It seems that you're using an outdated browser. Some things may not work as they should (or don't work at all).
We suggest you upgrade newer and better browser like: Chrome, Firefox, Internet Explorer or Opera

×
Community
General discussionThird party tracking and GOG bad habits(13 posts)(13 posts)
(13 posts)
Pages:
1
This is my favourite topic
Posted August 02, 2021
high rated
1. I've noticed that I can't login and use gog without permission for tracking by third party companies like google, facebook or amazon (twitch)?

Is it still the platform for people who want to be safe and independent of companies bad behavior? DRM is just one example.

Few months ago GOG changed redeem page and blocked it for me this way. Now they have done the same with the login page. I think they've done the same with the payment page.


2. GOG staff silently deleted some topics. They didn't just close them but make them disappear. One of them was about ubi behavior with might & magic X.

Am I really the only one who cares?
Posted August 02, 2021
1. I just logged in blocking every script that has nothing to do with GOG.

2. https://www.gog.com/forum/general/might_magic_x_legacy_was_pulled_from_stream_by_ubisoft

I don't see your problems.
Posted August 02, 2021
I just got a prompt to select which type of cookies I want to allow, and it was possible to uncheck most tracking via Google, Yandex, etc. There were 3 cookies that were uncategorized and couldn't be turned off. There's also a Cookie Declaration link at the bottom of the page, to the left of Imprint, though it doesn't do anything when clicked. Maybe it's a work in progress.
If you use some kind of content blocker to make sure that third-party content doesn't load, then you always run the risk of breaking the site. Scripts often assume that content always loads and when add-ons block it, things stop working. At best that could be considered laziness, but it's usually not done on purpose. I can't tell if that's the case for this site, since I don't allow add-ons on sites where I enter sensitive info.

The redeem page is protected against bots via Google's reCAPTCHA and this is unlikely to change.

I don't know which MMX thread you're talking about. Might & Magic X - Legacy was pulled from Stream by Ubisoft is still here in the general forum.
Posted August 02, 2021
avatar
toma85: 1. I just logged in blocking every script that has nothing to do with GOG.
I think it's not the script thing but something deeper.
avatar
toma85: 2. https://www.gog.com/forum/general/might_magic_x_legacy_was_pulled_from_stream_by_ubisoft
The second one, you are not able to find it now. It was about ubi bad habits not just about steam case.
Posted August 02, 2021
avatar
Ice_Mage: it was possible to uncheck most tracking
Most doesn't mean ALL. I just want to use my gaming library not the half of the web.
avatar
Ice_Mage: If you use some kind of content blocker
That's the case that I'm not using any additional content blocker in browser used to GOG.
avatar
Ice_Mage: The redeem page is protected against bots via Google's reCAPTCHA and this is unlikely to change.
It's not like that. GOG didn't add reCAPTCHA, they changed how it works.
Google didn't do that but GOG.
Other platforms changed something the same way earlier but on GOG redeem page google recaptcha was working perfectly for me until one day 8 months ago.
There is the same issue with login page now. I logged in a week ago without a problem. Today I was not able to do it with the same setting.
Posted August 02, 2021
Even though I am generally permanently logged into GOG, or automatically after my PC has booted and connected to the web, I had to do the Cookie Acceptance thing today. So clearly they've just changed something.
Posted August 02, 2021
Judging by my browser history, this was the now-missing Ubisoft thread: https://www.gog.com/forum/general/fckdrm_ubisoft_drm_makes_imight_and_magic_x_legacyi_unplayable
Posted August 02, 2021
avatar
Ice_Mage: I just got a prompt to select which type of cookies I want to allow, and it was possible to uncheck most tracking via Google, Yandex, etc.
Most but not all. In the "necessary cookies" category, there was at least one Google analytics cookie. Why in the world is that "necessary"?
Posted August 03, 2021
I use Google Analytics Blocker.
Post edited August 03, 2021 by borisburke
Posted August 03, 2021
avatar
toma85: 2. https://www.gog.com/forum/general/might_magic_x_legacy_was_pulled_from_stream_by_ubisoft
Hey thats my post! -- also HELLO i run a Pi-hole and Unbound DNS so I am the authoritative server for all communication to and from my house to the internet AND I'm also a DNS server huzzah!

Galaxy only connects to gog, github and L3. They run github for 3rd party account syncs (steam, epic, etc) they also work with Level3 diagnostics to make there server faster/better and route you to the best server for files and updates.

