this post was submitted on 27 Feb 2025

43 points (97.8% liked)

Privacy

34309 readers

1864 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago

MODERATORS

[email protected]

Ironfox doesn't have privacy.resistfingerprinting set to true in about:config? (lemmy.ml)

submitted 1 day ago by [email protected] to c/[email protected]

28 comments fedilink hide all child comments

How come?

top 28 comments

sorted by: hot top controversial new old

[–] [email protected] 6 points 3 hours ago (2 children)

We very publicly discussed our approach to fingerprinting and the reasoning for this. But a basic TL;DR is that we're using a hardened configuration of FPP - which matches all of RFP's targets, except the few known to cause breakage/be undesirable for users. I'd recommend reading that GitLab issue for a detailed explanation, and please let me know if you have any questions or concerns.

FYI: Arkenfox doesn't enable RFP by default anymore either, and LibreWolf is also considering switching to FPP with an approach like ours.

[–] [email protected] 2 points 1 hour ago

Thank you for getting out of your way and explaining it here.

[–] [email protected] 4 points 3 hours ago

Thanks! 👍

[–] [email protected] 2 points 11 hours ago* (last edited 1 hour ago) (1 children)

In my opinion you should enable it

Didn't watch out for reasons, maybe ironfox gives one?

[–] [email protected] 2 points 3 hours ago* (last edited 3 hours ago) (1 children)

We don't recommend enabling it; you can see our reasoning as to why we don't enable RFP here - we use a hardened configuration of FPP instead.

FYI: Arkenfox doesn't enable RFP by default anymore either, and LibreWolf is also considering switching to FPP with an approach like ours.

[–] [email protected] 1 points 1 hour ago

Thank you useful read

[–] [email protected] 19 points 1 day ago* (last edited 1 day ago) (1 children)

If I remember, that setting is extremely aggressive, and breaks lots of sites. Firefox has by default, a more complicated and nuanced feature that works practically as well, without breaking everything.

[–] [email protected] 2 points 1 day ago (2 children)

So is Firefox mobile or Fennec actually better in this regard?

[–] [email protected] 3 points 1 day ago (1 children)

In that specific regard, probably.
I use Fennec. I've found the more security minded versions, tend to have problems with some site or another, and annoy me.

[–] [email protected] 2 points 23 hours ago (1 children)

I noticed that the sites that have issues are the sites I should avoid.

After a while, you just don't need them if you are willing to make the changes needed to reduce that corpo exposure

[–] [email protected] 1 points 22 hours ago* (last edited 22 hours ago)

Sites like my banks, and local movie theaters, and self hosted VTT games.
I've had issues with all. Not acceptable

[–] [email protected] 1 points 1 day ago

Firefox selling their ass out so I lost trust in them to be using their apps

[–] [email protected] 2 points 21 hours ago (1 children)

Idk why, it doesnt say anything on their gitlab about changing that. Maybe it is a problem with the build process? I remember on Mull a couple months ago i did a clean install and RFP was disabled. You can just enable it if you want.

[–] [email protected] 2 points 3 hours ago (2 children)

See here for our explanation.

[–] [email protected] 1 points 2 hours ago

Maybe consider enabling RFP for private browsing. Is letterboxing enabled?

[–] [email protected] 1 points 2 hours ago (1 children)

Ok, might want to make that more clear under the section about issues inherited from Mull which still mentions RFP.

Your explaination seems sound.

[–] [email protected] 3 points 2 hours ago (1 children)

Yeah, we've been waiting to update documentation until our website is ready (since that's where we'll keep everything). You're right we do need to make this more clear.

[–] [email protected] 1 points 2 hours ago* (last edited 2 hours ago)

Understandable, thank you for your (and contributor's) work on this project. I am happy that i dont need to compile Fennec with hardening from source for each update.

[–] [email protected] 5 points 1 day ago (2 children)

They changed some basics from Mull and decided to go other ways. That's why I'm not using thus browser

[–] [email protected] 1 points 3 hours ago* (last edited 3 hours ago)

They changed some basics from Mull and decided to go other ways.

What basics did we change, and why do you have a problem with them?

IronFox still has the same core goals/mission as Mull: to provide a privacy & security-oriented Firefox-based web browser for Android. If IronFox isn't for you, that's completely fine - but I'm just perplexed by your reasoning here, and would appreciate any elaboration so that we can improve.

[–] [email protected] 5 points 1 day ago (1 children)

What would be your suggestion?

[–] [email protected] 2 points 1 day ago (2 children)

waterfox

[–] [email protected] 1 points 3 hours ago

Waterfox contains proprietary Google Play libraries, and doesn't include any hardening when compared to standard Firefox on Android. It's a completely different project with a different set of goals than IronFox or Mull.

You would be far better off using standard Firefox over Waterfox, in terms of privacy & security.

[–] [email protected] 2 points 1 day ago (1 children)

But weren't they acquired by some big evil company?

[–] [email protected] 1 points 1 day ago

not anymore

[–] [email protected] 3 points 1 day ago (2 children)

Wow. First news. Shitty of them claiming to follow Mull's legacy if they're doing their own thing.

[–] [email protected] 2 points 3 hours ago

Shitty of them claiming to follow Mull's legacy if they're doing their own thing.

How?

Our change in approach to fingerprinting was very carefully considered and discussed, both privately and publicly.

FYI: Arkenfox doesn't enable RFP by default anymore either, and LibreWolf is also considering switching to FPP with an approach like ours.

IronFox still has the same core goals/mission as Mull: to provide a privacy & security-oriented Firefox-based web browser for Android. If IronFox isn't for you, that's completely fine - but I just don't understand how this is shitty or compromising Mull's legacy/ideals.

[–] [email protected] 1 points 19 hours ago

What's the alternative on Android tho? (not saying there isn't one, just that I don't know it if it exists)