this post was submitted on 03 Apr 2023
53 points (98.2% liked)

Privacy

31982 readers
320 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
top 31 comments
sorted by: hot top controversial new old
[–] bkkcitypokey@lemmy.ml 8 points 2 years ago

I'll stick with LibreWolf, thanks

[–] ailiphilia@feddit.it 5 points 2 years ago (1 children)

I just stumbled upon that, too, and am wondering how this compares to Librewolf (+VPN) ...

[–] rhymepurple@lemmy.ml 6 points 2 years ago (2 children)

I'm wondering the same thing. Aside from encouraging people to use the default settings to make each user's browser/session harder to properly fingerprint, I'm really curious what privacy benefits this new browser provides compared to alternatives like Librewolf, hardened Firefox, etc.

[–] KLISHDFSDF@lemmy.ml 4 points 2 years ago (1 children)

Looks like Mullvad has this regarding the changes being made in their browser: https://mullvad.net/nl/browser/hard-facts

[–] rhymepurple@lemmy.ml 1 points 2 years ago

Thanks, this is really helpful! Didn't notice it previously.

[–] Ephera@lemmy.ml 4 points 2 years ago (1 children)

From what I've heard in the past, Mozilla is doing a good job upstreaming work from the Tor Browser devs and putting it behind an about:config value, if they don't use it in Firefox. So, assuming your hardened Firefox uses the right config values and browser extensions, there should be relatively few differences...

[–] mariubrlu@mastodonapp.uk 2 points 2 years ago (1 children)

@Ephera @rhymepurple No. Privacy by option is worse than no privacy at all. Non technical people would install firefox because they read somewhere that it safe, but ultimately they would use it as it is thinking that is safe out of the box.

[–] Ephera@lemmy.ml 2 points 2 years ago

@rhymepurple@lemmy.ml did specifically ask about hardened Firefox, which literally means Firefox with configuration changes to make it more secure.

Having said that, personally I do think Firefox's default experience is close to the best you can do for people that really just want to install without thinking about it.
Going beyond that quickly results in broken webpages. And broken webpages require that you know what you're doing, so you can unbreak them, if needed.

[–] nutomic@lemmy.ml 4 points 2 years ago (5 children)

So you can give some Swedish company access to all your web traffic. Great idea if you hate privacy. At least Tor can get some money this way.

[–] KLISHDFSDF@lemmy.ml 4 points 2 years ago (1 children)

If not this browser, which one should we use if we want privacy?

[–] HiddenLayer5@lemmy.ml 3 points 2 years ago (2 children)

Tor browser? Librewolf? Ungoogled Chromium?

[–] KLISHDFSDF@lemmy.ml 4 points 2 years ago* (last edited 2 years ago) (2 children)

So we're trusting Tor but not Mullvad who collaborated with the Tor Project [0] to create this browser?

... developed in a collaboration between Mullvad VPN and the Tor Project

Who's behind Librewolf and Ungoogled Chromium that we should trust them over Mullvad?

Even Librewolf recommends you use Tor [1].

Can I use LibreWolf with Tor?

Please don't.

The Tor network is designed to give you complete anonymity, but it can be compromised if you use it with any browser other than the Tor Browser. If you want anonymity, download the Tor Browser.

They're all open source projects, how do you define who should/shouldn't be trusted? Seems rather reactionary to discredit Mullvad without any evidence when the alternatives provided suffer the same issue - who's behind the project and how do you establish trust?

Lastly, Ungoogled Chromium provides almost no privacy enhancing features by default [2], so how could this be a recommended as a privacy preserving browser?

ungoogled-chromium features tweaks to enhance privacy, control, and transparency. However, almost all of these features must be manually activated or enabled.

Lets discuss real alternatives and real issues, not jump to conclusions and throw everything out because it's not "perfect"

"Don't let perfect be the enemy of good" and all that.

[0] https://mullvad.net/en/browser

[1] https://librewolf.net/docs/faq/#can-i-use-librewolf-with-tor

[2] https://github.com/ungoogled-software/ungoogled-chromium#objectives

[–] HiddenLayer5@lemmy.ml 0 points 2 years ago

Did I say I trust Tor? I made an entire rant about it.

[–] Rickster@ieji.de -1 points 2 years ago

@KLISHDFSDF @HiddenLayer5 I recommend librewolf, arkenfox with firefox, a hardened palemoon, brave browser, ungoogled chromium or maybe a browser without JS entirely... Suckless surf for example xD

[–] Rickster@ieji.de 0 points 2 years ago

@HiddenLayer5 @KLISHDFSDF Librewolf and ungoogled chromium and brave those are the 3 browsers I use as daily drivers for different things

[–] HiddenLayer5@lemmy.ml 4 points 2 years ago* (last edited 2 years ago) (1 children)

Also, isn't Tor still funded by the US govt? I feel like of you wanted a honeypot, there is no better option than Tor which is already under your wing.

