Hacker News new | past | comments | ask | show | jobs | submit login

Along with the Facebook Container I use multi-account containers to keep a Google, Microsoft, and Amazon container as well. I included all of their children companies in the parent containers (like GitHub in Microsoft, YouTube in Google). It's sobering seeing how much of the internet shows up in one of these four containers.



I use multi-account containers and temporary containers so that all my new tabs are isolated.

Is there any reason to also use facebook container if you already have multi-account containers?


> I use multi-account containers and temporary containers so that all my new tabs are isolated

Worth mentioning that with the addon cookie auto-delete, you can more or less emulate temporary containers.


Temporary containers has a plethora of settings for when to open a new container. For example, I have a rule enabled that will open links in a new temporary container when they leave the current one. That's a terrible explanation, so let me give an example to make it clear:

- I have a GitHub container

- github.com and gist.github.com are set to always open in the GitHub container

- Say I am currently browsing github.com in the GitHub container.

- If I click a link to a domain other than [gist.]github.com, instead of navigating my current tab to that url, the url will open in a new tab & new temporary container

This is more powerful than simply persisting cookies from github.com -- I'm keeping GitHub's cookies, but only in the github container. It's almost like first party isolation, but a little weaker (unless you enable the setting where any link to a different domain will open in a new container), and I have the ability to group sites that would break with 1st party isolation by opening them in the same container.


I agree, your description is more why I like it -- the only websites that get to save any state are the ones I pick to open in specific named containers and which I also specifically granted permissions to with uMatrix (RIP).

Everything else opens links in a new container with the hope to make it as close as possible to looking like a different person clicked that link. I know it won't work that well since the IP doesn't change nor the user-agent, but at least it helps with the most lazy tracking.


I share the same goals; thanks for the succinct description.

Discussion upthread made me interested to see whether I can route temporary containers through tor, to make this protection stronger — see https://news.ycombinator.com/item?id=24853320

It's not super high on my list of priorities though, probably won't get to it for a month or two.


Oh, that'd be very neat if it made separate container tabs look like different tor sessions. Very clever! I suppose there's little short of that which would stand a real chance of working...




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: