Is Firefox still the recommended browser of choice here?

Yup. I’ve been using Firefox for 16 years and I just switched to LibreWolf the other day.

Yeah, and while I don't have any technical qualms about the direction of Mozilla with regard to Firefox, I'm personally switching for peace of mind and because of the aforementioned inability to communicate well. I don't like working with or supporting people that can't just say what they mean. I mean, how hard would it have been to have a human-readable version for stupid people like me and have a legalese version for the lawyers?

Regardless, as people make decisions, they deserve to be informed. It would be stupid to decide to leave Firefox if all you knew was the uninformed outrage of the internet.

They're red flag, but even if their stayed purpose is correct at the moment, it sets the stage. All it takes now is a want to sell the data and there's nothing to slow them down or tell us. Nothing to make them keep the setting to not share telemetry. A little baked in ai, some hooks to monitor ...

Jumping ship to a fork is our only recourse. It's that or ride it out and see if the gun is loaded.

The other fun part is when it updates and changes your privacy settings.

And based on the behavior of other shitty applications and devices what if an update silently changes one of those settings back to a problematic state? If they aren’t there to begin with I don’t have to worry as much

To be fair Mozilla doesn’t have precedent for this behavior but they also didn’t have precedent for this whole nonsense that started this drama a month ago. Things change

It’s not too complicated for a nerd whose hobby is computers or someone who has studied computers, but for the layperson it’s too much.

I'm not sure I buy this argument when there are videos visually walking you through every single step involved in hardening Firefox. Is that still too complex for your elderly parents or grandparents? Maybe. Is it too complex for Millenials and younger generations? Definitely not. The core problem here is just laziness. People are not willing to give up 10 minutes of their day to setup their browser for years of future use because "I don't have time for that".

You're talking about security, but really, none of the privacy questions are about technical security of the product.

"What if you miss a setting?" Then they'll give you article recommendations or send your search query to the search engine you're targeting in the first place. They're really a long way from what you can call a security issue, or sharing personal data with random third parties or data brokers.

if they want to be FOSS or capitalist

I really don't see any basis for this take. It's not about picking one of two extremes, and the most extreme niches in those.

They create FOSS, and look for privacy respecting partnerships and investment so they can keep it going.

They added ToS because they're integrating services, like their synced/backed up browser data and other respectful integration.

That's all a long way from malice, or significant problematic behavior. And you still have more choice than on the other biggest alternatives.

I don't think it is the best we could have, I would like it a bit different too, but the way you make it out to be is way overblown if not wrong.

I just tried now for the first time and no it doesn't crash when I press "customize homepage".

Me too! I'm using graphene, are you?

A huge chunk of Linux development is subsidized by the hundreds of corporations which depend on it and pay developers to maintain things. There is no corporate interest in developing and/or maintaining an alternative browser engine when chromium already exists and dominates the market.

One of the more recent examples from last year was Mozilla's announcement of PPA (Privacy-Preserving Attribution). Essentially the organisation is trying to create a new system for click-based advertising where an advertiser can be notified that you clicked on their ad, helping them and the websites which host their ads, without compromising your personal privacy. The way it has historically worked is you click on an ad and give away a ton of your personal data, or you straight up block all these ads and their trackers which makes a lot of the web unsustainable (because it is funded by advertising). Anyway, like with this latest controversy a lot of people didn't bother to read any of Mozilla's statements and instead based their entire opinion off clickbait headlines like 'Firefox's New 'Privacy' Feature Actually Gives Your Data to Advertisers' which made PPA sound like a reduction of consumer privacy, which it isn't. And again, like this current controversy, you also had a lot of privacy activists who do not live in reality claiming that anything other than a 100$ rejection of all advertising online equaled 100% complicity and that Mozilla had sold out on one of its core principles.

Servo is an experimental browser engine developed by Mozilla Research using Rust to enhance performance, safety, and parallel processing in modern web rendering. The project showcased features like a concurrent layout system and asynchronous JavaScript execution.

Around 2017, Mozilla shifted focus to other projects and laid off several developers, leading to the gradual abandonment of Servo. However, a dedicated community later formed the Servo 501(c)(3) nonprofit to continue developing Servo’s technology and ideas.

Verso is an experimental browser built on top of the Servo browser engine. Currently, both softwares are experimental and pre-alpha developer software at best.

How the UX of librewolf is different from the UX of Firefox?

