EDIT: After reading all the responses, I’ve decided to allow cookies to persist after they close the browser, which I expect will make it so that 2FA doesn’t kick in as often, at least not on their most frequently used web sites. I may also look into privacy oriented browser extensions that might offer some protection, such as Privacy Badger. Thanks, all!
OP: I know two factor authentication is considered more secure than just passwords, but here’s the deal: One of my family members uses Linux Mint on their laptop (at my recommendation and yes, they are aware that it’s not a Mac), and while they’ve mostly adapted to the different workflows (coming from a macbook), one of their biggest pain points is that web sites are constantly challenging them because they don’t recognize their machine. It’s frustrating to them because they used to just allow all cookies in Safari, whereas I’ve configured Firefox on their Linux laptop not to keep any cookies after the browser is closed. I know this isn’t a Linux/Firefox issue, but I think they might not see it that way and I worry they’ll get frustrated to the point that they’ll go out and splurge on a new macbook air when they already have a perfectly functional laptop with functional OS.
Right now I’m thinking of adding their most frequently used web sites as exceptions in Firefox settings so at least those cookies would persist after closing the browser, making them easier to log into. Or maybe I’ll just allow all cookies indefinitely, although I’d rather not just throw in the towel on Big Surveillance. Is there another way to walk that line between convenience and security that I’m not thinking of? Should I just remove my tin foil hat and allow all cookies indefinitely?
Thanks in advance for your advice.
whereas I’ve configured Firefox on their Linux laptop not to keep any cookies after the browser is closed.
Here is your issue
It has nothing to do with Linux at all. It’s all about the browsers configurations you made
Yes, I understand that. I suppose my reason for posting in c/Linux was I thought that maybe there was some Linux-specific tool or configuration that I hadn’t thought of.
Yes, stop shooting yourself in the foot and allow cookies at least for those sites.
Will do. Thank you.
Just allow cookies for those websites. You can do it by clicking the lock to the left of the search bar and enabling “Always store cookis/data for this site”
I did not know about that - thanks for the tip!
I’m a bit late to the party, but I would be inclined to agree with the majority here. Your choice to have their cookies deleted on browser close is adding more friction to an already quite high friction process - you managed to get them to switch over, you don’t want to undo all that over cookies of all things.
You have to remember, it is their machine at the end of the day, and while you might be able to put up with having to redo 2FA loads due to cookie deletion, they’re clearly not… And if that’s going to be the dealbreaker, you’re far better off forgetting cookie deletion for now and focusing on more passive privacy options like blocking 3rd party cookies, trackers, and ADs.
Yup, I agree - thanks for chiming in.
Don’t forget to let them know that Linux is not by default this hardcore with cookies.
I’ve configured Firefox on their Linux laptop not to keep any cookies after the browser is closed.
Why? Like I get it on your own computers where you’re willing to deal with the hassle of that. But it’s a huge pain for someone who just wants to use their PC.
I may also look into privacy oriented browser extensions that might offer some protection, such as Privacy Badger.
uBlock Origin is all you need.
I set Firefox to save cookies for a few sites that I want to stay signed into. Everything else gets deleted when the browser is closed.
This. Delete all, keep a few. Goodness enumeration
For my family my setup slightly different for reasons in other comments:
- do change browsers away from Chrome or Edge
- do change search engines
- allow cookies
- drop tracking surveillance traffic at the network level with something like pihole or nextdns
Gotcha, thanks for sharing your setup.
Allowing cookies for websites you are logged into makes sense. If you are going to login the site already knows who you are can track you, so you do not lose much with the exception. What I do for some sites like google services is access them from a separate browser.
I’ve configured Firefox on their Linux laptop not to keep any cookies after the browser is closed. I know this isn’t a Linux/Firefox issue
It’s you issue.
Block third-party cookies, but allow cookies from the site itself. I’m not sure why you’d filter those out in the first place?
I’m not sure why you’d filter those out in the first place?
To be clear, the current settings do not filter out any cookies, they just don’t allow them to persist after the browser is closed. But after reading the advice in the comments, I’ll relax this setting. Thank you.
As others have pointed out, the issue is here is not because of mint or linux, but because of the constant loss of cookies.
I was also experimenting with automatically deleting cookies but the only extension (forget me not) that allowed me the workflow I wanted was buggy and unmaintained.
I have settled on the following rules:- cookies are not deleted automatically
- umatrix default denies cookie access for all sites, but if somewhere it’s needed I’m ready to unblock it
- i open most sites with the temporary containers addon and it’s ctrl+click shortcut
This way, cookies are only deleted when I really want it, which I control by deciding on using a temp container or not.
If using Firefox:
- uBlock Origin: Ads be gone. You need to select/add the blocklists you want.
- Privacy Badger: Automatic tracker blocker with no configuration required.
- Cookie AutoDelete: Saves cookies for the pages you want it to, and nukes everything else.
- Firefox Multi-Account Containers: Keep your activity in separate silos. That Banking container cookie won’t be visible to that Porn container’s JavaScript, Meta’s container can only see Meta’s stuff, etc.
I use a bunch of others, but the above are my bare minimum.
Don’t believe anyone who tells you that one extension does everything.
whereas I’ve configured Firefox on their Linux laptop not to keep any cookies after the browser is closed.
Why? Does this person care about privacy? The average person would much, much rather just have the cookies for exactly this reason.
You’re right - I’ve decided to allow cookies to persist after they close the browser. Thanks for your advice.
Right now I’m thinking I’ll need to add a bunch of web sites as exceptions in Firefox settings so at least their most frequently used web sites are easier to log into.
I’d go for allow cookies to be stored for the sites they use or allow all.
Yeah, I’ve decided to just allow cookies to persist without having to manage some list of exceptions. Thanks.
Why not use Privacy Badger to prevent usage of tracking cookies?
I hadn’t considered Privacy Badger. I’ll look into that. Thanks for the idea.
