Mozilla deletes promise to never sell Firefox data
187 comments
·February 28, 2025MrAlex94
sph
Here's my question: in light of what Mozilla is doing, why don't other forks like Waterfox or Librewolf write a manifesto/contract saying they'll never sell your user data and won't turn "evil" (until they do, of course), and then decide to offer a paid version of their browser.
Two possible outcomes:
1. No one cares. No one pays for it. Nothing changes and nobody loses anything.
2. Enough people pay for it to keep the product healthy and the user-centric promise alive. The Internet is saved.
So why isn't anyone trying to replace Mozilla yet, with a more sane business model than living on the back of Google's fear of antitrust investigation? What's the worse that can happen?
Just sell a bonafide paid version alongside the free one, don't just rely on donations. There is a massive difference between offering a paid product and begging passers-by to spare some change.
mariusmg
>So why isn't anyone trying to replace Mozilla yet,
Because writing manifestos is easy and making a browser is proper hard work ?
sph
My comment is targeted to the developers of Waterfox and Librewolf - they're already making a browser, so the hard part is done.
I'm wondering why don't they try to step it up further by selling a paid version alongside their open source product. What is the worst that can happen? Nobody pays for it and they continue making $0 just like they are happily doing now.
rat9988
Exactly, so why not write them?
nerdponx
Kagi is making the Orion browser, which you can pay for. I am a happy customer.
There's also Ladybird and several Webkit wrappers.
Fnoord
Orion works on Apple OSes only.
Y_Y
This idea of having an moral alignment covenant I think is a great one. I'm fed up of being bait-and-switched by companies that get buy-in by being open and friendly, and then later they decide to kill the golden goose. If you're committed to FOSS then commit! Make it official so that people can trust that you're not going to enshittify later.
aerzen
I'd pay for this.
jchw
Most of the other "forks" (e.g. Librewolf) are just patches on top of vanilla Firefox sources, so it's really not a whole lot to scrutinize by hand. I've skimmed at least most of the patch files personally just out of curiosity. In my distro of choice, NixOS, the sources are built by Hydra or my local machine, so I'm not trusting that their binaries match the source either.
That makes it a bit easier to trust, but it does run into the issue that it stops working if Mozilla hits a certain level of untrustworthiness.
wraptile
> I appreciate the constant existential wobble Firefox faces
The wobble seems to somewhat artificial. I'm having trouble believing Firefox could ever not be able to afford to continue browser development — there are way too many interests at stake. Google alone would have no choice but to bail Firefox out because Chrome can't be the only browser without being regulated to hell and back.
SiempreViernes
Google providing most of their funding is a fact, and that this provides a large amount of leverage over what Firefox can do is obvious. So how is the balancing act artificial?
For it to be self-imposed there needs to be an comparable amount of money ready to spring forth if Google ever pulled out that Mozilla is somehow keeping a lid on.
Propelloni
Hey, thank you for Waterfox! I'm using it a lot across all my machines. Well done!
null
1oooqooq
we need to clean cut from mozilla.
do they still make ot worthwhile for developers? are any on the payroll still?
i think the community should mobilize to sign up for adopting A single fork* as the official fork and completely drop mozilla from existence.
* only criteria should be the fork that is most convenient for all the other forks to just point to instead of mozilla and continue to ship with their patches. and that one fork should have the minimum resources to respond to security disclosures in place of mozilla, nothing else as a requirement.
dmantis
I don't see how a regulated entity is better in any way than an individual.
We repeatedly see attacks on freedom and privacy by the people who are supposed to protect them, those so-called "regulators": chatcontrol, recent UK backdoor wishes, repeated French proposals to enforce DRM even on opensource. And I wouldn't even google Russia, China, or other less democratic states.
Regulated is probably worse than some anarchistic who-knows-by-whom software, but FOSS and auditable these days, tbh. Especially as everyone's audit capabilities grow day by day with AI. It's kind of good at grinding tons of code.
A heavily regulated entity with all licenses in the world might be more hostile toward users than some niche project.
MrAlex94
> I don't see how regulated entity is better in any way than individual.
