you 5 trust tickets.

In tor navigation, there are many captcha because almost all websites use cloudflare (And cloudflare forces many tor users to complete a captcha), with this complement, the captcha protocol is improved. It works for tor, but also for normal navigation. It's not just limited to tor. In addition to this, it is not necessary to fill in so many captcha since they give you "trust tickets" every time you solve a captcha. **Note:** The "Trusted Tickets" I mention are actually tokens. - The "trusted tickets" you have can be seen in the browser extension. - The tickets are exchanged in the next captchas that appear, that is, it will not be necessary for you to resolve the captcha. - Tickets will be discounted as captchas appear, finally you will run out of tickets. - When you run out of tickets you will have to solve the captcha, and again you will receive tickets that you can exchange. - For each captcha that a user solves in "cloudflare", they give you 30 "cloudflare" trust tickets. - If the web has "hcaptcha", in this case, for each resolved captcha, they give you 5 trust tickets.

gary-host-laptop commented

2020-10-20 21:56:40 +00:00

(Migrated from github.com)

Still I think using this with Tor defeats the purpose, right? It's not like installing uBlock which at least is used by anyone using Tails, here the fingerprint would be close to unique.

lynn-stephenson commented

2020-10-20 22:40:00 +00:00

(Migrated from github.com)

Fingerprinting is pretty complicated. But this is not only applicable to Tor users, but hardened FF users too.

👀 1

lynn-stephenson commented

2020-10-22 16:12:30 +00:00

(Migrated from github.com)

Oct 2020: The Privacy Pass protocol is now in the process of being standardised by the IETF in the privacypass working group. All contributions are welcome! See the GitHub page for more details.

There is a lot of work being put into this; it's becoming more than just a browser extension. I can look into it more so, but it already seems to be recommendable to hardened FF users, who also receive large amounts of CAPTCHAs. It's really just a convenience feature while preserving your privacy.

> Oct 2020: The Privacy Pass protocol is now in the process of being standardised by the IETF in the privacypass working group. All contributions are welcome! See the GitHub page for more details. There is a lot of work being put into this; it's becoming more than just a browser extension. I *can* look into it more so, but it already seems to be recommendable to hardened FF users, who also receive large amounts of CAPTCHAs. It's really just a convenience feature while preserving your privacy.

This repo is archived. You cannot comment on issues.