I’ve noticed that dark reader on occasion phones home to darkreader.org, also with a increasing amount of sponsored links on their page. So what does everyone think, are they safe right now or should they not be trusted?
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
[Matrix/Element]Dead
much thanks to @gary_host_laptop for the logo design :)
I like how everyone is just going fucking nuts in this thread; combing over the code, contacting the maintainer, running a Wireshark trace on it. Good work everyone!
Op here, from what I have been seeing from everyone there are suspicious elements to darkreader, I’ll keep it for right now though I may eventually switch to something else or use TamperMonkey or Stylus. Thanks everyone for all your knowledge and help.
removed by mod
Just ran a Wireshark on it for 12 hours. The only thing it ever does is a frequent ping to their home site, but includes no useful data other than an IP address if you’re not on VPN. I wouldn’t worry about it personally. If it’s a big deal, DNS block darkreader.org or block pings to it through your firewall… Chances are it’s just to download the latest css rules when they have them or something.
Since I am not in anyway inclined to go read their code, I probably will just trust FF’s “recommended” flag until there is an obvious problem. Of course, when it is like that, then it’s too late. I tried the “Dark theme” on FF for a little bit, switch back to using Dark Reader in no time.
The coder of Hover Zoom+ publishes all the offers he gets to sell his users data. Here’s an offer that mentions their partnership with Dark Reader:
https://github.com/extesy/hoverzoom/discussions/670
Based on this it seems like Dark Reader has sold out to some type of partnership of some kind. If they did agree to start selling users data without informing their users would they even publish this code on their github? They could easily publish code that didn’t include the code in the extension to track their users.
Im going to try emailing them and I think I’ll be looking for an alternative
Edit: I went to their website to find an email to contact them and wow. I know they want people to download their app but this is excessive I cant dismiss this giant button to download the app and when I accidentally clicked it, it became wayy bigger and doesn’t hide
Edit 2: they replied
Follow up email:
I then asked mentioned your concern about the extension periodically phoning home and they replied:
Seems alright imo
Edit 3: I’m actually confused by the email because it states their only partnered with Honey and Duckduckgo but they also have Adblockplus, icon8, Vpnwelt, and instinctools in their sponsored section?
Edit 4: I asked why there were more links in the sponsored section than Honey and Duckduckgo and they replied
Seems a little odd but overall understandable.
I think what they replied in your 4th edit is a bit more than odd. Are they doing free advertisement for those others?
No, the others are people who support their OpenCollective. They put the links there basically to say “these people support me, you can too”
Thank you for the effort researching all of this!
A valid question that got me thinking. It’s probably relatively straight forward to use something like TamperMonkey instead especially if you only care about a few sites being in dark mode. Might be worth looking into as an alternative.
I remove it time ago since I noticed slowing-down on my Firefox.
The recommended action when your CPU can’t handle it is to switch the mode to Filter or Filter+ instead of Dynamic. It’s not as good looking but it does darken the website at least.
Personally I don’t like this kind of extensions since they affect your browser’s fingerprint. But yeah, it looks bad.
maybe you’re up to something, look at my comment in this post
Good find
If you don’t know how to read code, then you pretty much have to trust them, and all other open-source software out there. The good thing with FOSS is that there’s probably someone who cares about it enough to read it and audit it, although there can also be a chance that no knowledgeable person cares about the code so no one ends up actually knowing what it’s doing.
I don’t know how to read code, so I pretty much have to trust all of the FOSS that I use. Although open-source is usually more trustworthy than proprietary counterparts (read: PRISM)
FOSS is only reliable if it is maintained and has an active community. With FOSS that hasn’t had updates in years, as sometimes found on GitHub, Gitlab and others, you have to take it with a grain of salt. We must not forget that being open source, it is also easy for malicious actors to discover security holes or inject some malware, which in a software that lacks supervision or is abandoned is not discovered. Although it is true that FOSS is usually quite secure, it is not carved in stone and you always have to be careful, as with any other software. Security and privacy always depends on the dev or the company, it’s irrelevant if it is FOSS or not. The APIs to track userdata and log its activity from Google, Amazon, Fakebook and others, are all FOSS.
Normally it isn’t a problem if an app phones home to its homepage, eg, looking for updates. I think that DarkReader is trustworth. But it’s anyway good to use the less extensions possible, because they always add a privacy flaw to the browser as any third party app. In Vivaldi instead of the Dark Reader i use the own Dark Mode in flags, it has also an ivert filter, among others, in the Page Actions menu.
Chromium has a dark mode flag, Firefox to my knowledge doesn’t.
No, FF don’t have, it need an extension, but as i said, Dark Reader is trustworth to use.
I cant getting dark reader tobplay well on Mull. Breaks page loading randomly
Well, depending on the system, there may always be incompatibilities. Try with one of the other FOSS alternatives
https://alternativeto.net/software/dark-reader/?feature=night-mode&license=opensource
Or if you know CSS, you can style the webpages to your like with Stylus (FOSS) (also permit to import pre made styles from other authors of the community)
https://add0n.com/stylus.html
Very cool. I am familiar with CSS so ill try that as well.
They better be trustworthy, otherwise my eyes will be very unhappy.
https://github.com/darkreader/darkreader offer to review the source code.