LibRedirect: Redirect YouTube, Twitter, Instagram to privacy friendly services (opens in new tab)

geoffeg3y ago

I've considered hosting my own Nitter and Bibliogram instances but I have to wonder if that reduces their privacy veil a bit. Wouldn't the requests from those instances be coming from a single IP, thereby potentially allowing their respective services to still track you? (Sure, you're avoiding the analytics from those service's web front-ends or apps but that can probably mostly be achieved by disabling JS.) I've considered adding a VPN or TOR gateway between the nitter and bibliogram instances I host to make them harder to track.

midasz3y ago

For twitter to me, it's not even about privacy - the regular frontend without being logged in is unusable. My instances are hosted publicly but I don't advertise them. I guess if people fancy it they are free to check it out, but would prefer it not to end up on any lists: https://midas.rocks/

perlgod3y ago

I agree. If you're the only user of your instance, they can easily track you server-side by your IP address. You could mitigate this by routing your egress traffic (either from the individual device or network-wide, from your router) through a VPN.

sneed-oil3y ago

Iceraven supports extensions

In addition to iceraven (mentioned in another reply) there's also Kiwi browser, a chromium based mobile browser with extensions support.

Also, there's a web extension called Redirector that allows you to do these redirects in a much more generic way.

jonas-w3y ago

With firefox nightly you can install any extension you want with addon collections.

triyambakam3y ago

How do you host them?

perlgod3y ago

I host everything from a server in my basement. Each local application gets a dedicated Rocky Linux VM on a proxmox hypervisor, with the VM/DNS/app configuration managed though a custom ansible framework that I've developed for my "homelab" over the years. Don't currently mess with containers.

My mobile devices have an always-on wireguard VPN back to my house so I can access everything while out and about.

encryptluks23y ago

Are you doing this behind a VPN?

cutierust3y ago

It is absolutely not hilarious. It's a one time work. And worth it to use unatrix

1) sign in to amo, make your list.

2) touch somewhere 7 times front

3) enter your amo I'd

It's gg from there

thinkingemote3y ago

Could you re-post your comment to show how it is easy? I searched for "unatrix" and "amo" and "list" and got 0 hits that would make it easy, or indeed make it hard as none (on the front page which is all I looked at) refer to firefox and/or android. To me, with no other information, this implies that it not actually easy for normal users and indeed it might therefore be hilariously hard. For example, should I search for these on github?

4 more replies

phpdave113y ago· 5 in thread

I am using an alternative which doesn't require any additional browser extensions, but it does require that each client installs a custom root certificate.

I have a split-DNS setup where I override the DNS entries for certain sites like reddit, twitter, and youtube so that they point to a local server. The local server returns privacy-friendly versions of those sites (e.g. spikecodes/libreddit).

I use the root certificate to sign SSL certificates for those domains which will be trusted by each client on the network as long as they've installed the custom root certificate.

That way, when I visit a reddit link from a google search, it automatically returns the privacy friendly version of the site, as long as the root certificate is installed.

This is especially nice using when using iDevices, because those don't support native browser extensions.

ignoramous3y ago

> I have a split-DNS setup where I override the DNS entries for certain sites like reddit, twitter, and youtube so that they point to a local server.

Neat setup but exercise caution with the root-cert (I guess cert pinning isn't a thing on Browsers, yet?).

> I am using an alternative which doesn't require any additional browser extensions... This is especially nice using when using iDevices, because those don't support native browser extensions.

I use ghostarchive.org to view YouTube videos (that fit its limits), nitter.net for twitter threads, and archive.is for reddit threads.

mike_d3y ago

> I guess cert pinning isn't a thing on Browsers, yet?

Locally installed root certificates override HSTS. Some regulated industries like banking are legally obligated to unwrap all TLS traffic, so locally installed roots allow for that.

programmarchy3y ago

This is a very interesting approach. I've been wanting a way to filter YouTube videos on my Apple TV so that only certain channels are whitelisted (my kids like to yell "butt" and "poop" at Siri which is... problematic). Seems like a custom root certificate would make this possible.

