this post was submitted on 23 May 2024
471 points (97.4% liked)
Asklemmy
43403 readers
1667 users here now
A loosely moderated place to ask open-ended questions
If your post meets the following criteria, it's welcome here!
- Open-ended question
- Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions. Assume best intent and be excellent to each other.
- Not regarding using or support for Lemmy: context, see the list of support communities and tools for finding communities below
- Not ad nauseam inducing: please make sure it is a question that would be new to most members
- An actual topic of discussion
Looking for support?
Looking for a community?
- Lemmyverse: community search
- sub.rehab: maps old subreddits to fediverse options, marks official as such
- [email protected]: a community for finding communities
~Icon~ ~by~ ~@Double_[email protected]~
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
If you're using DDG for privacy, then indeed you are wrong.
It may be "less invasive" than google, but it's neither anonymous, nor private.
Direct privacy abuse:
DDG was caught violating its own privacy policy by issuing tracker cookies.
DDG’s app sends every URL you visit to DDG servers. (reaction).
DDG is currently collecting users’ operating systems and everything they highlight in the search results. (to verify this, simply hit F12 in your browser and select the “network” tab. Do a search with javascript enabled. Highlight some text on the screen. Mouseover the traffic rows and see that your highlighted text, operating system, and other details relating to geolocation are sent to DDG. Then change the query and submit. Notice that the previous query is being transmitted with the new query to link the queries together)
DDG is accused of fingerprinting users’ browsers.
When clicking an ad on the DDG results page, all data available in your session is sent to the advertiser, which is why the Epic browser project refuses to set DDG as the default browser.
DDG blacklisted Framabee, a search engine for the highly respected framasoft.org consortium."
CloudFlare:
DDG promotes one of the largest privacy abusing tech giants and adversary to the Tor community: CloudFlare Inc. DDG results give high rankings to CloudFlare sites, which consequently compromises privacy, net neutrality, and anonymity.
Full article: http://techrights.org/2020/07/02/ddg-privacy-abuser-in-disguise/
ETA: The bulk of the text in my reply was lifted from a reddit comment. I tried to format my comment to reflect that it's a "quote", alas I've failed. Hence this.
Also, I don't have a card in this game. I understand anonymity and privacy - I dislike intentional deception.
What to use them, if not DDG
I'm currently using searx.be with good results
Searx improved a lot since I last used it. Was really slow before
Its searxng now (the original searx is dead) and is quite good. Performance differs. I've seen very slow instances, but when I started hosting my own semi-private instance, I saw how fast it can be, if the server isn't a potato.
How can I set it as default browser on Android Brave?
Not able to do it
Sorry, but I don't know how to do that. I use Cromite, not Brave.
Do you ever have moments where you type something to search into the address bar and you just get taken to the instance home page? That happens to me every now and then and I'm wondering if it's the instance I'm using
I have not experienced this, no. Unsure as to what that could be, but if another instance doesn't cause that issue that would be a good sign that it is the current instance you're on.
I've switched back to searx.be and I haven't faced the issue yet. Must've been the instance then. Strange
I use kagi, it's very good.
I can’t justify Kagi’s pricing but I liked it. I’d blow through the cheapest plan in a week. Neeva was pretty good too before they pivoted, also pricey imo though.
I blew through the $5 plan in a short amount of time. I'm a curious person, I guess! I really like it though so decided $120/year was worth it for unlimited.
Compared to DDG (Bing) the search results are really good. When using DDG I would frequently revert to Google, but not with Kagi.
Same. I work and play at my computer, so I certainly get my use out of it. I wouldn't pay for it if both my work and my hobbies weren't both on my PC.
I was gonna try it, but then I saw this: https://d-shoot.net/kagi.html
The CEO doesn’t understand GDPR, so I’m not inclined to let them handle my data, and even pay them for the privilege.
I love kagi. Using it for search and gpt functions.
I haven't touched the ai feature, I'm glad its separate and not forced into search, but I'm also glad people seem to be getting good use out of it. Best of both worlds.
Mojeek isn't perfect, but it's truly independent search engine.
and when people let us know where we fall down we're able to make it better, growing alongside the userbase!
Christ on a bicycle.
I just learnt of searx today, any bad news there?
I'm running a search instance on a VPS so my home IP isn't linked to my searches. The main disadvantage is that my VPS is in Toronto and I live 2hrs away so geo searches don't work very well. For instance, if I Google "restaurants" I get results for local restaurants whereas if I Gregle (I named my search engine Gregle) I get results for results near my VPS.
DM me if you want a link to my instance to check it out. It's open but I don't publicize it because bad actors could ruin my IP addresses reputation with spam queries via the API.
