Mozilla Project Fusion: Tor Integration into Firefox

Hi all. I am a Tor Project Developer and work at Mozilla on this project. We appreciate everyone&#x27;s enthusiasm and feedback. Our ultimate goal is a long way away because of the amount of work to do and the necessity to match the safety of Tor Browser in Firefox when providing a Tor mode. There&#x27;s no guarantee this will happen, but I hope it will and we will keep working towards it.<p>If anyone is interested in assisting development-wise, Firefox bugs tagged &#x27;fingerprinting&#x27; in the whiteboard are a good place to start. You can also run Tor relays and help us improve the health of the network by working with Tor&#x27;s new Relay Advocate (<a href="https:&#x2F;&#x2F;blog.torproject.org&#x2F;get-help-running-your-relay-our-new-advocate" rel="nofollow">https:&#x2F;&#x2F;blog.torproject.org&#x2F;get-help-running-your-relay-our-...</a>). More people being involved in spec work (especially at the W3C) and focusing on fingerprinting and privacy concerns is also very useful - it&#x27;s very hard to keep eyes on all the things happening everywhere.<p>We also appreciate users of Firefox Beta and Nightly (Nightly especially). The flags Tor features are developed behind (privacy.resistFingerprinting and privacy.firstparty.isolate) are experimental. I appreciate bug reports from users running these flags but you should expect them to break things on the web (resistFingerprinting especially; first party isolate is generally more stable and usually only has breakage on particular login forms).

&gt; Ultimate eventual goal: Make Tor Browser obsolete, so Tor Project can focus on research instead of maintaining a fork of Firefox.

What will Mozilla do about the Tor network&#x27;s usability problems? Advanced users can workaround them and because they understand the benefits and engineering, accept the frustrations as a cost for a worthwhile (and free) technology. But what will non-technical users do?<p>Many public Internet websites filter connections from the Tor network, many other websites are very slow, yet others impose extra obstacles such as multiple rounds of captchas (even 5 or more) or degraded service (including high suspicion of payments), and of course you often will receive webpages in the wrong locale or language - which can trigger regional filters. Currently, workarounds requires resetting the circuit (few non-technical users will even understand what the circuit is), lots of patience and reloads, and often just giving up. [EDIT: And non-technical users won&#x27;t understand what is happening and therefore won&#x27;t know when to use which workaround.]<p>If that&#x27;s the experience of typical Firefox users, they won&#x27;t use it and they will have bad associations with Tor and Firefox.

The page isn&#x27;t loading for me. <a href="https:&#x2F;&#x2F;web.archive.org&#x2F;web&#x2F;20180601141754&#x2F;https:&#x2F;&#x2F;trac.torproject.org&#x2F;projects&#x2F;tor&#x2F;wiki&#x2F;org&#x2F;meetings&#x2F;2018Rome&#x2F;Notes&#x2F;FusionProject" rel="nofollow">https:&#x2F;&#x2F;web.archive.org&#x2F;web&#x2F;20180601141754&#x2F;https:&#x2F;&#x2F;trac.torp...</a><p>(<a href="https:&#x2F;&#x2F;archive.org&#x2F;donate" rel="nofollow">https:&#x2F;&#x2F;archive.org&#x2F;donate</a>)

Great news !<p>With wider adoption of ipv6 and all the good things that come with it (don&#x27;t mistake me, they are great!) also comes the risk that each computer will get a uniquely identifiable IP address that will be used for fingerprinting. I&#x27;ve never really used Tor in the past, but this got me thinking about it.<p>An option could be to provide a webRTC-based node, but I am not sure how feasible that would be, after reading some comments here. Maybe for entry nodes and guard nodes instead of exit nodes? The transient nature of browser sessions could greatly enhance privacy. Of course, you would need some algorithms to deal with this very nature... But I can imagine some.<p>This surely lowers the barrier to entry for greatly enhanced privacy. Quite a lot of people seem to be aware of the private browsing mode, and I can imagine this being turned into a simple toggle on the private browsing home page, along with a short explanation (and a link to additional privacy tips).<p>A low hanging fruit that could enhance the privacy a bit would be to use the trusted recursive resolver (DNS over https) in private browsing by default, since it already is part of Firefox. It just needs a default <i>trusted</i> resolver.

Cool, now let me start an ephemeral v3 onion service from JS and have it reachable via WebRTC by a peer who has their own. It&#x27;s the perfect tech marriage, removes signalling servers and NAT busters, but may be a bit taxing on directory servers and too slow to use for media streams (but I&#x27;ll take data channels only).