I feel you. Regulatory bodies have definitely fallen short in many cases, and we've seen concerning proposals from governments that threaten digital privacy and freedom. "Who watches the watchmen" seems incredibly apt nowadays.
However, I feel there's a fundamental difference between imperfect accountability and no accountability at all. With a legal entity governed by stated policies, users have:
1. Transparency about who makes decisions and how
2. Clear terms that create binding commitments
3. Legal mechanisms for recourse if those commitments are violated
4. A persistent entity that can't simply disappear overnight
Perfect? Not really. The ICO in the UK, for example, hasn't been amazing at enforcing data protection. But the existence of these frameworks means that accountability is at least possible - there are levers that can be pulled if someone can be bothered to.
In contrast, with software maintained by anonymous or loosely affiliated individuals, there's no structural accountability whatsoever. If privacy promises are broken, users have no recourse beyond abandoning the software.
FOSS and auditability are valuable safeguards, sure, but they primarily protect against unintentional privacy violations that might be discovered in code reviews. They don't address the human element of intentional policy changes or decisions about data collection.
nico42
To Mozilla: if your intentions are indeed good as you claim in your post[1], then update the ToS accordingly.
Chrome is removing µBlock origin, I and probably a lot of other users saw this as a good moment to promote Firefox to our relatives, you are missing a chance and alienating your user base here.
[1] https://blog.mozilla.org/en/products/firefox/firefox-news/fi...
stateoff
Absolutely agree. The blog post is claiming the opposite to what their ToS is granting - but one is fluff (that will be forgotten soon) while the other is legally binding. I cannot imagine applications like browsers that would require such an unrestricted license for user input just to do its service. That clearly indicates some "other" future motive that is underlined by the notion to remove the FAQ entry and other past actions towards an advertising future at Mozilla.
Am looking forward to explore some of the alternatives. And no, I don't want a just a correcting/updating/informing follow-up blog post of how we the users got it all wrong. In fact, the current UPDATE makes it worse:
"UPDATE: We’ve seen a little confusion about the language regarding licenses, so we want to clear that up. We need a license to allow us to make some of the basic functionality of Firefox possible. Without it, we couldn’t use information typed into Firefox, for example. It does NOT give us ownership of your data or a right to use it for anything other than what is described in the Privacy Notice."
vs. the ToS:
"You give Mozilla all rights necessary to operate Firefox, including processing data as we describe in the Firefox Privacy Notice, as well as acting on your behalf to help you navigate the internet. When you upload or input information through Firefox, you hereby grant us a nonexclusive, royalty-free, worldwide license to use that information to help you navigate, experience, and interact with online content as you indicate with your use of Firefox."
No - you don't need a license for my input. Just pass the butter, it's not your job to "use that information" in any way, form or shape. How did you survive 26 years without any license to our input? What did legally change that would require that license? No one asked you to: "We use data to make Firefox functional and sustainable, improve your experience, and keep you safe." (from the blog). What does that even mean? If you have specific use-cases in mind state them clearly, instead of this overreaching general license, that may or may not be misused now or in future. As of this ToS you may very sell my data to AI companies to "help me navigate the internet" which is not even part of the Privacy Notice protection.
Reinstatement your privacy guarantees in the ToS and be transparent about explicit use-cases.
Meanwhile, so long, and thanks for all the fish.
flir
I haven't read the article. All I know is, Firefox changed their TOS.
> That clearly indicates some "other" future motive
It's training data, isn't it?
(It's always training data).
stateoff
I was referring to Mozilla's past investment into advertising: https://blog.mozilla.org/en/mozilla/mozilla-anonym-raising-t...
To me that and the new ToS add up, why else would they remove the FAQ entry.
null
walrus01
Based on this, Firefox has a 2.54% market share of browsers worldwide, so if their goal here is to shoot themselves in the foot and get that number under 2%, mission accomplished.