I recently learned about it, but haven't used it. From what I understand, it's similar to how the fediverse works; individual instances are run by whoever wants to run them. If you run your own instance, you have complete trust in it, but you effectively aren't anonymous (unless you support a whole bunch of users to pool together. If you join someone else's instance, you have to trust them. There's public and private instances.
The other downside is that, like many other small players, they are a metasearch engine, so they rely on the big players like Google and Bing who actually crawl the web for information to index. If Google or Bing want to hide information, that trickles down into metasearch engines, too. It's somewhat buffered by thr fact that your metasearch can look through a whole bunch of different indexes, so you aren't held to one countries censorship, but it probably still has an effect.
Searx is dead. You'll want to use SearxNG instead.
Do they "give high rankings" to CloudFlare sites because they just boost up whoever is behind CloudFlare, or because the sites happen to be good search hits, maybe that load quickly, and they don't go in and penalize them for... telling CloudFlare that you would like them to send you the page when you go to the site?
Counting the number of times results for different links are clicked is expected search engine behavior. Recording what search strings are sent from results pages for what other search strings is also probably fine, and because of the way forms and referrers work (the URL of the page you searched from has the old query in it) the page's query will be sent in the referrer by all browsers by default even if the site neither wanted it nor intends to record it. Recording what text is highlighted is weird, but probably not a genuine threat.
The remote favicon fetch design in their browser app was fixed like 4 years ago.
The "accusation" of "fingerprinting" was along the lines of "their site called a canvas function oh no". It's not "fingerprinting" every time someone tries to use a canvas tag.
What exactly is "all data available in my session" when I click on an ad? Is it basically the stuff a site I go to can see anyway? Sounds like it's nothing exciting or some exciting pieces of data would be listed.
This analysis misses the important point that none of this stuff is getting cross-linked to user identities or profiles. The problem with Google isn't that they examine how their search results pages are interacted with in general or that they count Linux users, it's that they keep a log of what everyone individually is searching, specifically. Not doing that sounds "anonymous" to me, even if it isn't Tor-strength anonymity that's resistant to wiretaps.
There's an important difference between "we're trying to not do surveillance capitalism but as a centralized service data still comes to our servers to actually do the service, and we don't boycott all of CloudFlare, AWS, Microsoft, Verizon, and Yahoo", as opposed to "we're building shadow profiles of everyone for us and our 1,437 partners". And I feel like you shouldn't take privacy advice from someone who hosts it unencrypted.
Fuck this. Fuck search engines. I'm going back to curated website lists.
Webrings ftw
Where do you find them?
My FIL has a book from the 90s that's basically an internet yellow pages.
I never left.
I knew my bookmarks would save me
Bring back DMOZ and the Yahoo directory.
Also as DDG is based in the US it is most likely legally bound to give your informations to any agency with a nice gag order on top of it.
I can't imagine any serious privacy oriented business to be headquartered in the US.
The whole better privacy is true with DDG but certainly not to the extent people would like to think.
That being said DDG has decent search results and is slightly better than Google for privacy. Google is an ecosystem so every little bit you don't give them is a success.
It's really too bad we don't have good private search engines..
Excellent reply. Thank you. Do you have any suggestions for alternatives?
Thanks for sharing - didnt know. Thats a long list ..... So which search engine is good and privacy friendly then?
It depends on what you're trying to be private from. Kagi has been good to me so far, my goal is mainly to escape from corporate/ad profile tracking.
Kagi is great. Excellent search results for the most part, better than either DDG or Google in my experience.
It's disingenuous to say there's no point in striving for privacy if you're not going to go completely off grid. There are always better and worse options.
If someone said they were concerned about their sugar intake would you tell them to just stop eating entirely? It's possible to take steps towards privacy-friendly services without cutting yourself off from the modern world in the same way as you can cut back on sugar and still eat food.
You absolutely do not need to "burn all your devices" to improve your privacy, suggesting so is unhelpful at best.
This all-or-nothing mentality is harmful to any cause.
"Don't let perfect be the enemy of good"
And do so every evening and start fresh everyday
You need to put a > in front of each new line.
Honestly thats like the most annoying thing about lemmy. Or maybe its just sync. But still damn annoying.
Just check the web ui and it appears it's part of Lemmy.
Edit: Sync doesn't seem to require one added to blank new lines but Lemmy does.
Not to be dismissive, but if you deconstruct every website like this, won't they all look horrible? I mean how long would Google's list be if you detailed every single controversy and dodgy thing they've done in/to/from their search engine?
They also do ranked search like google, although not as bad but i think that is just a factor of age. Actual search term is often 5th or more down page
Excellent reply. Thank you. Do you have any suggestions for alternatives?
Btw you double posted this