It doesn't suck, it's just not intended for casual users, which is why I chuckle when I see it recommended. That and Mullvad browser. I'd pretty much just recommend TOR over those, if you're really going for strict privacy.

For something that strikes a good balance, I use Zen.

As @erotador@lemmy.blahaj.zone said, default Firefox is still more private than Chrome. Also, if you want security (and more privacy) on top of that, you should look into LibreWolf. I've been using it for a few years now and it's fantastic!

Firefox is more private than chrome, chrome had more security updates, but Firefox is not far behind by any means.

What about the Mullvad browser?

I'm skeptical about Ladybird, that's why I have such high hopes for Servo

I doubt that would be the case for Ladybird if the devs keep being how they are.

They disable it by default, because it requires the execution of proprietary code, but you can reenable it.

it's basically just the latest firefox without the proprietary stuff, google services, and telemetry. i've never had an issue :)

The "vulnerability" was only that F-Droid wasn't keeping up with their builds, leaving everyone who installed it from F-Droid out-of-date, during a period of known Firefox bugs being exploited.

I recommend IronFox instead

You mean the Email relay? There are great alternatives like SimpleLogin or Addy.io. Both have their own browser extensions, but you can also connect them to Bitwarden and use that for browser integration.

Not maybe. It is open source. It never went close sourced, Dev made it source available till they figured out the future of the project.

Also I won't recommend zen cause it's in beta. It's way too unstable and the dev is no better at handling situations like above. But if you dont mind stability, zen is definitely really good feature wise

That's the one I'm using and it looks virtually the same to Firefox. I'm not sure if there's some issue with it either, I was scouring the comments for someone recommending it.

Right? To me it’s the opposite of minimal.

i agree with wanting see more of tab title. for people who regularly keep 50+ tabs open, that is a pipe dream.

if tabs are so many that their iconized anyway, making the tab bar vertical and iconized isn't much difference.

and if the bar would expand on hover (hopefully in near future), like in Brave (not sure if it's a Chrome feature), then it can be wide enough to see plenty of title without reducing the webpage size most of the time.

And this is why I assume no-one read the articles; because they did explain themselves.

ppl are silly

i know i use IF.

Interesting. I'm surprised it works on any browser.

From what I can see, when www.toonamiaftermath.com loads, it gets a guest id from api.toonamiaftermath.com.

www.toonamiaftermath.com has a well configured SSL chain per https://www.scyscan.com/check-ssl/result/www.toonamiaftermath.com.

However, api.toonamiaftermath.com is missing an intermediary certificate authority per https://www.scyscan.com/check-ssl/result/api.toonamiaftermath.com. Note how there's only 1 record in the chain at the bottom of the page. It should resolve all the way upto ISRG Root X1 or X2 per https://letsencrypt.org/certificates/

This is on the server admin to fix up.

If however, you like to live dangerously, you can force LibreWolf to ignore the error (Keep in mind, this is the browser saying "We can't confirm that this server is who they say they are").

In LibreWolf, open the dev tools panel. (Press F12) Click onto the Network tab. Then load https://www.toonamiaftermath.com/ In the Network panel, you should see one record in red for https://api.toonamiaftermath.com/ trying to load bundle.js with the error NS_ERROR_ blah blah SEC_ERROR_UNKNOWN_ISSUER. Double click that record and it'll open a new tab showing you FF's/LibreWolf's "Warning: Potential Security Risk Ahead" page.
Click on Advanced, then "Accept the Risk and Continue". You might see the service response, you might only see the screen flicker. In any case, reload https://www.toonamiaftermath.com/ and repeat for any subsequent errors. It should challenge for every subdomain/package.
Once done, the site should work for you. You might need to manually click play depending on your other browser settings.

Good luck. You'll need to occasionally re-accept the SSL errors. As mentioned, there's a problem with the trust chain. The site owner likely hasn't set it up correctly, and should be causing it to fail on all browsers. You might have a cached chain somewhere that's allowing it to work on that particular browser.

There are rumors that YTS.[whatever they are on now] is a honeypot, and I can confirm during outages I have seen IIS with ASP.NET 500 error pages. If you're not familiar with web dev, this is the setup a Fortune 500 company would have in 2008, not how a modern server run by random piracy bros on the internet would. It's clearly corporate bros overpaying a contractor to run the site if it's on Windows stack, especially in 2025.