Basically What the title says - Is Firefox “Total Cookie Protection” same as Sandboxing individual tabs, e.g. can I do two different logins to the same site in two tabs? Does it work the same way as Multi Account Containers? Thanks in advance!

Edit: updated the post title.

  • Zeppo@sh.itjust.works
    link
    fedilink
    arrow-up
    10
    ·
    1 year ago

    A sandbox is an application-level security feature meant to prevent exploits and data leakage. It’s about preventing your browser and OS from getting hacked.

    The cookie thing is a restriction about cross-site tracking. Normally, cookies are restricted by being read by the domain that set them. However, this was abused by marketing tech, where they would embed code from Facebook or whatever on different sites, and then read them on any site that had that code. The Total Cookie Protection makes it so when a third party sets a cookie on a site, it can still only be read from the main domain of the page it was set on, preventing cross-site tracking.

    • DeadNinja@lemmy.worldOP
      link
      fedilink
      arrow-up
      1
      ·
      1 year ago

      Thanks ! I realized that the post title doesn’t reflect what I actually wanted to ask (stupid of me) - so I will edit the question. But I still appreciate your write up. It is very helpful. Thanks again !

      • Zeppo@sh.itjust.works
        link
        fedilink
        arrow-up
        2
        ·
        1 year ago

        Oh, okay! Unfortunately I don’t know about those features yet. I see Multi Account Containers is a plug-in by Mozilla, but I wasn’t able to find anything about per-tab sandboxing.

  • Löhwe@discuss.tchncs.de
    link
    fedilink
    arrow-up
    1
    ·
    1 year ago

    No, it’s just like … deleting cookies after every interaction?

    If a login was simply cookie based (which it is usually not) you would not be able to login at all, if another mechanism is used like e.g. storing user / password in in a backend database, it will have no effect at all.

    Cookie protection is more aimed at cookie- based tracking, which works on most websites even without any login.

    • federalreverse-old@feddit.de
      link
      fedilink
      arrow-up
      2
      ·
      1 year ago

      This is not correct. TCP is not a cookie-deletion technique. It keeps all the cookies, it just separates third-party cookies by first-party context.

      If you want cookies to be deleted upon closing tabs, try the (excellent) Cookie Auto Delete addon. Be aware that you need to set up exceptions if you don’t want to be logged out of certain sites all the time.