Starmina3y ago

iOS does support browser extensions since iOS 15

Tijdreiziger3y ago

Only on Safari.

https://codeberg.org/orenom/wikiless#why-i-should-use-wikile...

triyambakam3y ago· 4 in thread

I'm naive - what is not privacy respecting about using Wikipedia?

ajvs3y ago

I remember reading a while back about how some intelligence agency uses the browsing history of individual users to correlate their interests and build a profile on them. Either way, it's best to not centralise this data (or make yourself hard to fingerprint).

jonas-w3y ago

Have a look at the git repo.

howenterprisey3y ago

Basically nothing from the Wikipedia end. They're very particular about privacy. Governments are another matter.

charcircuit3y ago

It's about being too mainstream, not about services' privacy policies.

daptaq3y ago· 3 in thread

I've been using this for a while, and it works well but it also often redirects me to broken instances, which is not inherently that horrible (most of the time these are just hosted by people in their spare time with spare funds), but in that case I'd like to see automatic redirection and some memory that this host wasn't accessible, so the plugin should try to avoid it in the near future.

Liquix3y ago

This is the aim of the farside [0] project. For example instead of juggling a list of up/down invidious mirrors, just plug in https://farside.link/invidious and it will automatically redirect to a working instance.

[0] https://cadence.moe/blog/2022-09-01-discontinuing-bibliogram

daptaq3y ago

Thanks for the tip, now I can use redirector and link to this service!

pessimizer3y ago

Right now it seems the only solution for broken instances is to open settings and remove the instance manually. Interestingly, there's a speed test for instances in the settings, but it just tests them one after another, flashes a number, then moves to the next in a fairly useless fashion. I'm assuming this half-implemented feature is actually just a first step towards automating the thing a bit.

Entinel3y ago· 3 in thread

Didn't the devs behind bibliogram say they were done because of how aggressively Instagram tries to block these alternatives? Maybe I'm misremembering that

shbooms3y ago

You are not misrembering. They announced it at the beginning of this month [0][1] and have officially shut down all of their hosted instances as of about a week ago [2]

[1] https://news.ycombinator.com/item?id=32683722

[2] https://git.sr.ht/~cadence/bibliogram-docs/tree/master/docs/...

boomboomsubban3y ago

Correct, but it still seems to be functioning somewhat. https://bibliogram.art/

Plus,this project's last release is from before that announcement.

Entinel3y ago

When this project's last release is doesn't matter if they are forwarding your URL to a project where all the instances are shut down.

rnhmjoj3y ago· 3 in thread

I must do my usual shilling for privoxy here. You can implement the better part of this extension with a few privoxy actions:

  # redirect twitter to nitter
  {+redirect{s@https?://(mobile.)?twitter.com@https://nitter.eu@}}
  twitter.com
  mobile.twitter.com

  # redirect reddit to teddit
  {+redirect{s@https?://(www|old).reddit.com@https://teddit.net@}}
  www.reddit.com
  old.reddit.com

  # etc.

EnigmaCurry3y ago

I tried this, but it only works for HTTP but not for HTTPS. I would need to install some sort of root certificate on my client, and privoxy would need to unwrap and rewrap the TLS with the new certificate, right?

SahAssar3y ago

Do you consider the potential security risks from such a setup? Like if you access your bank or email over privoxy do you think about the risks of adding such a layer?

rnhmjoj3y ago

I don't see any risks particular to privoxy: it's a piece of software that has bugs like any other, browsers and extensions included.

weberer3y ago· 2 in thread

This is invaluable whenever someone links to a Twitter thread here and I don't want to spend the effort dodging sign-up modals and piecing together 30 fragments of what would just be a normal paragraph on any other site.

jay3ss3y ago

If you have an Android device, Fritter is a pretty good Twitter client. You can read threads and follow accounts without having an account. It's a little buggy sometimes, but overall it's pretty good.

bozhark3y ago

Your comment made me click the link, exactly what I’ve been looking for

Liquix3y ago· 2 in thread

Users of Privacy Redirect and LibRedirect may find it worthwhile to check out farside [0]. The long lists of mirrors can be replaced with singular farside links (e.g. https://farside.link/libreddit) which will always redirect to working instances.

mhio3y ago

I find it mildly amusing that to help redirect away from centralised services, there's an uber centralised service to help.

dvzk3y ago

Not just that, the suggested advice to replace all instance URLs with farside.link defeats the extension’s secondary privacy feature by sending all YT/Twitter/IG URL requests to Farside’s servers.

