I have been trying to find a balance between: the reality that at some level my information must be transmitted online in order to participate in modern life, and that information not going further or to anyone more than it needs to. Some of what I have done are: setting up a PiHole, moved almost all accounts over to Hide My Email, started putting in as much fake data as I can get away with on forms (surprisingly, a lot!), spend a lot of time connected to Private Internet Access VPN, and lastly, switching from Chrome to Firefox.

Outstanding problems:

• My main source of entertainment is YouTube (with premium).
• Google maps is a near daily need.
• Reliant on a 13 year old gmail account and a separate email using Google workspace.
• There is one stream service that will not work unless I allow list a very broad analytics domain.

For someone that is trying to find a balance, I am not yet sure how I will tackle these. I am yet to figure out whether privacy is something that is all or nothing. Is any effort worth it if you are still going to leak something, somewhere? All it takes is a few pieces of metadata to link a myriad of disparate datasets to you.

So, a technical person who does not need convincing about the importance of privacy is himself trying to find a balance, wondering if it is fully worth it. You can imagine the uphill battle trying to convince those uninterested.

What I liked about the idea of a PiHole and switching to Firefox is that I figured I would not think about them, hoping the benefits would silently tick along in the background. The PiHole lived up to this. A 750,000 strong block list, with an average of 12% of traffic blocked per day, and I never think about it. But sadly Firefox did not. On my M3 MacBook Pro, it takes up a significant amount of RAM, websites would commonly break or exhibit strange behaviour. And lastly, for web development work, I have to keep Chrome around as the development tools are light years ahead. All this to say, it did not fade into the background, it was very much at the forefront.

When evaluating a better privacy option, a part of my assessment is “could I get my Mum to switch to this without countless IT Support calls?”.

That is where Brave comes in. Brave is a privacy-first browser that out of the box can block adverts, tracking, nuisance pop ups and much more. After a month of usage I have become bullish on Brave, as it ticks so many of my specific privacy wants. Brave is powered by the underlying, open source, technology that powers Chrome. If you use Chrome you will feel at home with Brave.

The issue however is that I desperately want to evangelise to friends and family, but, I configured it such that if they were to just install Brave and go, it would not be the Brave I am enjoying.

So, here is my living document of all current and future changes to Brave that I make that I can hopefully use to get more people onboard. To avoid redesigns invalidating them, I will describe the changes through text only, no images. Anything omitted implies the default setting is retained.

Get Started

Install the Brave browser and go to brave://settings/getStarted.

• Click Make Brave default browser
• On start-up = Open the New Tab Page
• New tag page shows = Blank page

Appearance

• Show Home button = Off
• Show Brave News button = Off
• Show Brave Rewards button = Off
• Show sidebar button = Off
• Show autocomplete suggestions in address bar = Top sites (Off), Browsing history (On), Bookmarks (On), Leo AI (Off)
• Use wide address bar = On
• Always show full URLs = On
• Always show toolbar in full screen = On

Shields

• Trackers & ads blocking = Aggressive
• Upgrade connections to HTTPS = Strict
• Block scripts = Off
• Block fingerprinting = Strict
• Block cookies = Only cross-site
• Content filters = Enable every single default provided list
• Show number of blocked items = On
• Auto redirect AMP = On
• Auto-redirect tracking URLs = On
• Prevent sides from fingerprinting me based on my language = On

Social media blocking

• Allow use of third-party cookies for legacy Google = Off
• Allow Facebook embeds = Off
• Allow Twitter embeds = Off
• Allow LinkedIn embeds = Off

Privacy and security

• WebRTC IP handling policy = Disable non-proxied UDP
• Allow privacy-preserving product analytics = Off
• Automatically send daily usage ping to Brave = Off
• Automatically send diagnostic reports = Off

Leo

• Show Leo icon in the sidebar = Off
• Show Leo in the context menu on websites = Off

Search engine

• Normal window - search engine = Duck Duck Go or Brave
• Private window - search engine = Duck Duck Go or Brave
• Improve search suggestions = Off
• Web Discovery Project = Off
• Index other search engines = Off

Extensions

• Allow Google login for extensions = Off
• Hangouts = Off
• Media Router = Off
• WebTorrent = Off
• Widevine = Off

Autofill

• Allow auto-fill in private windows = Off

Payment methods

• Save and fill payment methods = Off
• Allow sites to check if you have payment methods saved = Off

Addresses and more

• Save and fill addresses = Off

System

Performance

• Memory saver = On

Flags

Head to brave://flags/.

• #brave-dark-mode-block = Disabled
• #enable-nft-pinning = Disabled
• #brave-wallet-zcash = Disabled
• #brave-wallet-bitcoun = Disabled
• #brave-rewards-gemini = Disabled
• #brave-news-feed-update = Disabled
• #brave-vpn = Disabled

And you’re done. For five minutes of set up, you now have a balance between privacy and convenience in your browsing. One that is performant, highly compatible in the ever growing mono-Chromium ecosystem and has everything you need for web development.

If you wish to go all in, Brave is also available on mobile, and has been an equally great experience (if not more due to the amount of nuisance adverts/popups on mobile). The configuration for that is nearly identical to what is outlined above for desktop, albeit it with less options available.

Miscellaneous

I also have installed uBlock Origin. I honestly am not sure this if is necessary given Brave’s built-in blocker.

We switched on the maximum amount of privacy which can come at the expensive of a select few websites breaking. So far the only issue I have had are some payment providers that trigger two factor authentication (think: using American Express, and SafeKey triggers, requiring a redirect and iFrame embedding). For these situations, I click the Brave icon in the and change “Aggressively block fingerprinting” down to “Block fingerprinting” just for that website. If that does not work, I temporarily take the Shield down completely until I am done.

This is so simple to do however, that it still passes my Mum-tech-support needs. Something went wrong? Click the lion and press this toggle (thanks iOS for teaching that UX pattern).

Excalidraw has a cool pop up when it detects you are using aggressive finger print blocking, as it blocks some of the functionality. This was really thoughtful (and probably reduced GitHub issues)!

Lastly, this is sadly one more inch towards total Chromium domination. Discussing that is a post in and of itself, but is something that is on my mind.