Firefox is still the lesser of two evils when compared to Chrome with all of its telemetry turned on. And at least it supports a proper implementation of uBlock origin, which Google just broke in Chrome.
https://gs.statcounter.com/browser-market-share
previous discussion from mid 2023 on low firefox market share: https://news.ycombinator.com/item?id=36759162
apalerwuss
The problem I have with these kinds of hot-takes is that they often don't tell the full story, and it's seemingly for the purpose of generating rage. For some inexplicable reason, this guy truncates the paragraph from the Terms of Use, repackaging the information without a key part of the final sentence: "....to help you navigate, experience, and interact with online content as you indicate with your use of Firefox."
I'm not saying that this definitely makes a material difference, but it certainly changes the framing of it. The way he has framed it makes it sound like Mozilla has given itself carte blanche to do what it wants -- but the little caveat at the end of the sentence really does change the narrative a little bit. So why cut off a sentence half-way through it -- is it maybe to make it sound worse? For that reason alone, I can't take this guy seriously.
dizhn
That bit pretty much sounds like "by using the software you're agreeing to whatever"
immibis
No it doesn't. Most businesses finish that sentence with "...for any purpose" not "... to help you navigate the web"
misnome
> "....to help you navigate, experience, and interact with online content as you indicate with your use of Firefox."
We weren't born yesterday, and companies pull this shit all the time. This sentence is meaningless. You could use this sentence to justify literally any behaviour.
One _easy_ way to read this change:
> "... to help you interact with online content"
Selling your data to have more relevant ads could easily be justified as helping you interact with online content
> as you indicate with your use of Firefox.
Using firefox indicates that you want us to do this.
Or,
we made it an opt-out that is quietly rolled out in an update.
lupusreal
Correct, that quote is very typical corporate language that includes selling your data to advertising companies to ""help users discover new experiences which align with their interests"" or some other weasel speak. People acting like that language meaningfully changes the meaning are either painfully naive or think the rest of us are.
If it's simply a matter of principle, quoting the full section with no abridgements because we're larping like we're in a court room or something, whatever. But get real, that section doesn't make Mozilla look any better.
bolognafairy
No. We are talking about legality. Quote the whole bloody thing. If you don’t get to say “I picked out the bit I like” in court, then you don’t get to do it here. If you’re so right, then it’s not worth taking out in the first place.
apalerwuss
Yes exactly this -- thank you for getting my point, I'm a little tired of internet people misunderstanding things. I'm not even disputing that Mozilla is trying to pull a fast one on all of us, I'm purely questioning the framing by the "journalist" this post links to. To be taken seriously, quote the whole thing -- if it really is a case that the last part of the sentence is meaningless, then leave that in your quote, and address that in your wittering diatribe, explaining to all of us why it's meaningless. Without that, all I see is someone cherrypicking half-sentences and trying to mislead people.
thorw93040494
But Mozilla said what they will do. They also had very expensive rebranding to support it! They are now activist AI company that wants to fight disinformation, censor people and sell ads.
rectang
[flagged]
nindalf
You know, I was just wondering why no one has yet shaped the Rust vs C/C++ in US culture war terms. One side is clearly progressive in the sense of wanting to make changes for the sake of a better (more memory safe) future. The other side is more conservative, seeing enormous benefit in keeping the status quo unchanged.
And that's before getting into the politics of the people working on the language, of which I won't say more.
Here was me thinking we had at least one discussion where the US culture war hadn't metastasised. But I guess in the long run twitter.com/lundukejournal and friends will eventually win. Can't say I'm looking forward to it.
null
pmontra
> When you upload or input information through Firefox, you hereby grant us a nonexclusive, royalty-free, worldwide license to use that information,
Taken literally it means that when I use Firefox to upload a file to a customer's web site Mozilla is getting that file too, which does not seem likely. They could get a copy of the text I'm typing right now in Firefox or it means that the browser could do some local processing on those data. But if the results of that processing would stay local why would they ask the permission? It's not that emacs, vim, grep, sed, awk etc have to ask me the permission to use the information I'm inputting into them. So they are definitely sending information back home or they plan to do it.
The point becomes how to block any calls from Firefox to Mozilla. Note that don't have a Firefox account because I never trusted that the data in transit from them would stay private. I'm not logged in into Google as well. Maybe I have to finally install a Pi Hole and route all my traffic through it. Hopefully Blockada will take care of that for my Android devices.
