How come?
We very publicly discussed our approach to fingerprinting and the reasoning for this. But a basic TL;DR is that we’re using a hardened configuration of FPP - which matches all of RFP’s targets, except the few known to cause breakage/be undesirable for users. I’d recommend reading that GitLab issue for a detailed explanation, and please let me know if you have any questions or concerns.
FYI: Arkenfox doesn’t enable RFP by default anymore either, and LibreWolf is also considering switching to FPP with an approach like ours.
Thanks! 👍
In my opinion you should enable it
Didn’t watch out for reasons, maybe iron wolf gives one?
We don’t recommend enabling it; you can see our reasoning as to why we don’t enable RFP here - we use a hardened configuration of FPP instead.
FYI: Arkenfox doesn’t enable RFP by default anymore either, and LibreWolf is also considering switching to FPP with an approach like ours.
If I remember, that setting is extremely aggressive, and breaks lots of sites. Firefox has by default, a more complicated and nuanced feature that works practically as well, without breaking everything.
So is Firefox mobile or Fennec actually better in this regard?
In that specific regard, probably.
I use Fennec. I’ve found the more security minded versions, tend to have problems with some site or another, and annoy me.I noticed that the sites that have issues are the sites I should avoid.
After a while, you just don’t need them if you are willing to make the changes needed to reduce that corpo exposure
Sites like my banks, and local movie theaters, and self hosted VTT games.
I’ve had issues with all. Not acceptable
Firefox selling their ass out so I lost trust in them to be using their apps
Idk why, it doesnt say anything on their gitlab about changing that. Maybe it is a problem with the build process? I remember on Mull a couple months ago i did a clean install and RFP was disabled. You can just enable it if you want.
See here for our explanation.
Maybe consider enabling RFP for private browsing. Is letterboxing enabled?
Ok, might want to make that more clear under the section about issues inherited from Mull which still mentions RFP.
Your explaination seems sound.
Yeah, we’ve been waiting to update documentation until our website is ready (since that’s where we’ll keep everything). You’re right we do need to make this more clear.
Understandable, thank you for your (and contributor’s) work on this project. I am happy that i dont need to compile Fennec with hardening from source for each update.
They changed some basics from Mull and decided to go other ways. That’s why I’m not using thus browser
They changed some basics from Mull and decided to go other ways.
What
basicsdid we change, and why do you have a problem with them?IronFox still has the same core goals/mission as Mull: to provide a privacy & security-oriented Firefox-based web browser for Android. If IronFox isn’t for you, that’s completely fine - but I’m just perplexed by your reasoning here, and would appreciate any elaboration so that we can improve.
What would be your suggestion?
waterfox
Waterfox contains proprietary Google Play libraries, and doesn’t include any hardening when compared to standard Firefox on Android. It’s a completely different project with a different set of goals than IronFox or Mull.
You would be far better off using standard Firefox over Waterfox, in terms of privacy & security.
But weren’t they acquired by some big evil company?
not anymore
Wow. First news. Shitty of them claiming to follow Mull’s legacy if they’re doing their own thing.
Shitty of them claiming to follow Mull’s legacy if they’re doing their own thing.
How?
Our change in approach to fingerprinting was very carefully considered and discussed, both privately and publicly.
FYI: Arkenfox doesn’t enable RFP by default anymore either, and LibreWolf is also considering switching to FPP with an approach like ours.
IronFox still has the same core goals/mission as Mull: to provide a privacy & security-oriented Firefox-based web browser for Android. If IronFox isn’t for you, that’s completely fine - but I just don’t understand how this is
shittyor compromising Mull’slegacy/ideals.What’s the alternative on Android tho? (not saying there isn’t one, just that I don’t know it if it exists)