Mozilla keeps driving for the users on the internet. I know many of my own frustrations came from the fork that is Tor. This work is great to see.

This would be amazing. The main reason I&#x27;ve never used Tor is the fear that it would make me look like I had something to hide (instead of just a general desire for privacy). If it were built into Firefox, I&#x27;d probably switch over from Chrome.

Wasn&#x27;t this launched in 2014? I see the wiki hasn&#x27;t been updated since January. Is this a new push to get this done?

If I understand it correctly, you shouldn&#x27;t be using any website accounts using Tor browser that you also use outside of it. I really wonder if&#x2F;how they can make the user properly aware of that in a kind-of super private browsing mode.

Have you considered also implementing I2P[0] in parallel with tor? It suppose to be harder to analyze traffic at nodes with I2p though it isn&#x27;t as battletested as tor.<p>[0]:<a href="https:&#x2F;&#x2F;geti2p.net&#x2F;en&#x2F;comparison&#x2F;tor" rel="nofollow">https:&#x2F;&#x2F;geti2p.net&#x2F;en&#x2F;comparison&#x2F;tor</a>

Okay but what about maidsafe, dat, ipfs etc. The correct solution is to have firefox expose a &#x27;protocol api&#x27; or something along those lines so that any &#x27;alternate internet&#x27; project can create a backend extension to make firefox compatible with that protocol.

I think Mozilla should look at using Servo instead of Gecko in this mode along with a new JavaScript interpreter written in Rust, at least optionally, since perfect security is essential when using a Tor browser without a dedicated VM.

So we lose another valuable project of the Web. I wonder why I feel so lost - that when I was young, the Internet was barely born... and now I&#x27;m watching it die.

I&#x27;ve been waiting for this for years. Good job convincing Mozilla to do this! Good idea to standardize the spec, too.<p>I hope they give a good name to this new super-private mode (which actually isn&#x27;t too bad of a name, either).<p>I also hope they don&#x27;t just implement a &quot;more private&quot; mode in Firefox, but also a <i>more hardened mode</i> for Tor. The Tor mode in Firefox should use the strictest possible sandboxing technologies available to them from the operating system (file system virtualization, etc).<p>I&#x27;m even talking about those new fancy hypervisor-based micro-VMs in Windows 10, which I believe they are called Krypton containers, and it&#x27;s what Edge uses within the Application Guard context. Although if the users have to enable Hyper-V&#x2F;Micro-VMs first in Windows, then maybe this hardening mechanism should be optional, but <i>encouraged</i>. Otherwise, it should probably be the default.<p><a href="https:&#x2F;&#x2F;www.zdnet.com&#x2F;article&#x2F;how-containers-will-transform-windows-10-in-the-next-three-years&#x2F;" rel="nofollow">https:&#x2F;&#x2F;www.zdnet.com&#x2F;article&#x2F;how-containers-will-transform-...</a><p>Oh, and this hardened mode should use a different process for every tab&#x2F;extension, too, by default, just like Chrome does. I still don&#x27;t think Mozilla&#x27;s &quot;hybrid&quot; approach makes it as secure as Chrome (which is why it&#x27;s a hybrid&#x2F;compromise for lower memory usage).

&gt; How many more &quot;super private browsing mode&quot; Firefox users will there be? Potentially hundreds of millions of daily users.<p>Tor has hundreds of millions of daily users?

I believe Tor browser is already just a version of Firefox if I&#x27;m not mistaken. What would be the advantage of integrating with Firefox as opposed to say, a VPN integrated into the browser via a plugin. Just seems a little redundant and Tor is beginning to seem dated also with new solutions popping up and making the pitfalls of Tor more apparent.

&quot;Removing fingerprintability&quot; amounts to the browser just NOT sending all the http request headers that it sends by default. How hard can it be to &quot;comment out&quot; these lines?

I am starting to feel firefox in a serious way. But im just sooo concerned that their software still sucks. I mean, we ARE talking about a company who thought it was smart to spend time trying to build a javascript OS for mobile.<p>So let me ask again. When are you guys going to start building firefox from the ground up and make the perfect browser we all deserve?<p>And if you disagree, please. Present your arguments. I am the person you need to sell right now.

Why does the Tor Browser Bundle ship with HTTPS Everywhere? Surely if you&#x27;re connected through a Tor circuit, HTTPS provides no extra security?