Digit-Al
I have seen discussions of this sort of wording so many times over the years. My understanding is as follows (and I could be wrong, but this is my understanding of why that wording is used). If you use Firefox to upload a file to a website then, legally speaking,the browser is acting as a "publisher"of that file. Because of Draconian laws in many countries, to publish a file you have to have a legal right to the file, therefore Mozilla have to establish that if you use them to upload a file that you are granting them the legal right to publish that file. It has to be worldwide because you may be uploading to anywhere in the world.
Zak
Perhaps the legal situation is different somewhere, but I would think the browser isn't acting at all. It has no agency; it's just software running on my computer, following instructions I give it. Mozilla has no agency in that situation either; the software is running on my computer, not theirs.
The new terms grant Mozilla, the corporation a license to do things with my data.
alt227
As the browser runs locally on our machine, surely its possible to just block firefox phoning home by DNS black holes or even hosts file or something?
vntok
That's exactly what Firefox originally claimed was a stark difference compared to Chrome: "use us and you can finally be safe and not need to play cat and mouse anymore"
thorw93040494
Who cares? Mozilla does AI, they can do all procesing locally, and only report, if local model finds something "harmful". I will not allow some lobotomized tiny local AI model to decide I am a naci, and call police to SWAT my house. We know how it goes with face recognition!
Mozilla is an activist company, that wants to censor, and punish some groups of people. I am not going to give them access to my passwords, documents and emails, and play some stupid game of cat & mouse with firewall rules!
TV manufacturers can get away with such practices, because TVs are sold on deep discounts, and is easy to block network access (never plug ethernet). Browser has tons of free competition, and it is impossible to block network access!
lupusreal
At this point my trust in Mozilla is so low that I could almost believe they intent to run the text I download and upload through an LLM nanny that can scold or ban me if anything offends its Californian sensibilities.
> Your use of Firefox must follow Mozilla’s Acceptable Use Policy, and you agree that you will not use Firefox to infringe anyone’s rights or violate any applicable laws or regulations.
> You may not use any of Mozilla’s services to [...] https://www.mozilla.org/en-US/about/legal/acceptable-use/
rich_sasha
It's all so strange. I would happily buy Firefox, either as a one off, or as an annual license, and be done with all the weird license nonsense - presumably they want to sell data to pay the bills.
But instead the choice, realistically, seems to be between giving all my browsing data to Google and to Mozilla. And Chrome works marginally better... :/
drusepth
I would wager most people that offer to buy software "one off" typically underestimate their lifetime worth earned through other means like ads and data sales.
Would you pay a one-time $10 for a lifetime Firefox license? $100? $1,000? $10,000?
closewith
Last time I checked, Mozilla's ARPU was less than $5 pa. I think many of us would pay a multiple of that per annum _iff_ it went towards Firefox and not whatever project/cause of the week that Mozilla has undertaken.
bad_user
You're overestimating people's willingness to pay for software when free and arguably better alternatives are available. Preferring Firefox to free Chromium alternatives requires a level of nuance and tech literacy that most people will never have, and even with that tech literacy, people may still prefer Chromium.
You're basically talking about asking for donations from people that prefer to ad-block YouTube instead of paying for Premium.
rich_sasha
Without thinking much about it, $60 / yr seems reasonable to me.
I never click on any ads, so while I'm sure I contribute to Firefox's revenue as another pair of eyeballs, I don't deliver any end value to their ad-biz end customers.
mppm
This logic applies more to Google than Mozilla. Their mission is (or ought to be) to cover development and hosting costs associated with Firefox, not to milk users for all they are worth on the ad market.
nonrandomstring
Firefox is open source. You can take the source code and strip out all of the malware, spying, telemetry and corporate harm leaving a safe and private browser (to the extent any modern browser can be).
There are multiple forks that do that. Download one of them instead. Mozilla Corporation has no control over those, so if you don't like what Mozilla make, exercise your software freedom.
