I set up Firefox for deleting cookies when the session is closed, as recommended by privacyguides and arkenfox. I add sites for which I want to keep the login to the exceptions. I noticed that, by doing so, I also allow the site for using cross-site cookies (see screenshot: https://imgur.com/a/mkQptyc). However, I would like to keep blocking cross-site cookies, I just need the site’s cookies to keep the login. Am I doing something wrong? I’m afraid that I’m bypassing total cookie protection.
EDIT: apparently it’s a known issue (https://github.com/arkenfox/user.js/issues/1448 the “needs jesus” label is not reassuring) causing sanitizing exceptions to also allow third parties.
I saw that notice yesterday and just clicked on the ‘X’, not sure if that was enough, I’ll check it today.
I clicked the X on the cross-site cookies, and they do not appear anymore after restarting the browser. That’s annoying though, ans I’m still wondering if those cookies are actually blocked because of total cookie protection.
EDIT: oh well, I think I found the reason: https://support.mozilla.org/en-US/kb/third-party-trackers?as=u&utm_source=inproduct#w_managing-cross-site-cookies Imho this should be disabled in strict mode. EDIT2: nvm, I found a relevant issue in arkenfox’s github and updated the post.