Even though i have Proton VPN blocking trackers and use firefox with arkenfox EFF always says my browser has a unique fingerprint. Same with Mullvad browser and Tor. When I switched Tor to “Safer” it said near unique fingerprint, and only when i switched it to safest did it say i am protected from fingerprinting
from my results id guess that it has no fingerprit thanks to no javascript, but 90% of websites are useless without js
In practice? No not really.
JShelter is the only thing I have seen that stops creepjs from working at all. But that doesn’t mean you can’t be fingerprinted. Not to mention Crimeflare has been very successful with their TLS fingerprinting methods (among other things), which doesn’t even require working JavaScript.
And compared to creepjs, EFF’s tool is a joke and works quite differently, and not in a good way.
Are websites often implementing all creepsjs tequniques? It seems like if standard identifiers were enough they wouldn’t add in more just because minimal benefit relative to extra effort.
Does TLS fingerprinting do more than fingerprint browser type?