• ailiphilia@feddit.it
    link
    fedilink
    English
    arrow-up
    6
    arrow-down
    1
    ·
    2 years ago

    I just stumbled upon that, too, and am wondering how this compares to Librewolf (+VPN) …

    • rhymepurple@lemmy.ml
      link
      fedilink
      English
      arrow-up
      6
      ·
      2 years ago

      I’m wondering the same thing. Aside from encouraging people to use the default settings to make each user’s browser/session harder to properly fingerprint, I’m really curious what privacy benefits this new browser provides compared to alternatives like Librewolf, hardened Firefox, etc.

      • Ephera@lemmy.ml
        link
        fedilink
        English
        arrow-up
        4
        ·
        2 years ago

        From what I’ve heard in the past, Mozilla is doing a good job upstreaming work from the Tor Browser devs and putting it behind an about:config value, if they don’t use it in Firefox. So, assuming your hardened Firefox uses the right config values and browser extensions, there should be relatively few differences…

        • Marius@mastodonapp.uk
          link
          fedilink
          arrow-up
          3
          arrow-down
          1
          ·
          2 years ago

          @Ephera @rhymepurple No. Privacy by option is worse than no privacy at all. Non technical people would install firefox because they read somewhere that it safe, but ultimately they would use it as it is thinking that is safe out of the box.

          • Ephera@lemmy.ml
            link
            fedilink
            English
            arrow-up
            2
            ·
            2 years ago

            @rhymepurple@lemmy.ml did specifically ask about hardened Firefox, which literally means Firefox with configuration changes to make it more secure.

            Having said that, personally I do think Firefox’s default experience is close to the best you can do for people that really just want to install without thinking about it.
            Going beyond that quickly results in broken webpages. And broken webpages require that you know what you’re doing, so you can unbreak them, if needed.

  • nutomic@lemmy.ml
    link
    fedilink
    arrow-up
    7
    arrow-down
    3
    ·
    2 years ago

    So you can give some Swedish company access to all your web traffic. Great idea if you hate privacy. At least Tor can get some money this way.

    • Marxism-Fennekinism@lemmy.ml
      link
      fedilink
      arrow-up
      7
      arrow-down
      3
      ·
      edit-2
      2 years ago

      Also, isn’t Tor still funded by the US govt? I feel like of you wanted a honeypot, there is no better option than Tor which is already under your wing.

      The reality is that there is NO completely anonymous network or proxy that can be 100% trusted. None. Because you have zero ways of independently verifying any of them. You’re better off, especially if you’re political dissident, using a network that might be/probably under surveillance from a country that aligns most with your ideology (Chinese networks if you’re a communist trying to push for communism in the West, for example). It’s a shame for us that it’s actually really hard to get access to a Chinese run VPN in the West. Don’t use a US-developed privacy network if you know the US is not going to like what you send on it is what I’m saying.

      • drascus@sh.itjust.works
        link
        fedilink
        arrow-up
        1
        ·
        1 year ago

        I think you are making more of a political and philosophical argument than a technical one. The project for tor browser and associated technologies is a 501c3 nonprofit. It’s technology is open source and can be independently reviewed by third parties. Control of the network and it’s technology is distributed and is not controlled by any single government or entity. It’s not a perfect solution but it’s better in certain contexts than other options. It just depends on your use case but the torproject is not doing anything “wrong” they are not a shill for a particular government.

    • Rick Sanchad@ieji.de
      link
      fedilink
      arrow-up
      4
      arrow-down
      1
      ·
      2 years ago

      @nutomic @cypherpunks Who exactly do trust then comrade? I mean Swedish ISP Bahnhof has a very good reputation when it comes to end user privacy. They even hosted Julian Assanges Wikileaks server… But I mean just look at all the orwellian laws coming from Australia, America, England and the EU where do we go from here bro?? Chat Control, Investigatory powers act bill, Ass Access bill, Restrict Act bill, Chat control… D: World governments are making it hard to have any privacy anymore!

      • Marius@mastodonapp.uk
        link
        fedilink
        arrow-up
        1
        arrow-down
        1
        ·
        edit-2
        2 years ago

        @Rickster @nutomic @cypherpunks As harder some pathetic governments are doing it to have some privacy and stop cancel culture, as faster we evolve towards alternative communication tools.

        They can control even the whole internet. We will ditch this service and use mesh networks. Without us paying for the internet, the service will become obsolete.

        • Rick Sanchad@ieji.de
          link
          fedilink
          arrow-up
          2
          arrow-down
          2
          ·
          edit-2
          2 years ago

          @mariubrlu @nutomic @cypherpunks Yeah I don’t care where we are politically we all need to unite against a centralised, nation state controlled & fully walled up internet… If we don’t take a united stand against extremely overly broad all encompassing powers that Western governments are trying to give themselves over the internet. We will become China, we are not far off the chopping block to becoming China and having their internet where all non government approved stuff is criminalised!