Here are the prefixes that Galaxy hits: cfg, insights-collector (how you setup/use/interact with galaxy), auth, users, presence, galaxy-log, remote-config, notifications-pusher, raw.githubusercontent.com, galaxy-library, gwent-bi-collector (i play gwent) external-accounts, gamplay, s.ytimg.com (youtube image server for embedded videos) gamesdb, content-systems, notifications, external-users, chat, api, and various CDN's all over the globe they own after the L3 footprint connection to locate your best ones.

Any questions I'll do my best to help :)

edit: if gog.com is not conducive to your threat model shop and browser via galaxy it will reduce your footprint and remove the concerns.. that said you can safely block rollbar and google from gog.com page and it works fine.. do not block akamai or deltacdn as its needed to function and deliver content.
Post edited August 03, 2021 by Starkrun
Posted August 03, 2021
avatar
topolla: snip
Am I really the only one who cares?
Not at all. The NoScript extension is a friend, to let people judge themselves.
The list of "participating" websites when opening gog.com
-gog.com
-gog-statics.com
-googletagmanager.com
-rollbar.com

And the Blacklight Real-Time Privacy Inspector Results courtesy of themarkup.org

-gog.com = 2 Ad trackers // 3 Third-party cookies
-gog-statics.com = This site cannot be reached.
-googletagmanager.com = 0 Ad trackers // 0 Third-party cookies
-rollbar.com = 18 Ad trackers // 28 Third-party cookies // This website could be monitoring your keytrokes and mouse clicks // We found this website capturing user keystrokes // When you visit this site, it tells Facebook.

The urls in case someone want to check closely the Blacklight reports:
https://themarkup.org/blacklight?url=gog.com
https://themarkup.org/blacklight?url=gog-statics.com
https://themarkup.org/blacklight?url=googletagmanager.com
https://themarkup.org/blacklight?url=rollbar.com

The easy part here is to answer who is the offender and how to block it, but not the what & why (maybe the gog.com team could provide an explanation why a 3rd party website sniffs so much...)
People can rinse and repeat the exercise on the payments page... others appear (this is selecting -paypal- as payment method):
-adyen.com = 09 Ad trackers // 11 Third-party cookies // When you visit this site, it tells Facebook // This site allows Google Analytics to follow you across the internet.
-braintreegateway.com = The page timed out while trying to load the URL.

https://themarkup.org/blacklight?url=adyen.com
https://themarkup.org/blacklight?url=braintreegateway.com

In short, people need to take care of their privacy on the internet. And not only here, everywhere... all the time. Or they can opt to close the eyes and pretend nothing happens... the most popular.
Attachments:
01.png (459 Kb)
02.png (65 Kb)
03.png (151 Kb)
04.png (71 Kb)
05.png (66 Kb)
Posted August 04, 2021
How does this compare to steam or epics browsers?

avatar
tag+: In short, people need to take care of their privacy on the internet. And not only here, everywhere... all the time. Or they can opt to close the eyes and pretend nothing happens... the most popular.
The problem is that not caring gets people ahead in the short term while having a negative impact overall.
Post edited August 04, 2021 by JÖCKÖ HÖMÖ
Posted August 05, 2021
avatar
JÖCKÖ HÖMÖ: How does this compare to steam or epics browsers?
Well, believe or not, better:

*Steam:
-store.steampowered.com = 0 Ad trackers // 0 Third-party cookies
https://themarkup.org/blacklight?url=steampowered.com
-google-analytics.com = 02 Ad trackers // 01 Third-party cookies // This site allows Google Analytics to follow you across the internet.
https://themarkup.org/blacklight?url=google-analytics.com
-steamstatic.com = This site cannot be reached.
https://themarkup.org/blacklight?url=steamstatic.com

*Epic
-epicgames.com = 0 Ad trackers // 0 Third-party cookies
https://themarkup.org/blacklight?url=epicgames.com

About their payments pages, I apologize but haven't purchased there...

I insist, the 3rd party website rollbar.com is sniffing too much here and I fear gog.com do not even know it...
Attachments:
steam.png (259 Kb)
epic.png (474 Kb)
Pages:
1
This is my favourite topic
Community
General discussionThird party tracking and GOG bad habits(13 posts)(13 posts)
(13 posts)