The problem with Mozilla, as far as I can see, is not the the compromises they make for obtaining money (everyone suffers that), its that they're deceptive and underhand about it. That makes them unethical. I wrote plenty regarding that here [0]
[0] https://cybershow.uk/blog/posts/you-are-too-dumb-for-tech/
KingMob
The problem with these privacy-first Firefox forks is none have the resources to match FF.
If Firefox dies, eventually so will they, as the code stagnates relative to better-funded browsers.
Saying "switch to a privacy-first fork" is not a long-term solution.
nonrandomstring
> Saying "switch to a privacy-first fork" is not a long-term solution.
You're 100% right while operating in an environment that is hostile to privacy. In these conditions security/privacy remains mostly tactical, not strategic. In fact, against a predominant tyranny it is insurrectional. Free Software will have to learn to adapt with more intelligence-sharing and opportunistic manoeuvres.
As an aside though, one might generalise to say there are no long term solutions in tech, period. And therefore advocates of freedom and privacy are at no particular disadvantage relative to any opponents.
baobun
Rather than downloading random binaries from random forks (or clamour for governance at the sidelines), you can take back more control by building your own fork.
Librewolf and Waterfox are two fine choices to use for upstream sincr they have saner defaults and make the forking and building easier to wire up.
Ive been running my own FF fork for a few years like this now.
createaccount99
Sigh. This is a fundamental misunderstanding of Mozilla's situation. The "weird license nonsense" you're vaguely gesturing at doesn't even make sense in context. Firefox is open source under MPL 2.0.
Your framing that "the choice is between giving all my browsing data to Google and to Mozilla" creates a false equivalence. Even with their recent privacy policy changes, Mozilla's approach is structurally different from Google's core business model.
And "Chrome works marginally better"? By what metric? Firefox has better memory usage, stronger privacy protections, and doesn't exist primarily as a data collection tool for the world's largest advertising company.
The idea that you'd "happily buy Firefox" misses the point of Mozilla's mission for an open web. This kind of uninformed take that ignores the nuances of browser economics is exactly why we can't have nice things on the open web.
dogleash
Even with their recent privacy policy changes, Mozilla's approach is structurally different from Google's core business model.
>This wouldn't be so bad if it wasn't that the entire brand identity of Firefox is Privacy.
>It's like discovering there's ham in a vegetarian sandwich. When you ask them they look puzzled and say their focus group was clear it tastes a lot better that way, besides it's just a little bit and the bread is vegetarian and there's way more meat in a Big Mac.
alt227
If only people cared as much about privacy as vegetarians do about not eating meat...
tucnak
> Firefox has better memory usage
At the cost of a subpar cache; it's not like Chromium is leaking memory, & its memory pressure effects are both well-studied and well-understood. Yet, Firefox stans keep touting lack of comprehensive caching as some kind of advantage. I'm sorry, this is not 2005. It took Mozilla two years to implement some kind of JIT pipelining, and guess what, Chromium had V8 all along: an engine that can benefit from "open web" cooperation courtesy of Nodejs and the vast ecosystem around it. SpiderMonkey? Please. This is the crux of the issue.
> The idea that you'd "happily buy Firefox" misses the point of Mozilla's mission for an open web.
The idea that the web—chaperoned by the likes of Mozilla, can be "open"—is the crazy, unsustainable one. OP is being pragmatic, and considering their privacy carefully. Mozilla's track record is that of a gravely mismanaged, disoriented, and subservient (Google) organisation. Firefox codebase is arcane, was already showing age even ten years ago, & now there's a whole ecosystem of Chromium-based browsers that can benefit from "open web" cooperation.
Firefox has zero moral high-ground, & pretending like it possesses some kind of virtue is a crime against semantics.
t43562
I think it's just as well not to have a monoculture (i.e. chomium-based-browsers).
Just being different and capable of rendering websites makes the web a place where standards matter. It doesn't have to be noble to make this happen.
Firefox is just standing in there like a marker - as long as there's AN alternative, there's a chance for ANOTHER alternative.
null
scheeseman486
> "Chrome works marginally better"
Performance, compatibility, security. Chromium runs faster, it works with more websites, it's sandbox is better, particularly on Android. I don't care much about memory usage as I don't need a billion tabs open at once (does anyone). There's options available beyond Chrome that offer most of the same privacy benefits as Firefox does.
