-
Notifications
You must be signed in to change notification settings - Fork 82
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add description in the strict-blocking page #2476
Comments
This comment was marked as abuse.
This comment was marked as abuse.
How it is?
The proposal here is that uBO should add an explanation universal to all the strict-blocking pages regardless of the list or rule causing it. |
How can there be a universal explanation when uBO has no way of determining for certain why a page is strict blocked? For example: It could have been added for a variety of reasons, and I personally have hundreds of custom strict block filters that uBO has no way of knowing why I added them or what category they are (e.g. tracker, malicious site, advertiser, annoyance). So an "explanation" would be nothing more than a guess and most likely incorrect - which could be actually be more confusing to the user than what is shown with the current message on the strict block page. |
We don't need to care about non-default settings, those who configure settings should have better understanding. For default lists, only covering bad sites and tracker is 99% accurate. The more context of this is that it appears user tend to not be aware of the possibility of click-through tracking when confronted with the page. |
EasyList is a default list. It currently has 19857 entries that are strict blocked and are not categorized as trackers or bad sites. Peter Lowe's list is also a default list. It currently has 2614 entries (71% out of 3667) that are strict blocked and are not categorized as trackers. |
I mean those actually causing strict-blocking in real world are mostly either one. The example here |
Anyway my point is similar to those issues @garry-ut99 linked, the current page is way too unfrinedly and is actually confusing user, I'm not talking about a theoretical scenario. |
You can write database to dynamic classify as |
The example you provide is a Tweet of a user who observes that uBO blocked the navigation. He isn't saying he is confused. uBO already clearly states on that page that the page was blocked as a result of a filter and offers course of action to the user. What's the point of telling them there is no worry and just click proceed when the whole goal is to make them aware and let them decide for themselves what is best? |
Apparently so, but when my mother browses through the shops she is constantly annoyed at the strict blockers and I usually have to unblock or explain to her that she is opening a fake online shop. |
I was forced to link that tweet as another one I tried to example was already deleted by the author, but the context of the tweet is he's applying an online seminer and there's no other choice than proceeding. If I had a fault, that would be not explained it's possible to use the loope icon to show a link without tracking. |
A question is how many ppl understand, or even can read (as written in English) Online Malicious URL Blocklist. And why it's downplaying if explained with "most likely bad sites or tracker"? |
Well maybe a more descriptive message depending on the group in which a list is categorized would be the way, but it would never be as specific as making the assumption it's merely a cookie tracking instance. |
That was kinda declinded as @garry-ut99 linked, but happy if you reconsider. |
By the way, when I proceeded with your example link, |
The link 99% leads to bad sites. So I'm saying in "A or B" manner. I commented to Brave that they should include the notion of bad sites. |
Perhaps scam blockers are added too quickly based on URL parameters. |
Yes, and today I read again the issue and I think it was reasonable request. This was years ago and I admittedly sometimes go through periods where I feel the burden of this project more than usual and when this happens I will more eagerly dismiss issues. |
This comment was marked as abuse.
This comment was marked as abuse.
BTW why it's hidden by default? |
This comment was marked as abuse.
This comment was marked as abuse.