0: https://github.com/einaregilsson/Redirector

monopoliessuck3y ago· 2 in thread

I've been using this[0] which works with regex patterns. It doesn't work on Firefox mobile, but then neither does OP's extension.

snthd3y ago

>It doesn't work on Firefox mobile

HTTPS Everywhere works.

https://old.reddit.com/r/privacy/comments/hpy82f/redirect_tw...

papa-whisky3y ago

I have also been using this extension (redirector) for a long while, for the same purpose. One thing I like about OPs extension is that it can randomise which instance of teddit/nitter/etc you get redirected to. And it's also surfaced a lot of alternative front-ends I didn't even know existed! I'll definitely be trying it out.

ghgr3y ago· 2 in thread

Although the extension by default requires full access to all the websites you visit, in Chromium you can limit its permissions to a list of websites (for example twitter.com, reddit.com, etc.). Does anybody know if such a thing is also possible in e.g. Firefox?

s_ting7653y ago

No it's not. And it's one of the reasons I will be weeping when Chromium shits the bed with this MV3 migration.

Jiejeing3y ago

It can be done, but it must be set by the extension author rather than the users (e.g. bypass paywalls clean requests permissions only for the websites it handles).

NackerHughes3y ago· 2 in thread

How does this compare against the similar Privacy Redirect? https://github.com/SimonBrazell/privacy-redirect

kls0eOP3y ago

there is a libreddit thread about it: https://libreddit.foss.wtf/r/selfhosted/comments/xdlpj1/libr... LibRedirect is essentially a fork of the aforementioned extension that is actively being maintained and developed

worg3y ago

it has more services, ProxyTok for tiktok and Scribe.rip for Medium instances at least in my case are useful

edit: formatting

jaimehrubiks3y ago· 1 in thread

I've been using this for some time. I noticed that it works with Troddit, my favorite Reddit web client https://www.troddit.com/, you just need to go to custom and add it there.

I use it mainly on Android with kiwi browser so I don't need to download apps

mimimi313y ago

For Reddit I've just been relying on uBlock Origin to block trackers, with some custom rules to get rid of all the superfluous sidebars, header bars, banners, avatars, achievement icons etc. The cleaned up interface actually looks very similar to Troddit's "Classic Rows" style.

atestu3y ago· 1 in thread

Why does it need to access my data for all websites? Why not limit it to the websites it redirects?

ajvs3y ago

Because you can add arbitrary instances so the extension needs access to anything.

honkler3y ago· 1 in thread

I wish it could also redirect paywalled articles

hjek3y ago

Well, there are other add-ons for that.

https://addons.mozilla.org/en-US/firefox/addon/bypass-paywal...

therealmarv3y ago

Similar app for Android phones:

https://f-droid.org/packages/app.fedilab.nitterizeme/

https://f-droid.org/packages/app.fedilab.nitterizemelite/ (only for sharing links)

anthk3y ago

Also: https://simple-web.org

Usable even under Lynx/Links/Netsurf/Dillo.

odysseus3y ago

Too bad it's not available for Safari yet, even though Safari supports porting in of Chrome extensions.

There's a workaround though: Use Jeff Johnson's Stop the Madness Safari extension, and hit the redirects tab - screenshot: https://underpassapp.com/StopTheMadness/support-safari.html#...

(not affiliated with Jeff, just a happy customer of many of his apps)

melony3y ago

Wasn't Bibliogram EOLed? Is there an alternative to it?

TakeBlaster163y ago

I like the name! Could be stylized either LibRedirect or LibreDirect.

wanderingmind3y ago

I'm sorry if I'm missing something. If its just a simple redirect, we can do this using a HTTPS Everywhere rule, which is available in Firefox in android as well. I use this to redirect reddit to old.reddit

[0] https://www.ghacks.net/2020/10/01/you-can-now-install-any-ad...

There's also Redirector, a general purpose web extension that lets you redirect any URL with wildcards or regex, and ignore patterns as well. You can use it to do this, or anything else you want. Works on mobile too with Kiwi (a chromium fork with extensions support) and Iceraven (Firefox on mobile limits extensions you can install).

ztcfegzgf3y ago

please note this needs the can-access-everything-you-do permission ( https://support.mozilla.org/en-US/kb/permission-request-mess... ).

so please make sure you understand the tradeoff, the risks involved.

by not having to trust youtube/twitter/instagram to not store what you do on their website, you instead have to trust a random browser extension to not store everything you do in your browser on every website.

