Firefox's Enhanced Tracking Protection whitelists Google, Instagram... and Winamp?

Firefox adds Enhanced Tracking Protection that blocks tacking cookies. But specifically allows tracking from Google, Amazon, Microsoft, Yahoo. Adobe, and ... Winamp?


https://www.invidio.us/watch?v=UqkeZIPLY5M

https://www.youtube.com/watch?v=UqkeZIPLY5M

Web player: http://podplayer.net/?id=72699650

mp3: https://www.robertabittle.com/podcasts/lunduke/Firefox-39s-Enhanced-Tracking-Protection-whitelists-Google-Instagram-and-Winamp-UqkeZIPLY5M.mp3


More info about this:
https://t.me/ffconfig/55


#ff #firefox #tracking

Google Chrome has become surveillance software. It’s time to switch

https://outline.com/X5zMVJ

https://www.washingtonpost.com/technology/2019/06/21/google-chrome-has-become-surveillance-software-its-time-switch/?noredirect=on

Our latest privacy experiment found Chrome ushered more than 11,000 tracker cookies into our browser — in a single week. Here’s why Firefox is better.


#google #chrome #firefox #ff #why
📡 @NoGoolag

user.js-updater by Fennec F-Droid | CHAT

Apply a security and privacy enhanced configuration to Firefox based browsers on android with this app:

https://github.com/v1nc/user.js-updater


1️⃣ Download and install Fennec F-Droid.
2️⃣ Download and install user.js-updater app from HERE
3️⃣ Start for the first time (offline mode/no data connections) and wait about 5 sec.
4️⃣ Close Fennec.
5️⃣ Open user.js-updater app.
6️⃣ Select the browser you want to apply user.js through the "SELECT BROWSER" bar at the top.
7️⃣ Select custom and paste in "custom user.js url" bar this link:

https://git.nixnet.xyz/quindecim/fennec_user.js/raw/branch/master/user.js

or MIRRORS:

https://git.lelux.fi/quindecim/fennec_user.js/raw/branch/master/user.js

https://git.lushka.al/quindecim/fennec_user.js/raw/branch/master/user.js

8️⃣ Tap "UPDATE" at the bottom and grant root permission to proceed.
9️⃣ Start Fennec and test:
_ Go to: about:config
_ Look if config.applied is true

❇️ Remember to enable connection to "Media Storage, Download Manager, Downloads, MTP Host" to see the app work correctly.


After applying, add ublock origin and extra blocking lists: https://lushka.al/blocklist/


📡: https://t.me/qd_invitation

#ff #firefox #fennec #browser #hardening #userjs

HARDENED CONFIG FILES PROJECT for FIREFOX:

📡: https://t.me/qd_invitation

ANDROID:
https://git.nixnet.xyz/quindecim/mobile_user.js

DESKTOP:
https://git.nixnet.xyz/quindecim/mozilla.cfg

#ff #firefox #fennec #config #hardening #privacy #quindecim

Firefox Announces New Partner in Delivering Private and Secure DNS Services to Users

https://blog.mozilla.org/blog/2019/12/17/firefox-announces-new-partner-in-delivering-private-and-secure-dns-services-to-users/


#firefox #ff #dns

Mozilla has pushed out an update to patch a critical vulnerability in Firefox

It’s urging users to update as quickly as possible — and it’s joined in that warning by the US government.

Chinese cybersecurity firm Qihoo 360 reported the zero-day exploit. Mozilla claims to be aware of “targeted attacks in the wild abusing this flaw”

https://thenextweb.com/security/2020/01/10/upgrade-firefox-critical-vulnerability

https://www.mozilla.org/en-US/security/advisories/mfsa2020-03

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-17026


#ff #firefox #update #security #flaw #bug

Firefox now shows what telemetry data it's collecting about you

https://www.zdnet.com/article/firefox-now-shows-what-telemetry-data-its-collecting-about-you


#ff #firefox #telemetry

Hardening your favourite Firefox for Android with:

User.js Updater 1.3.3

• Added Firefox Preview Nightly
• Fixed installation errors on Android 4.4 and below

https://github.com/v1nc/user.js-updater/releases/download/v1.3.3/user.js-updater-1.3.3.apk

[ROOT REQUIRED]

📡 From Fennec F-Droid | CHAT at @qd_invitation

#ff #firefox #fennec #userjs

Firefox Privacy - The Complete How-To Guide including a List of about:config customizations
via RestorePrivacy.com