Once the idea of trusted list comes true and if once-declined |
To say the least, most user can't think of the possibility of tracking link:
and given most of those are by PL list and it's under Multipurpose, showing catogory won't help much. I wonder if there's a safe way to imply the blocking may be due to tracking link to user (with localizable way). |
We could have a set of build-in reason identifiers re. strict-blocking, which are used in "urlhaus-1": {
"content": "filters",
"group": "malware",
"title": "Online Malicious URL Blocklist",
"strictBlockingReason": "malware",
"contentURL": [
"https://malware-filter.gitlab.io/malware-filter/urlhaus-filter-online.txt",
"assets/thirdparties/urlhaus-filter/urlhaus-filter-online.txt"
],
"cdnURLs": [
"https://curbengh.github.io/malware-filter/urlhaus-filter-online.txt",
"https://malware-filter.gitlab.io/urlhaus-filter/urlhaus-filter-online.txt",
"https://malware-filter.pages.dev/urlhaus-filter-online.txt"
],
"supportURL": "https://gitlab.com/malware-filter/urlhaus-filter#malicious-url-blocklist"
},
"plowe-0": {
"content": "filters",
"group": "multipurpose",
"updateAfter": 13,
"title": "Peter Lowe’s Ad and tracking server list",
"strictBlockingReason": "tracking",
"contentURL": [
"https://pgl.yoyo.org/adservers/serverlist.php?hostformat=hosts&showintro=1&mimetype=plaintext",
"assets/thirdparties/pgl.yoyo.org/as/serverlist.txt",
"assets/thirdparties/pgl.yoyo.org/as/serverlist"
],
"supportURL": "https://pgl.yoyo.org/adservers/"
}
If no |
What about a
This way filterlists other than the ones mentioned can also inform the user about the block reason. For example I block scam and phishing/malware in my list. |
I rather keep it simple if we are going to do something about this, adding per-filter message vastly complicate the filtering engine and completely sabotage all the efficiency work which went into it. |
Mostly duplicate of #1195 |
Maybe there could be a more general message (something similar to This website may attempt to infect your device with malicious software, or steal your personal information or money, although I'm sure someone else can come up with a better message). |
Mostly duplicate of #3449, where I pointed out a concrete scenario. I really think a simple option to assign colors (to the button "proceed") depending on filter (i.e., by filter) and/or blocking reason (i.e., by page) but be of considerable use. In the case of assinging a color to a whole filter, it would still be about probabilities/heuristics. Just because a filter that's mostly about affiliate links might also help block malware, a dedicated malware filter is much more likely to be of concern and should rightfully be elevated optically as a warning/by using a red interface. Cf. Bayes' theorem, alpha/better error. I think this is a serious issue and possibly a likely cause of malware infection despite the use of uBlock. Blue could be asigned to "neural" filters that block both malware and mere annoyances, green to those that block exclusively "benign" stuff (as defined by user; users might decide affiliate links are suffiently benign most of the time that tehy would want the green color for these, even if there's a remaining risk), and red to filters/reasons that are associated with high risk of malware. Like I said I'm not sure if there's a system that will prioritize malign blocking reasons over more benign ones, when both apply. And I would really like to suggest aligning the "Proceed" button in a way that it is in close proximity to the "Found in" section, so users will better see what they are agreeing to when clicking. |
Just how to assign colors so that the computer recognizes it without commenting over the filter (so generate problem for EasyList/EasyPrivacy/Peter Lowe, they project can reject mark stric block filters into categories by comments above). |
Prerequisites
I tried to reproduce the issue when...
Description
I found Brave's strict-blocking page (only on Aggressive mode) has a characteristic that uBO should probably follow.
Although it's not necessarily tracking, they explain what had happened. There are only three patterns to trigger strict-blocking:
Let's ignore the last case and advertiser's sites as are rare. I believe uBO can and should add explanation of what happened, which is most likely to be either malicious site or tracker - then let user to decide which it is. This partly solves #1195 and is much easier to implement. The current blocking page consists of only facts is too unfriendly to average Joe to whom "EasyList" is just mumbo jumbo. After I started Twitter I occasinally see user get confused by the blocking page; e.g.
https://twitter.com/_1__1_/status/1615997416976834565
, and this has long been my concern. This suggestion should be a step ahead for uBO to rally be install-and-forget.A specific URL where the issue occurs.
https://www.profitablegatetocontent.com/e51xmfb9?key=6cf0bf53774e52ec9e3ca94803f48b06
Steps to Reproduce
Expected behavior
Written
Actual behavior
Written
uBO version
1.46.0
Browser name and version
Firefox 109.0.1
Operating System and version
Windows 10
The text was updated successfully, but these errors were encountered: