Librefox: Firefox with privacy enhancements

204 点作者 philonoist大约 6 年前

19 条评论

elagost大约 6 年前

This seems like an a slightly more complete version of Firefox Profilemaker (<a href="https://ffprofile.com/" rel="nofollow">https://ffprofile.com/</a>).I personally use a fairly vanilla Firefox with a few addons and try to keep customization as default as possible. How will further differentiating yourself from the masses (especially since Firefox is already a minority browser) help with privacy, tracking, and fingerprinting? Why not at that point just change your user agent to Chrome/Win7 and run everything in a virtual machine?edit: To that end, does anyone use browser forks (like Waterfox and Palemoon, or things like unGoogled Chromium) and seriously think they're better than the mainline browser? I see a lot of fair criticism for what Mozilla has done with Firefox (deprecating old extensions, Mr. Robot addons, Cliqz, etc) but it's pretty much the most trustworthy Internet company as far as I'm aware. They seem to genuinely have good will and Open Source at their core, and these forks claiming that Mozilla is this monstrous organization looking to invade your privacy (along the lines of what Google does) seem a little silly to me.

评论 #19525518 未加载

评论 #19523962 未加载

评论 #19526824 未加载

评论 #19526507 未加载

评论 #19526316 未加载

评论 #19524213 未加载

amelius大约 6 年前

I don't get the name. How is "libre" connected to "privacy", considering that Firefox is already "libre" in many ways.

评论 #19524054 未加载

评论 #19523737 未加载

评论 #19527284 未加载

评论 #19524428 未加载

评论 #19524337 未加载

评论 #19527809 未加载

评论 #19523822 未加载

cedex12大约 6 年前

Something I'd like to see instead of a modified version of ff is some sort of meta-extension that I could install on vanilla ff. It would essentially be a bundle of* add blocker (say ublock)* js disabler (noscript)* https stuff* anti tracker* url cleaner* user agent spoofer* cookie cleaner* whatever decentraleyes does* enable the right settings in about:config* …?All the extensions are there already, but it would guarantee them working well together and you wouldn't have to look for each extension and wonder if it's actually the one you want, but just install "the one".

评论 #19523596 未加载

评论 #19524057 未加载

评论 #19523715 未加载

评论 #19523503 未加载

评论 #19524950 未加载

评论 #19523496 未加载

评论 #19526832 未加载

评论 #19524022 未加载

cadecairos大约 6 年前

Considering this hasn't received an update in two months, it seems unsafe to install and download it. There have been many fixed security issues in Firefox just in the past few weeks.<a href="https://www.mozilla.org/en-US/security/advisories/" rel="nofollow">https://www.mozilla.org/en-US/security/advisories/</a>

评论 #19524990 未加载

neilv大约 6 年前

I haven't tried Librefox yet, but Internet privacy&security is a big interest of mine, and I'd like to suggest that another option to consider is Tor Browser.Tor Browser is generally more privacy-focused than Mozilla, and the nicely integrated Tor support gives me a bit of privacy from my infamous ISP (VPN services tend to be sketchy, too).Drawbacks to Tor Browser are that Tor itself is a bit creepy (e.g., presumably draws more attention to you from your own country's domestic surveillance), some news sites block US Tor exit nodes (whether they know it or not; Cloudflare seems to most often be the culprit), uBlock Origin is not part of the Tor Browser distribution (which means that people who add it lose some crowd anti-fingerprinting benefit), the NoScript part should really be replaced with uBlock Origin, Tor is much slower than direct, and the Tor or Tor Browser project could end/fizzle much sooner than Firefox does.How I'm using Tor Browser currently is that I use it for sites that don't require logins or otherwise identify me. For sites that identify me anyway (e.g., banking, online ordering), I use Firefox. I don't use Firefox often. Keeping them separate also discourages me from logging into sites unnecessarily.What I'd ideally like is for Mozilla to become more aggressive than Tor Browser about privacy -- not going to Tor, but doing things that would peeve much of the dotcom surveillance industry. This includes pushing privacy tweaks upstream to Web standards. Mozilla is perhaps the best positioned to play chicken with the dotcoms on this; most genuine privacy efforts would be simply broken by the sites, and lose their users. Mozilla has a lot of upper management, so presumably they could figure out how to peeve a lot of dotcoms, while still keeping the funding flowing.(I should add that I use Tor Browser for only a casual, on-principle attempt at privacy from snooping companies. I don't believe that Tor or Tor Browser is sufficiently safe for many kinds of journalists and activists, for example.)