For more info - click 👉🏻 #ff #FireFox #userJS - or here: t.me/NoGoolag/99 to learn about Mozilla-based Fennec browser

#internet #browsing #surfing #privacy #security #online #browser #tutorial #howTo

Latest Fenix (Firefox Preview) Nightly got more extension support

You can get it here:
https://firefox-ci-tc.services.mozilla.com/tasks/index/project.mobile.fenix.v2.fennec-nightly/latest

#fenix #ff #firefox #preview

Firefox Send offline due to malware distribution

Mozilla has taken his Firefox send offline. This is due to malware abuse of the file transfer. The service is being revised.

The Firefox Send web service, which was launched by browser manufacturer Mozilla just under a year ago, is offline. However, this is not a short failure or error. Mozilla itself pulled the plug on the service, which is supposed to transfer files quickly, easily and encrypted over the web.

On the service's website it says: "Firefox Send is temporarily unavailable while we work on product improvements. Thank you for your patience as we improve the Firefox Send experience". Details or a public statement as to why the Service is currently unavailable from Mozilla are not available on the website.

https://send.firefox.com/

👉🏼 Read more 🇬🇧:
https://www.zdnet.com/article/mozilla-suspends-firefox-send-service-while-it-addresses-malware-abuse/

👉🏼 Read more 🇩🇪:
https://www.golem.de/news/mozilla-firefox-send-wegen-malware-verbreitung-offline-2007-149529.html

#mozilla #ff #firefox #send #malware
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Welcome a new Fennec F-Droid

https://forum.f-droid.org/t/welcome-a-new-fennec-f-droid/11113
By relan F-Droid Contributor
10 days ago

I have just submitted 300 a Fennec update to 81.1.1. Should be available soon™. This version brings a lot of changes, like a new UI and modular codebase. The bad news:

Mozilla now tracks you even more actively using proprietary 3rd party services. I removed all tracking I found. (Firebase, Adjust and Leanplum libraries were replaced with stubs, so some analyzers can erroneously report their presence in the APK.)

The new UI may break your habits and disappoint you. (IMHO it’s not that bad as one can conclude from reading r/Firefox.)

Android 5.0 or later is now required. Mozilla decided so.

x86 devices are not supported anymore. I stumbled upon linkage errors and gave up. Help is welcome.

The good news is that Fennec F-Droid is alive and continues to be truly free software.


#fennec #ff #firefox #fdroid

Google Safebrowsing can no longer be disabled on mobile Firefox

I am reposting this because I was shadowbanned from Reddit with no reason given by their Anti-Evil Operations Team for several days which means nobody saw this even after it was restored:

[No way to disable Phishing and Malware Protection for users who are suspicious of Google and leaking browsing history to Google.](https://github.com/mozilla-mobile/fenix/issues/14163)

Relevant content on the failure of anonymization:

[How safebrowsing fails to protect privacy](https://blog.trailofbits.com/2019/10/30/how-safe-browsing-fails-to-protect-user-privacy/)

[A Privacy Analysis of Google and Yandex Safe Browsing](https://hal.inria.fr/hal-01120186v4/document)

> Our experimental analysis estimates the rate of such collisions and shows that hashing and truncation fails to prevent re-identification when a user visits small-sized domains or certain URLs of larger domains. We further materialize this in the form of an algorithm that Google and Yandex could potentially employ to track users. We conclude this work by providing an analysis of the databases of Google and Yandex (Section 7). By crawling their databases, we detect a number of “suspicious” prefixes that we call orphans. Orphans trigger communication with the servers, but no full digest corresponds to them. We also observe several URLs which have multiples prefixes included in the blacklists. These provide concrete examples of URLs and domains that can be easily tracked by Google and Yandex.

https://github.com/mozilla-mobile/fenix/issues/14163#issuecomment-680291892

> Does it have the potential of sending full URL-s to Google? Yes, it does. From the page given by you:
"Otherwise, send the binary file's metadata to the remote application reputation server (browser.safebrowsing.downloads.remote.url) and block the download if the server indicates that the file isn't safe."
with the link on "metadata" leading to parts of code where there is setting in request properties of origin URL. If I read code correctly - https://dxr.mozilla.org/mozilla-central/source/toolkit/components/reputationservice/ApplicationReputation.cpp#1306 - it is stripped from query params, but full hostname + path ARE included in this case.