I think marginal is an understatement. As for Mozilla's business model, what business model? They're throwing everything at the wall to see if it sticks and virtually nothing has, all the while their browser has languished. Going full cynic, at this point the only reason it is allowed to exist is because Google deem it useful to have it around as a counterpoint to accusations that they have a monopoly.
Sharlin
> (does anyone)
Oh yes. And you don't even need that many tabs open for Chrome to eat half of your RAM.
_mitterpach
Link directly to the Github commit: https://github.com/mozilla/bedrock/commit/d459addab846d8144b..., which links to the following issue: https://github.com/mozilla/bedrock/issues/16016
There are a bunch of locked Google docs linked in the issue, probably internal privacy guidelines.
I can't say that this surprises me, perhaps they are looking for alternate revenue streams in case Google cuts them out?
To HN: Will you be quitting firefox over this change, or is there simply no better place to leave for?
perihelions
What's the purpose of gating "we don’t sell access to your data" by "if switch('firefox-tou')"?
{% if switch('firefox-tou') %}
<p>Firefox is independent and a part of the not-for-profit Mozilla, which fights for your online rights, keeps corporate powers in check and makes the internet accessible to everyone, everywhere. We believe the internet is for people, not profit. You’re in control over who sees your search and browsing history. All that and exceptional performance too.</p>
{% else %}
<p>Firefox is independent and a part of the not-for-profit Mozilla, which fights for your online rights, keeps corporate powers in check and makes the internet accessible to everyone, everywhere. We believe the internet is for people, not profit. Unlike other companies, we don’t sell access to your data. You’re in control over who sees your search and browsing history. All that and exceptional performance too.</p>jordanb
They said in the commit comment that the new TOU will "roll out" to different people at different times.
nicbn
Does that in multiple places. Maybe they wanted a way to quickly revert it? Or enable on countries where they think they can get away with it?
c0l0
"No better place to leave for" seems an apt way to put it.
I think/fear that in the long run, there will be fewer and fewer ways to participate in activities and communities on the web on your own terms, as only a vetted, allowlisted set of client builds (that may be "open source" on the tin, but by that point it is effectively meaningless) will be able to pass CDN "anti-abuse" restrictions. It will not be a better web, but it sure will be more profitable for some.
nonrandomstring
> No better place to leave for
This is an amazingly common psychological trap. You wouldn't believe the number of people, men as well as women, who end up in the therapy chair, at the police station or at the hospital A&E, because they are "stuck" with a violent and abusive partner.
The modern tech landscape is all about abuse. People use fancy names for it like "enshitification" or "rot economy" - but at the end of the day it's about domination and abusive relations.
A very common position here is that the victim sees "no alternative".
And... surprise surprise, where they get that idea from is the partner, friends, group/organisation that is also toxic and colludes in gas-lighting and co-abusing the victim into a limited worldview.
Once the victim spends any amount of time outside that mental prison, they regain perspective and say... "Oh, so I actually do have choices!".
mafuy
This is a poor analogy. There are thousands of people to meet and bond with, so you do have a choice. But there are less than a handful of fundamentally different browsers.
Derivative browsers don't really count here, as they depend on the upstream to not hurt them. For instance, if the parent project completely removes something essential for privacy, it it a lot of work to keep it in your code. The Manifest v2 removal is an example. Over time, when other changes are built on the removal, this creates an increasingly high burden. Eventually, the child project is starved. You simply do not want to be in this position.
matsemann
> To HN: Will you be quitting firefox over this change, or is there simply no better place to leave for?
Not to be overly whataboutistic, but we tolerate sooo much more from other players. It's annoying how we hold some to a higher standard, but ignore others doing worse. I get people are disappointed in Mozilla and wants them to do better, but it's a bit like the "we live in a society meme", where those doing good must be perfect or else..
jordanb
I use Firefox, and advocate for people to use Firefox, because I believe it's the one browser that is not evil. It's the entire reason for the existence of Firefox.
