all 5 comments

[–]kovri[S] 4 insightful - 1 fun4 insightful - 0 fun5 insightful - 1 fun -  (0 children)

More technical paper: https://arxiv.org/abs/1811.07153

[–]d3rr 4 insightful - 1 fun4 insightful - 0 fun5 insightful - 1 fun -  (1 child)

Thanks Intel.

[–]cant_even 2 insightful - 1 fun2 insightful - 0 fun3 insightful - 1 fun -  (0 children)

[–]HanakoIsBestGirl 2 insightful - 1 fun2 insightful - 0 fun3 insightful - 1 fun -  (1 child)

I would like to point out that the tor browser has a built in js blocking plugin, which if used correctly may at least help a bit here. Eg only allowing js when you absolutely have to on sites you trust.

I disable js unless I have to.

[–]cant_even 2 insightful - 1 fun2 insightful - 0 fun3 insightful - 1 fun -  (0 children)

Javascript blockers are as important as ad-blockers, and should be used on all 'regular' browsers. NoScript and ScriptSafe are two 'whitelist' blockers that function as you described.

I won't lie; there's setup overhead, where you 'teach' the blockers what's acceptable to get sites important to you working, but even those sites usually have some generic GoogleFacebook stuff nobody needs.