-
Notifications
You must be signed in to change notification settings - Fork 20
Facebook0 Why
You will know that I've tried to blocked those informal Facebook servers that contains z-, probably after post political ads data sell cause era till present and still ongoing and want to know why?
Since that incident, it will also more intent of private data consumption that leads to more incidents and also impact to privacy of anybody who still use its platform!
Yes, leakage of over 550 millions of phone numbers is the biggest fail of them!
And I've realised it without any surprises that how they can know, obtain and determine your phone numbers and linking with your activities on its platform, even though you didn't submit to them!
The connections between You and Facebook itself will not to be the same when you're using over mobile data, also you're less noticeable about different between using Facebook between static networks (such as home, workplace or some public places) and mobile data because most of Facebook users are use with their bloated(?) official apps!
The only thing you may noticeable is the purple bar above of app screen that said you're using data plan or their Free Basics plan, sometime you cannot view stories or make a network calling attempt because the forceful popup that zuckest to buy internet packages that offered by Facebook and mobile carrier that you're using...
But not for me or anybody who mainly not use its official apps (or just was but not anymore), the problem is Facebook wants to redirect you away to expose more data from WAP header by redirecting to h.facebook.com without secure connections, then sent you away to neither m.facebook.com or mobile.facebook.com, I prefer to use mbasic.facebook.com for very lightweight using, but those shady redirects over mobile data is likely they shut the door to let users use basic phone site version for modern mobile browsers, to falsely claim that it uses more data unless you've accept its special plan that you can use Facebook for free, include MESSenger, but you can sent, recieve and post only text, not images and videos, also you can use non-text data up to 20MB per day for any sites that avaliable in Free Basics (site lists are based on your country), moreover, they can gain additional informations of you (of course, your phone numbers that ship with MSISDN header by insecure redirection of h.facebook.com is the first one they will got) for more accurate of throwing ads that relative you more!
I know lately that they also have
d.facebook.comthat it's an alternative way of access basic site version likembasic.facebook.com, however, the CNAME endpoint still point toz-m-c10r.facebook.com, so, I'm still not recommend you to use it!
That's right, it's the problem of WAP, regardless of xG(eneration), sadly, not just Facebook, but any sites and servers can know you easily if they want to..., just phone numbers of you is enough to their for getting benefits from you!
| Domains / Conditions | Desktop User Agent | Mobile User Agent | Carrier Header |
|---|---|---|---|
Any mobile sites > Insecure h redirect for retrieving HTTP header
|
:?: | :?: | ⭕ |
Any mobile sites > mobile.facebook.com
|
:?: | ⭕ | ⭕ |
All of AJAX requests over touch site > mobile.facebook.com
|
:?: | :?: | ⭕ |
Desktop WWW > web.facebook.com
|
❌ | ❌ | ⭕ |
Even AJAX requests are get redirected to mobile.facebook.com instead of staying in the same subdomain?
That's due to matched conditions, yes, Facebook known the mobile carrier even you've blocked any zero related subdomains, that's mean all of connections to Facebook subdomains over mobile data are able to trackback and find which carrier name that you're using, plus they can get mobile numbers of you, even you didn't actually submit phone numbers to them, so using Facebook over mobile data is't good anymore!
But I hope the detection is work only when mobile carrier is eligible to use Flex mode, by other means, all of phone numbers in the same mobile carrier that you're using is possibly tracked by Facebook already!
Filter lists details
Other notes
- Advance setup guide for uBlock Origin
- Google Chrome Problematics
- URL lists of AdGuard uBO compatible
Selfie compare
Deprecated Notes