Saying, well, why aren't you upset that Chrome is evil is such a confusion of ideas I barely know how to respond. Yes, I know Chrome is evil, I've been telling people that for many years, and I don't use it.
windward
Those perceived to be doing good are often used to lessen the blow of those perceived to be doing bad. Like how it's not so bad if your train sinks of faeces if there's a bus you can take instead. Losing the safe alternative makes the original sin worse.
chad1n
I quit the original l"Firefox" a long time ago, I've been using librewolf since its release and now zen (also a firefox fork) and I keep ungoogled chromium in case a site is broken on firefox.
1cecreamface
I'll keep using firefox simply because I keep it behind a proxy server with all pocket, mozilla, firefox and google domains blocked.
The larger impact I suspect this will have in my life, is that I'll increasingly turn to not using websites, opting instead to using tools like yt-dlp.
These changes didn't just happen because of a bunch of greedy ad pushers. This and many other changes over the last few decades came about by taking my tax money and pouring it into these companies to gain compliance to state agendas. This isn't something the 'community' will be able to stave off.
If the internet is just going to become another medium like TV, Radio and newspapers were for so many years, adding on top the ability of the producers to watch me watching them, then it's over. The tech community is full of intellectual dishonest sellouts. Game over. Let's push letsencrypt again in response to the state backdooring the certificate authorities, duuurrr. "AI", duurrrr.
jonathanstrange
I'll stay for the time being because there is no better alternative.
akimbostrawman
I have long left the sinking ship and switched to enshitified and actually private https://librewolf.net/
KingMob
Which will go under within a few years of FF dying. (Yes, the current code may still work, but the web will move on without it.)
em-bee
i don't think that matters. we are looking for firefox based alternatives to get away from stupid policy changes, not to find a browser that has a better chance of survival.
any alternatives will be good as long as firefox is alive. if firefox itself dies, then that's an entirely different matter.
akimbostrawman
I am very aware but that does not change that currently its a superior alternative.
rvense
Yeah, I've been a Firefox user and Mozilla supporter for approaching two decades now, even used to donate monthly to the foundation. I'm furious over this. I installed LibreWolf on my personal machines last night and expect to uninstall Firefox after work today.
Parae
I'm a happy LibreWolf for years. The transition from FF to LibreWolf is seamless. And you won't be surprised anymore nor annoyed when Mozilla does moves like that.
linker3000
It's seamless-ish.
Sometimes the more aggressive privacy settings stop some sites from rendering properly unless you add canvas exceptions, for example Openstreetmap and UK National Rail.
I'm happy to make the effort.
/Librewolf on desktop, Waterfox on mobile.
rvense
I probably will, actually. It was good to have an ally with their stature and history.
AnthonyMouse
Debian feature request: A system-wide switch to disable all telemetry and "cloud integration" features that make any network connection to the developers' or developers' partners' servers, applied to all software distributed in the official repositories.
akimbostrawman
Just use https://librewolf.net
AnthonyMouse
So:
# apt install librewolf
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
E: Unable to locate package librewolf
Also, that feature should exist. The next time I see a story about MS training ChatGPT on your nude selfies, I want to be able to show people the big red switch that says "All Telemetry: OFF" as an example of something Microsoft will never give them.
But you first have to provide it in order to show to them that you provide it.
akimbostrawman
That is a distro problem not a software problem. Librewolf is available as a flatpak meaning on every Linux desktop distro.
https://flathub.org/apps/io.gitlab.librewolf-community
If you want to be pendantic again:
apt -y install flatpak && flatpak install io.gitlab.librewolf-community
rasmus-kirk
Apt is basically just a bad package manager:
nix run nixpkgs#librewolf
7373737373
It's time for distributions to only include browsers developed by non-profits
roenxi
If Debian could just stick to free software that'd be grand. It is a good ideology and there is no need to change it. Introducing ideological confusion is one of the paths to organisational rot.
MathMonkeyMan
Which network access is telemetry?
AnthonyMouse
User explicitly requests connection to a specific server (e.g. navigates to debian.org), so browser makes a connection to debian.org: Not telemetry.