(also, please do not use the it-is-open-source-you-can-read-the-source-code argument. no normal user is going to read and understand the whole source code, and repeat it for every update. at the end, you have to decide to trust it, or not)

munro3y ago

Omg this is a wealth of alternative platforms, I didn't even know https://codeberg.org but it looks great

ta9883y ago

On Android I use "untrack me" (available in f-droid). Extremely useful.

j / k navigate · click thread line to collapse

80 comments

69 comments · 24 top-level

perlgod3y ago· 14 in thread

Since Android doesn't support browser extensions, I accomplish the same thing using the Bromite browser along with a handful of UserScripts to redirect youtube/twitter/etc to my private instances.

In addition, GrapheneOS makes some pretty compelling arguments [1] against FF-based browsers.

Lest anyone accuse me of being a Firefox hater, I do use it on the desktop.

[1] https://grapheneos.org/usage#web-browsing

1vuio0pswjnm73y ago

"Edit: Yes, I know Firefox for Android supports extensions, but the work required [0] to actually install any extension other than the handful "blessed" by Mozilla borders on hilarity."

Yeah, the number of extensions ("add-ons") available for Fennec is a joke. Someone on HN suggested that Firefox Nightly for Android has no such limitation.

monopoliessuck3y ago

Firefox supports (many) browser extensions.

ekianjo3y ago

On Android, no. Very few.

geoffeg3y ago

midasz3y ago

perlgod3y ago

sneed-oil3y ago

Iceraven supports extensions

In addition to iceraven (mentioned in another reply) there's also Kiwi browser, a chromium based mobile browser with extensions support.

Also, there's a web extension called Redirector that allows you to do these redirects in a much more generic way.

jonas-w3y ago

With firefox nightly you can install any extension you want with addon collections.

triyambakam3y ago

How do you host them?

perlgod3y ago

My mobile devices have an always-on wireguard VPN back to my house so I can access everything while out and about.

encryptluks23y ago

Are you doing this behind a VPN?

cutierust3y ago

It is absolutely not hilarious. It's a one time work. And worth it to use unatrix

1) sign in to amo, make your list.

2) touch somewhere 7 times front

3) enter your amo I'd

It's gg from there

thinkingemote3y ago

4 more replies

phpdave113y ago· 5 in thread

I am using an alternative which doesn't require any additional browser extensions, but it does require that each client installs a custom root certificate.

I use the root certificate to sign SSL certificates for those domains which will be trusted by each client on the network as long as they've installed the custom root certificate.

That way, when I visit a reddit link from a google search, it automatically returns the privacy friendly version of the site, as long as the root certificate is installed.

This is especially nice using when using iDevices, because those don't support native browser extensions.

ignoramous3y ago

> I have a split-DNS setup where I override the DNS entries for certain sites like reddit, twitter, and youtube so that they point to a local server.

Neat setup but exercise caution with the root-cert (I guess cert pinning isn't a thing on Browsers, yet?).

> I am using an alternative which doesn't require any additional browser extensions... This is especially nice using when using iDevices, because those don't support native browser extensions.

I use ghostarchive.org to view YouTube videos (that fit its limits), nitter.net for twitter threads, and archive.is for reddit threads.

mike_d3y ago

> I guess cert pinning isn't a thing on Browsers, yet?

Locally installed root certificates override HSTS. Some regulated industries like banking are legally obligated to unwrap all TLS traffic, so locally installed roots allow for that.

programmarchy3y ago

Starmina3y ago

iOS does support browser extensions since iOS 15

Tijdreiziger3y ago

Only on Safari.

https://codeberg.org/orenom/wikiless#why-i-should-use-wikile...

triyambakam3y ago· 4 in thread

I'm naive - what is not privacy respecting about using Wikipedia?

ajvs3y ago

jonas-w3y ago

Have a look at the git repo.

howenterprisey3y ago

Basically nothing from the Wikipedia end. They're very particular about privacy. Governments are another matter.

charcircuit3y ago

It's about being too mainstream, not about services' privacy policies.

daptaq3y ago· 3 in thread

Liquix3y ago

[0] https://cadence.moe/blog/2022-09-01-discontinuing-bibliogram

daptaq3y ago

Thanks for the tip, now I can use redirector and link to this service!

pessimizer3y ago

Entinel3y ago· 3 in thread

Didn't the devs behind bibliogram say they were done because of how aggressively Instagram tries to block these alternatives? Maybe I'm misremembering that

shbooms3y ago

You are not misrembering. They announced it at the beginning of this month [0][1] and have officially shut down all of their hosted instances as of about a week ago [2]

[1] https://news.ycombinator.com/item?id=32683722

[2] https://git.sr.ht/~cadence/bibliogram-docs/tree/master/docs/...

boomboomsubban3y ago

Correct, but it still seems to be functioning somewhat. https://bibliogram.art/

Plus,this project's last release is from before that announcement.