nukemandan大约 6 年前

Unclear if this is going to continue: <a href="https://github.com/intika/Librefox/issues/119" rel="nofollow">https://github.com/intika/Librefox/issues/119</a><a href="https://github.com/intika/Librefox/commit/45a4d3ce647b8c896e81ce3e5ac5ddc95ff045e0#commitcomment-32174421" rel="nofollow">https://github.com/intika/Librefox/commit/45a4d3ce647b8c896e...</a>may have Terms & conditions violations.

kylek大约 6 年前

>> NoHTTP: Block http traffic and/or redirect it to https (Excellent replacement for the unrecommended https-everywhere)Why isnt the EFF's HTTPS Everywhere recommended? (And why is this addon, tagged "experimental", with <100 users opted for?)

评论 #19525735 未加载

tdhz77大约 6 年前

I was once told we shouldn’t use libre in titles. But, I don’t have any reason for this. Anybody have any idea where they got this?

评论 #19523848 未加载

评论 #19523508 未加载

评论 #19523806 未加载

kylek大约 6 年前

Curious if this sticks out like a sore thumb in terms of fingerprinting.

评论 #19523227 未加载

minitech大约 6 年前

Isn’t that the AppVeyor logo? (edit: yes:<pre><code> <a href="https://github.com/intika/Librefox/"><img width="727" src="https://img.shields.io/badge/Librefox-Browser-lightgray.svg?logo=appveyor&longCache=true&style=popout"></a></code></pre>

uponcoffee大约 6 年前

My main concernsvwith these types of posts are management and defaults.If management isn't automous, then you'll get fragmentation which becomes a fingerprinting mechanism.If the defaults are too harsh, then you deter adoption and encourage fragmentation of those that do adopt (as they'll muck about in the config and unbreak different things).With low adoption, using this could potentially make you more identifiable (mirroring the concern of Do Not Track as of late) , [citation needed, on mobile].I'll definitely spin up an instance of later today, but it looks like the defaults might cause a fair bit of breakage

intopieces大约 6 年前

Two questions:(1) Why does the logo for Librefox look like a flatter, less colorful version of the Chrome logo?Edit: Apparently (from a sibling comment) it's actually the AppVeyor logo. <a href="https://en.wikipedia.org/wiki/AppVeyor" rel="nofollow">https://en.wikipedia.org/wiki/AppVeyor</a>. Why?(2) How can this be a valid claim: "Librefox is NOT associated with Mozilla or its products." It's obviously associated with one of Mozilla's products -- Firefox. What distinction am I missing here?

brian_herman__大约 6 年前

Wonder how this compares to waterfox. <a href="https://www.waterfoxproject.org/en-US/" rel="nofollow">https://www.waterfoxproject.org/en-US/</a>

评论 #19524000 未加载

评论 #19523233 未加载

lelf大约 6 年前

See also: GNU IceCat <a href="https://www.gnu.org/software/gnuzilla/" rel="nofollow">https://www.gnu.org/software/gnuzilla/</a>

superkuh大约 6 年前

Does it remove the change they made in Firefox 37-42 where you can't run or edit any add-ons/extensions without approval from Mozilla?

Ultramanoid大约 6 年前

The same person maintains some builds of Ungoogled-Chromium for Linux :<a href="https://www.opendesktop.org/p/1265177/" rel="nofollow">https://www.opendesktop.org/p/1265177/</a>

ChrisSD大约 6 年前

Why isn't it a fork? Does it make full use of the `privacy.resistFingerprinting` settings? Surely Tracking Protection should be switched on unless uBlock Origin is actually installed? Either that or bundle uBlock Origin.