The reality is that there is NO completely anonymous network or proxy that can be 100% trusted. None. Because you have zero ways of independently verifying any of them. You're better off, especially if you're political dissident, using a network that might be/probably under surveillance from a country that aligns most with your ideology (Chinese networks if you're a communist trying to push for communism in the West, for example). It's a shame for us that it's actually really hard to get access to a Chinese run VPN in the West. Don't use a US-developed privacy network if you know the US is not going to like what you send on it is what I'm saying.

[–] drascus@sh.itjust.works 1 points 1 year ago

I think you are making more of a political and philosophical argument than a technical one. The project for tor browser and associated technologies is a 501c3 nonprofit. It's technology is open source and can be independently reviewed by third parties. Control of the network and it's technology is distributed and is not controlled by any single government or entity. It's not a perfect solution but it's better in certain contexts than other options. It just depends on your use case but the torproject is not doing anything "wrong" they are not a shill for a particular government.

[–] HiddenLayer5@lemmy.ml 3 points 2 years ago

Swedish government*

All EU countries have surveillance laws pretty similar to the US yet no one seems to think it's a problem.

[–] Rickster@ieji.de 3 points 2 years ago (1 children)

@nutomic @cypherpunks Who exactly do trust then comrade? I mean Swedish ISP Bahnhof has a very good reputation when it comes to end user privacy. They even hosted Julian Assanges Wikileaks server... But I mean just look at all the orwellian laws coming from Australia, America, England and the EU where do we go from here bro?? Chat Control, Investigatory powers act bill, Ass Access bill, Restrict Act bill, Chat control... D: World governments are making it hard to have any privacy anymore!

[–] mariubrlu@mastodonapp.uk 0 points 2 years ago* (last edited 2 years ago) (1 children)

@Rickster @nutomic @cypherpunks As harder some pathetic governments are doing it to have some privacy and stop cancel culture, as faster we evolve towards alternative communication tools.

They can control even the whole internet. We will ditch this service and use mesh networks. Without us paying for the internet, the service will become obsolete.

[–] Rickster@ieji.de 0 points 2 years ago* (last edited 2 years ago) (1 children)

@mariubrlu @nutomic @cypherpunks Yeah I don't care where we are politically we all need to unite against a centralised, nation state controlled & fully walled up internet... If we don't take a united stand against extremely overly broad all encompassing powers that Western governments are trying to give themselves over the internet. We will become China, we are not far off the chopping block to becoming China and having their internet where all non government approved stuff is criminalised!

[–] mariubrlu@mastodonapp.uk -3 points 2 years ago (1 children)

@Rickster @nutomic @cypherpunks I was just trying to bring some positive thoughts. Even in China the gvmt tried to crack down on protests by shutting down the internet in the area and the people used a mesh network to still be able to communicate.

[–] mariubrlu@mastodonapp.uk -2 points 2 years ago

@Rickster @nutomic @cypherpunks Of course that I play my part in fighting corruption in the establishment. I recently switched every single device in my home to open source auditable software and literally use 0 services from GAFAM. The thing is: if we don't buy or use their products they will become obsolete. Also by using open source software you can't be illegally spied as they can't have access to your data.

[–] altair222@beehaw.org 0 points 2 years ago* (last edited 2 years ago) (1 children)

Is the browser not open source? And hence a binary could be built for it to test and verify the degree of privacy to it?

[–] nutomic@lemmy.ml 2 points 2 years ago (1 children)

A VPN operator can intercept all the traffic by design. TOR avoids that by going over multiple hops, but this browser doesnt use TOR.

[–] altair222@beehaw.org 2 points 2 years ago (1 children)

The first thing i did upon installing the browser to test it is uninstall the VPN extention. Im very skeptical of the browser myself but im wondering how much grounds your argument against the browser holds. Wouldnt the open-source nature (and hence being able to create our own binaries) and the firefox base create a decent enough privacy experience? One could even scientifically test the telemetry with the right tools, right?

[–] nutomic@lemmy.ml 2 points 2 years ago

If you disable the VPN then my previous argument doesnt apply. It would probably be more secure than normal Firefox, assuming you trust the developers.

[–] drascus@sh.itjust.works 1 points 1 year ago

I would need to do some testing but a potential flaw I can already think of is that your browser will look fairly unique to finger printers. So for instance you are already running a variant of firefox which only has about 3% of the market share. Now you are running a variant of firefox that has a really unique settings. So instead of being 1 in crowd of hundreds of thousands or millions you will be 1 out of few thousand maybe or possibly just hundreds if adoption is slow enough. Then add browsing habits to that you could potentially narrow the person down to a few dozen or even a dozen people quick. You would likely be better off using a more popular browser with just a VPN. However I don't care what browser you use you still need to be careful if you want to stay private.

[–] sgtnasty@lemmy.ml 1 points 2 years ago (1 children)

I cant get user scripts to work with it.

[–] lemming_7765@lemmy.ml 3 points 2 years ago* (last edited 2 years ago) (1 children)

IINM, you shouldn't that because it would defeat the purpose of this browser, which is to maintain the same fingerprint for everybody.

[–] sgtnasty@lemmy.ml 0 points 2 years ago

that's what I figured, just wish it said something about it

load more comments
view more: next ›