https://forum.f-droid.org/t/google-safebrowsing-can-no-longer-be-disabled-on-mobile-firefox/11224

https://redd.it/j5i8h1
@r_privacy

#ff #firefox #Google

Firefox: The Jewel^WEmbarassment of Open Source

https://drewdevault.com/2020/10/22/Firefox-the-embarassment-of-FOSS.html

Comments
https://news.ycombinator.com/item?id=24862825

#ff #firefox #Embarassment

Mull

This is a privacy oriented and deblobbed web browser based on Firefox. It enables many features upstreamed by the Tor uplift project using preferences from the arkenfox-user.js project. It is compiled from source and proprietary blobs are removed using scripts by Relan.

Source code : https://gitlab.com/divested-mobile/mull-fenix

Project website: https://divestos.org

F-Droid repo:
https://divestos.org/fdroid/official/?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467


📡 @NoGoolag 📡 @Libreware
#mull #web #browser #ff #firefox #fennec

Firefox for Android makes it even easier to add new browser extensions

Although Chrome dominates the mobile browser space on Android, Mozilla’s Firefox is a decent alternative with added — but limited — support for third-party extensions that make it a potential candidate for your browsing needs.

Adding new extensions has been a bit of a pain though for a while, so Mozilla has now decided to streamline the process and make it even easier to add or find browser extensions to the Android build of Firefox. Firefox 85 is set to begin rolling out from January 25, 2021, and will include the ability for Android owners to add or install extensions to their mobile browser directly from adding.mozilla.org.

While this is great news, you will still be limited to adding “official” extensions to the Android version of Firefox. The old method of adding extensions using the Add-ons Manager is likely to be removed, as Mozilla confirmed that user confusion meant this new method is being implemented.

"Previously, extensions for mobile devices could only be installed from the Add-ons Manager, which caused some confusion for people accustomed to the desktop installation flow. We hope this update provides a smoother installation experience for mobile users."

https://9to5google.com/2021/01/21/firefox-for-android-makes-it-even-easier-to-add-new-browser-extensions/

#firefox #ff #android #browser #extensions
📡@cRyPtHoN_INFOSEC_DE
📡@cRyPtHoN_INFOSEC_EN
📡@BlackBox_Archiv
📡@NoGoolag

Firefox 86 introduces 'Total Cookie Protection'

https://blog.mozilla.org/security/2021/02/23/total-cookie-protection

#ff #Firefox #cookies

Introducing Site Isolation in Firefox

When two major vulnerabilities known as Meltdown and Spectre were disclosed by security researchers in early 2018, Firefox promptly added security mitigations to keep you safe. Going forward, however, it was clear that with the evolving techniques of malicious actors on the web, we needed to redesign Firefox to mitigate future variations of such vulnerabilities and to keep you safe when browsing the web!

We are excited to announce that Firefox’ new Site Isolation architecture is coming together. This fundamental redesign of Firefox’ Security architecture extends current security mechanisms by creating operating system process-level boundaries for all sites loaded in Firefox for Desktop. Isolating each site into a separate operating system process makes it even harder for malicious sites to read another site’s secret or private data.

We are currently finalizing Firefox’s Site Isolation feature by allowing a subset of users to benefit from this new security architecture on our Nightly and Beta channels and plan a roll out to more of our users later this year. If you are as excited about it as we are and would like to try it out, follow these steps:

💡 To enable Site Isolation on Firefox Nightly:

1.) Navigate to about:preferences#experimental

2.) Check the “Fission (Site Isolation)” checkbox to enable.

3.) Restart Firefox.

💡 To enable Site Isolation on Firefox Beta or Release:

1.) Navigate to about:config.

2.) Set fission.autostart pref to true.

3.) Restart Firefox.

With this monumental change of secure browser design, users of Firefox Desktop benefit from protections against future variants of Spectre, resulting in an even safer browsing experience. If you aren’t a Firefox user yet, you can download the latest version here and if you want to know all the technical details about Firefox’ new security architecture, you can read it here.

https://blog.mozilla.org/security/2021/05/18/introducing-site-isolation-in-firefox/

#ff #firefox #site #isolation

What is a Browser Security Sandbox? (Learn to Hack Firefox)

https://www.youtube.com/watch?v=StQ_6juJlZY

#sandbox #ff #firefox

Firefox shills the current thing

#ff #firefox #censorship #cancel