User explicitly requests a connection to a specific server (e.g. navigates debian.org), then browser makes a connection to mozilla.org to upload metadata: Telemetry.
In general telemetry is when the software connects to a server chosen by the developers and not telemetry is when the software connects to a server chosen by the user.
MathMonkeyMan
When I open Slack, to which servers am I explicitly requesting a connection?
I see your point, but my point is that implementing this is either impossible or would require changing how networks are used by programs at a fundamental level.
A middle ground might be to create a distro that uses something like SELinux to prevent all network access to non-system processes. Then each package would have to be audited to determine which addresses it can bind to, and/or which name lookups it can do, and how those capabilities are connected to actions performed by the user. Then there is still the question of what to do about software that accesses the network independent of the user, but maybe you can argue that shouldn't exist. How do updates work? Besides, if I allow Slack to connect to mychats.slack.com, nothing prevents the software from sending telemetry to that endpoint. You would need an army of manual enforcers, and that's not to mention non-free software.
aembleton
Would cdn-debian.org be allowed? Its on a different domain, but I've noticed a lot of websites use a different domain to host their CDN.
nanis
This is pure speculation, but what are the chances this change is simply an attempt to provide legal cover what they might have started doing 50 versions ago?[1]
aleph_minus_one
According to the tweet, Mozilla claimed
> “Does Firefox sell your personal data?”
> “Nope. Never have, never will.”
I do believe that never is a very, very clear statement (concerning every possible future) that needs no legal cover.
baobun
Been using Firefox as main browser since it was called Mozilla.
It's the only desktop application I've consistently installed on every desktop for that long. This is the end of that era and ends the streak.
It's as frustrating as it's sad.
MortyWaves
I see a lot of people suggesting Brave, but is it still full of crypto nonsense?
DaSHacka
The coin is still baked into the browser, but it's disabled by default and doesn't really nag you about it.
At least, that's how it was when I used Brave around 2021-2022.
I've long-since moved to Librewolf, but it's my 'plan C' browser if SHTF with firefox and its downstream forks ('plan B' being Ungoogled Chromium)
andirk
Brave has a couple crypto features in the UI but that's about it. I'm big on crypto but I don't use any of the browser's crypto features. Just a browser that cuts most of the bullshit out.
TingPing
Yes.
qwertox
What I ask myself is why is Firefox collecting months of telemetry data if sending telemetry is disabled.
If I disable telemetry, I would also expect it to not get collected.
procaryote
So... for the most practical question:
Anyone have a favourite Firefox fork that removes this and doesn't add other spyware or reinvent the UI too much?
DaSHacka
That's almost exactly describing Librewolf, though it adds a ton of privacy 'hardening' features out-of-the-box, which can be a positive or negative depending on who you ask.
I personally use Librewolf with the Lepton (Photon style) UI[0], which replicates the previous UI style Firefox used a couple years ago, with small square tabs and condensed menus, before the current pseudo-tabletified abomination.
Of course, if you like the current UI—you'd literally be the first person I've met to like it—you can just use librewolf stock and it doesn't apply any changes to the standard Firefix UI.
I might have differed with Brendan Eich on a few matters, but he was a good steward of Firefox in my book.
When Mitchell Baker took the reins, Mozilla became rather more heavy-handed towards us - the irony being that Waterfox was once proudly displayed on the Mozilla website under their "Powered By" banner.
I appreciate the constant existential wobble Firefox faces, but they've made some peculiar decisions as of late.
On one hand, they're finally implementing features users have been clamouring for ages (tab groups, vertical tabs and the likes) - on the other, rather odd policy choices.
I should point out, it seems daft to me when others suggest using forks with no well-established governance of their own, essentially shifting trust from an organisation at least answerable to certain regulations, to individuals with no proper framework or guidelines.
I've done my best with Waterfox over the years to have it represented by a proper legal entity with policies to follow; so if anyone is interested take a look.
Edit: FWIW I've written some more thoughts on it here: https://www.waterfox.net/blog/a-comment-on-mozilla-changes/