评论 #19523287 未加载

评论 #19524365 未加载

评论 #19523338 未加载

capi_salazar大约 6 年前

If I'm getting it right, is it a customized setting to use in Firefox to make it more privacy-oriented?

tya99大约 6 年前

Honestly I wouldn't go anywhere near Palemoon. Not unless you feel like using an antiquated browser such as Firefox 28 which is where it forked.I expect their shills will be deployed to this thread shortly.It's certainly not more secure when you've got all your extensions running at highest level privileged (not WebExtensions), the sandboxing code "removed" because mattatobin a Palemoon developer says that it "doesn't work", without giving any specific use case and their non-compliance with the HSTS spec RFC6797 [0]. There's probably countless other things wrong with it, but that's what I spotted after a cursory look.Their developers are also toxic <a href="https://github.com/privacytoolsIO/privacytools.io/issues/375" rel="nofollow">https://github.com/privacytoolsIO/privacytools.io/issues/375</a> that's all the proof you ever needed.Many of your sentiments there are demonstrated in that very thread. One of the developers (mattatobin) repeatedly avoids answering my questions and just says "fake news" and goes all trumpian on me.Don't bother trying to ask on their forums about this they will just delete your posts and go on about "the untrue narrative" without addressing your questions.If you contact them on twitter they will block you. It seemed like their while mode of operation was very "alt-right" if that makes sense. They live in a small "social bubble" it would seem.I also found it rather lol that a so called "privacy browser" has to resort to using google advertising on their main page.<pre><code> 15:05:34 www.palemoon.org -- script https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js 3p 15:05:34 www.palemoon.org -- script https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js 3p 15:05:34 www.palemoon.org -- script https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js 3p </code></pre> [0]: <a href="https://tools.ietf.org/html/rfc6797#section-8.4" rel="nofollow">https://tools.ietf.org/html/rfc6797#section-8.4</a>

评论 #19527615 未加载

评论 #19527663 未加载

评论 #19530491 未加载

19 条评论

elagost大约 6 年前

评论 #19525518 未加载

评论 #19523962 未加载

评论 #19526824 未加载

评论 #19526507 未加载

评论 #19526316 未加载

评论 #19524213 未加载

amelius大约 6 年前

I don't get the name. How is "libre" connected to "privacy", considering that Firefox is already "libre" in many ways.

评论 #19524054 未加载

评论 #19523737 未加载

评论 #19527284 未加载

评论 #19524428 未加载

评论 #19524337 未加载

评论 #19527809 未加载

评论 #19523822 未加载

cedex12大约 6 年前

评论 #19523596 未加载

评论 #19524057 未加载

评论 #19523715 未加载

评论 #19523503 未加载

评论 #19524950 未加载

评论 #19523496 未加载

评论 #19526832 未加载

评论 #19524022 未加载

cadecairos大约 6 年前

评论 #19524990 未加载

neilv大约 6 年前

nukemandan大约 6 年前

kylek大约 6 年前

评论 #19525735 未加载

tdhz77大约 6 年前

I was once told we shouldn’t use libre in titles. But, I don’t have any reason for this. Anybody have any idea where they got this?

评论 #19523848 未加载

评论 #19523508 未加载

评论 #19523806 未加载

kylek大约 6 年前

Curious if this sticks out like a sore thumb in terms of fingerprinting.

评论 #19523227 未加载

minitech大约 6 年前

uponcoffee大约 6 年前

intopieces大约 6 年前

brian_herman__大约 6 年前

Wonder how this compares to waterfox. <a href="https://www.waterfoxproject.org/en-US/" rel="nofollow">https://www.waterfoxproject.org/en-US/</a>

评论 #19524000 未加载

评论 #19523233 未加载

lelf大约 6 年前

See also: GNU IceCat <a href="https://www.gnu.org/software/gnuzilla/" rel="nofollow">https://www.gnu.org/software/gnuzilla/</a>

superkuh大约 6 年前

Does it remove the change they made in Firefox 37-42 where you can't run or edit any add-ons/extensions without approval from Mozilla?

Ultramanoid大约 6 年前

The same person maintains some builds of Ungoogled-Chromium for Linux :<a href="https://www.opendesktop.org/p/1265177/" rel="nofollow">https://www.opendesktop.org/p/1265177/</a>

ChrisSD大约 6 年前

评论 #19523287 未加载

评论 #19524365 未加载

评论 #19523338 未加载

capi_salazar大约 6 年前

If I'm getting it right, is it a customized setting to use in Firefox to make it more privacy-oriented?

tya99大约 6 年前

评论 #19527615 未加载

评论 #19527663 未加载

评论 #19530491 未加载