Closed ghost closed 9 years ago
Jondonym recommends settings that are very common, so that you will be difficult to distinguish. For this "crowd protection" to work though, your User Agent string should also be common and should match your Headers. If you use a fake user-agent provided by RAS but real headers because you unchecked Spoof Accept
, your browser will really stand out; you might for instance have the UA of a Safari browser, but the other Headers of a Firefox on Windows browser. Spoof Accept
allows the [spoofed] headers to match your [spoofed] User-Agent, thus making your fake profile look more authentic.
Jondonym and RAS try to achieve privacy by using different paradigms. Whereas Jondonym tries to hide in the crowd by using a single very common browser signature, RAS tries to make itself difficult to track by regularly changing the signature. In practice, this means that although your current Spoofed User-Agent & Header settings might stand out more than Jondonym's, with RAS your settings will change often, making you really difficult to track.
Ok thanks
RAS headers match the currently spoofed profile so you will have chrome headers with the and the chrome user agent and google inc as the vendor when you select a chrome profile for example.
Jondonym recommends their browser or the tor browser and makes comparisons to them. Both of those browsers are based on FF so that is why it shows green for those headers when the accept headers are unchecked and RAS is using a non FF profile.
If you intend to use RAS it is strongly recommended to keep the accept headers checked or you will definitely stand out more due to profile inconsistencies.
See https://github.com/dillbyrne/random-agent-spoofer/blob/master/data/json/useragents.json and it will become clearer.
As for the signature I have not been able to change it by modifying the order of headers. My guess is that it is handled at a lower level in the firefox code. There is an issue open for it though #79
thanks
Hi dillbyrne,
Is there anything that can be done in RAS to protect the
HTTP Session
&Signature
?If I check under
Headers
the 3Spoof Accept
options, when I use Jondonym IP check they all come back as a medium level. If I uncheck all of them, Jondonym rates them all green good. Hmm I know Jondonym has their own agenda I'm sure, but for the most part it has seemed reliable with information...http://ip-check.info/?lang=en
My understand using the Spoof Accept makes your browser fingerprint standout more?
thanks