          • Marius@mastodonapp.uk
            link
            fedilink
            arrow-up
            1
            arrow-down
            3
            ·
            2 years ago

            @Rickster @nutomic @cypherpunks I was just trying to bring some positive thoughts. Even in China the gvmt tried to crack down on protests by shutting down the internet in the area and the people used a mesh network to still be able to communicate.

            • Marius@mastodonapp.uk
              link
              fedilink
              arrow-up
              1
              arrow-down
              2
              ·
              2 years ago

              @Rickster @nutomic @cypherpunks Of course that I play my part in fighting corruption in the establishment. I recently switched every single device in my home to open source auditable software and literally use 0 services from GAFAM. The thing is: if we don’t buy or use their products they will become obsolete. Also by using open source software you can’t be illegally spied as they can’t have access to your data.

        • ᗪᗩᗰᑎ@lemmy.ml
          link
          fedilink
          arrow-up
          4
          ·
          edit-2
          2 years ago

          So we’re trusting Tor but not Mullvad who collaborated with the Tor Project [0] to create this browser?

          … developed in a collaboration between Mullvad VPN and the Tor Project

          Who’s behind Librewolf and Ungoogled Chromium that we should trust them over Mullvad?

          Even Librewolf recommends you use Tor [1].

          Can I use LibreWolf with Tor?

          Please don’t.

          The Tor network is designed to give you complete anonymity, but it can be compromised if you use it with any browser other than the Tor Browser. If you want anonymity, download the Tor Browser.

          They’re all open source projects, how do you define who should/shouldn’t be trusted? Seems rather reactionary to discredit Mullvad without any evidence when the alternatives provided suffer the same issue - who’s behind the project and how do you establish trust?

          Lastly, Ungoogled Chromium provides almost no privacy enhancing features by default [2], so how could this be a recommended as a privacy preserving browser?

          ungoogled-chromium features tweaks to enhance privacy, control, and transparency. However, almost all of these features must be manually activated or enabled.

          Lets discuss real alternatives and real issues, not jump to conclusions and throw everything out because it’s not “perfect”

          “Don’t let perfect be the enemy of good” and all that.

          [0] https://mullvad.net/en/browser

          [1] https://librewolf.net/docs/faq/#can-i-use-librewolf-with-tor

          [2] https://github.com/ungoogled-software/ungoogled-chromium#objectives

    • Marxism-Fennekinism@lemmy.ml
      link
      fedilink
      arrow-up
      4
      arrow-down
      2
      ·
      2 years ago

      Swedish government*

      All EU countries have surveillance laws pretty similar to the US yet no one seems to think it’s a problem.

    • altair222@beehaw.org
      link
      fedilink
      arrow-up
      1
      arrow-down
      1
      ·
      edit-2
      2 years ago

      Is the browser not open source? And hence a binary could be built for it to test and verify the degree of privacy to it?

      • nutomic@lemmy.ml
        link
        fedilink
        arrow-up
        2
        ·
        2 years ago

        A VPN operator can intercept all the traffic by design. TOR avoids that by going over multiple hops, but this browser doesnt use TOR.

        • altair222@beehaw.org
          link
          fedilink
          arrow-up
          2
          ·
          2 years ago

          The first thing i did upon installing the browser to test it is uninstall the VPN extention. Im very skeptical of the browser myself but im wondering how much grounds your argument against the browser holds. Wouldnt the open-source nature (and hence being able to create our own binaries) and the firefox base create a decent enough privacy experience? One could even scientifically test the telemetry with the right tools, right?

          • nutomic@lemmy.ml
            link
            fedilink
            arrow-up
            3
            ·
            2 years ago

            If you disable the VPN then my previous argument doesnt apply. It would probably be more secure than normal Firefox, assuming you trust the developers.

    • lemming_7765@lemmy.ml
      link
      fedilink
      English
      arrow-up
      3
      ·
      edit-2
      2 years ago

      IINM, you shouldn’t that because it would defeat the purpose of this browser, which is to maintain the same fingerprint for everybody.

  • drascus@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 year ago

    I would need to do some testing but a potential flaw I can already think of is that your browser will look fairly unique to finger printers. So for instance you are already running a variant of firefox which only has about 3% of the market share. Now you are running a variant of firefox that has a really unique settings. So instead of being 1 in crowd of hundreds of thousands or millions you will be 1 out of few thousand maybe or possibly just hundreds if adoption is slow enough. Then add browsing habits to that you could potentially narrow the person down to a few dozen or even a dozen people quick. You would likely be better off using a more popular browser with just a VPN. However I don’t care what browser you use you still need to be careful if you want to stay private.