On the other hand, I'm really pleased to find that they're whitelisting some ads by default, although I'm disappointed that money factors into it.
I use ad blockers, because so much of the web is a hideous mess without them. But I'm somewhat conflicted about it, because I know that a lot of sites depend on ad revenue. I see this as a kind of collective agreement with advertisers: I don't mind adverts, but I don't want them flashing all over my screen when I'm trying to get stuff done.
I don't think that you have any reason to feel disappointed, unless you have donated a significant amount of money to Adblock Plus. And even then, just disable that feature.
After all that's the way Adblock Plus makes most of its money, needed to develop the browser extension, port it to new platforms, maintaining and hosting the filter lists (which by the way are also used by every other ad blocker). I doubt that if Adblock Plus wouldn't have done this step, it would have ever been ported to other browsers and platforms, and that the filter lists (as mentioned, also used by other ad blockers, like AdBlock), would have been that well curated as of today.
So I don't see anything wrong with that. Or does anybody complain, that most free Android apps show adds, and you have to buy the paid version, to get rid of them? No, everybody understands that this is the way they make money. The only difference in case of Adblock Plus is, that you don't actually have to give them money, but just have to disable a checkbox in the options.
By disabling that feature, he would block all ads. However, he did say that he wants to support sites who rely on ad revenue. I don't think supporting Adblock Plus was what he was really concerned about.
I might got his message slightly wrong. However white listing is is a feature in the filter list format itself, that is used ever since by every ad blocker. So you can include third-party white lists or maintain your own with every ad blocker, already before Adblock Plus introduced "Acceptable Ads" and its own white list.
The important point for me is that one of the major adblockers has enabled a whitelist by default, and is curating it to allow non-intrusive adverts. That can affect enough users to make a difference, which my setting up a whitelist myself wouldn't.
Very true. Imagine every commercial entity that delivered something to your place - would plaster some sort of advertisement poster.
Completely unacceptable. I think the answer is a permission based advertising. have a button on every website that turns on Ads. this way engagement would be higher at least IMO.
How exactly are ad blocking extensions a security risk?
Blocking at the domain level gives you no control. What if you need to see what a site looks like without ads blocked? I have a few of my own content sites that use ads. By blocking outside of the browser I wouldn't be able to see what they look like to other users.
So, this is a rally against all extensions? Expanding this argument, we basically get to a point where we don't trust any software:
1. No more browser extensions.
2. Want ad-blocking in Firefox? Request feature.
3. Feature request denied.
4. Fork Firefox.
5. Add ad-blocking to Firefox fork.
This leaves us with a couple of issues:
1. The bar to adding functionality to a browser has now been raised significantly. With a larger barrier to entry, we will see fewer extensions for trivial things like 'adding collapsible threads to HN', which can make your life easier, but isn't worth a fork of the entire browser to achieve.
2. Trust. You still have to trust the developer of the browser fork that same way that you have to trust the developer of the browser extension.
There's nothing different from any other extension, so what you're saying nobody should be using extensions in their browsers. Good luck with convincing people not to do it.
Well, I for one don't use any extensions with Chrome. And not even from security concerns. Just from lack of any interest to do so. Why should I? For some marginal utility?
I'd take it more average people don't use extensions either -- if they know what they are in the first place.
Well, Stallman browses the web by sending emails[1], so he still has you beat :)
But you must realize 99.999% of the population would never do that, and for most people extensions are vital and useful. So giving them such security advice is like saying "oh, personal security is simple - just never have any money and anything valuable and never leave home". Not very practical.
>Well, Stallman browses the web by sending emails[1], so he still has you beat :)
Well, I browse with Chrome Canary (and when it's in it's weird days, Beta), so I'm not any kind of Luddite.
I just don't see any extensions that are that useful. After all, we managed to get by without extensions in the "not using Firefox" camp for ages, until Safari/Chrome introduced them and we could get a taste.
To me they are more like the BS browser toolbars of yore.
>But you must realize 99.999% of the population would never do that, and for most people extensions are vital and useful.
Most people? If anything I'd say most people don't use extensions. From those that use a browser that doesn't support them, to those that couldn't be bothered or don't even know what they are.
Do you have any numbers that "most people" use extensions?
Yes, this is the point of extensions. Extensions are help you and others do things with the browser that the vendor shouldn't really spend time on. Approaching them with the idea that they're useless doesn't really help your argument.
For example, I once wrote a browser extension that extracts class calendar info from the school website and automatically syncs it to the calendar application of your choosing. It turned my class scheduling process from an error-prone 2 hour process to a 3-click 10 minute step. You can label that as a useless, marginal utility, but that's being facetious at best.
Although I don't do this on regular basis, but I happen to read many browser extension sources. They're mostly relatively easy to understand and contain no unconventional clever hacks or obfuscated parts. The only obfuscated code in most extensions are minified third-party libraries (like jQuery).
Won't say ABE's code is compact or easy to read, but it's fairly comprehensible and reviewing it in reasonable time feels possible. It is well possible that some tricky security issue will slip under the radar, but code contains no tricky math or crypto stuff where every single point is crucial for security, and spotting malware/spyware code should be possible.
Would you also be shocked if there are people who make no attempt to block ads at all? I would not be shocked by that, but I'd guess not blocking ads at all is a greater security risk than running ABP.
I use a browser that blocks nothing and one that blocks almost everything. (when something breaks, sometimes it's easier to load it in a stock browser)
it's useful to have extension if you want to disable it and temporarily see ads; also it's easy to whitelist ads on particular sites/pages - there are non intrusive and useful ads.
Combined with AdBlock, I use Ghostery[1], which is a nice add-on (Chrome/FF/Safari/Opera/IE) : it blocks any javascript from ads networks, but also from analytics, trackers, socials plugins (and more) , and also cookies from the same trackers. Everything is configurable per-tracker and per-website.
It's quite a must-have if you don't want to be the product on the Internet. And a good failover over Ad-block.
Um, that's dumb unless you plan on clicking their ads. Seriously, just showing a CPC ad doesn't help them. Showing a CPM ad doesn't help much either if they are getting $5-10 CPM. You literally could just pay them $5 or $10 and be more valuable than whitelisting them.
Another alternative is blacklisting sites via your hosts file, which means it applies to all applications and not only the browser. Also, it works in any UNIX-based OS:
http://someonewhocares.org/hosts/
FOR CHROME:
Go to "Settings"
Find Extensions in the list on the left
Find AdBlock, select "Options"
Click the tab "Filter Lists"
Uncheck: "Allow some non-intrusive advertising"
FOR FIREFOX:
Go to the Firefox menu in the upper left corner
Select "Add-ons"
Select "Extensions"
Find Adblock Plus, select Options.
Find the "Filter Preferences" Button
Select the tab "Filter Subscriptions"
Uncheck: "Allow some non-intrusive advertising"