Entinel3y ago

When this project's last release is doesn't matter if they are forwarding your URL to a project where all the instances are shut down.

rnhmjoj3y ago· 3 in thread

I must do my usual shilling for privoxy here. You can implement the better part of this extension with a few privoxy actions:

  # redirect twitter to nitter
  {+redirect{s@https?://(mobile.)?twitter.com@https://nitter.eu@}}
  twitter.com
  mobile.twitter.com

  # redirect reddit to teddit
  {+redirect{s@https?://(www|old).reddit.com@https://teddit.net@}}
  www.reddit.com
  old.reddit.com

  # etc.

EnigmaCurry3y ago

SahAssar3y ago

Do you consider the potential security risks from such a setup? Like if you access your bank or email over privoxy do you think about the risks of adding such a layer?

rnhmjoj3y ago

I don't see any risks particular to privoxy: it's a piece of software that has bugs like any other, browsers and extensions included.

weberer3y ago· 2 in thread

jay3ss3y ago

bozhark3y ago

Your comment made me click the link, exactly what I’ve been looking for

Liquix3y ago· 2 in thread

mhio3y ago

I find it mildly amusing that to help redirect away from centralised services, there's an uber centralised service to help.

dvzk3y ago

0: https://github.com/einaregilsson/Redirector

monopoliessuck3y ago· 2 in thread

I've been using this[0] which works with regex patterns. It doesn't work on Firefox mobile, but then neither does OP's extension.

snthd3y ago

>It doesn't work on Firefox mobile

HTTPS Everywhere works.

https://old.reddit.com/r/privacy/comments/hpy82f/redirect_tw...

papa-whisky3y ago

ghgr3y ago· 2 in thread

s_ting7653y ago

No it's not. And it's one of the reasons I will be weeping when Chromium shits the bed with this MV3 migration.

Jiejeing3y ago

It can be done, but it must be set by the extension author rather than the users (e.g. bypass paywalls clean requests permissions only for the websites it handles).

NackerHughes3y ago· 2 in thread

How does this compare against the similar Privacy Redirect? https://github.com/SimonBrazell/privacy-redirect

kls0eOP3y ago

worg3y ago

it has more services, ProxyTok for tiktok and Scribe.rip for Medium instances at least in my case are useful

edit: formatting

jaimehrubiks3y ago· 1 in thread

I've been using this for some time. I noticed that it works with Troddit, my favorite Reddit web client https://www.troddit.com/, you just need to go to custom and add it there.

I use it mainly on Android with kiwi browser so I don't need to download apps

mimimi313y ago

atestu3y ago· 1 in thread

Why does it need to access my data for all websites? Why not limit it to the websites it redirects?

ajvs3y ago

Because you can add arbitrary instances so the extension needs access to anything.

honkler3y ago· 1 in thread

I wish it could also redirect paywalled articles

hjek3y ago

Well, there are other add-ons for that.

https://addons.mozilla.org/en-US/firefox/addon/bypass-paywal...

therealmarv3y ago

Similar app for Android phones:

https://f-droid.org/packages/app.fedilab.nitterizeme/

https://f-droid.org/packages/app.fedilab.nitterizemelite/ (only for sharing links)

anthk3y ago

Also: https://simple-web.org

Usable even under Lynx/Links/Netsurf/Dillo.

odysseus3y ago

Too bad it's not available for Safari yet, even though Safari supports porting in of Chrome extensions.

There's a workaround though: Use Jeff Johnson's Stop the Madness Safari extension, and hit the redirects tab - screenshot: https://underpassapp.com/StopTheMadness/support-safari.html#...

(not affiliated with Jeff, just a happy customer of many of his apps)

melony3y ago

Wasn't Bibliogram EOLed? Is there an alternative to it?

TakeBlaster163y ago

I like the name! Could be stylized either LibRedirect or LibreDirect.

wanderingmind3y ago