this post was submitted on 02 Oct 2023
149 points (98.7% liked)

Firefox

17902 readers
40 users here now

A place to discuss the news and latest developments on the open-source browser Firefox

founded 4 years ago
MODERATORS
 

There's this new browser built on Firefox that seems to be picking up steam on GitHub lately.

It looks like it's trying to be a more feature-rich, "batteries included", version of Firefox with hardening out of the box.

Has anyone used it? What do you think about it?

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 8 points 1 year ago (2 children)

I just wish they had packaging easily available for Fedora/RHEL through a COPR or the like

Why not get the flatpak?

Also would’ve preferred if they used a stable release vs. the ESR of Firefox as the base, but I can understand why.

Same

and comes pre-installed with uBlock Origin, which is great.

Agree 100%. I feel that FX should come with uBlock out of the box.

[–] [email protected] 9 points 1 year ago

That would upset sugar daddy Google.

[–] [email protected] 2 points 1 year ago (1 children)

Why not get the flatpak?

Security concerns. There's a lot of debate over it, but from the research I've done, I believe the Flatpak of Firefox is less secure, since it seems to remove part of Firefox's internal sandboxing, and relies heavily on Flatpak's sandboxing.

Basically makes it easier to compromise your data within the browser (like cookies, site data, passwords, etc), but maybe harder to get to the rest of your OS.

I just prefer using the rpm of Firefox with Firejail, as that keeps Firefox's built-in sandboxing intact, while adding an extra layer similar to Flatpak to restrict it further. Best of both worlds.

[–] [email protected] 1 points 1 year ago

Interesting. It's my understanding that flatpaks deliver the app as close as possible to the way that the developer intended. With an rpm, someone had to go and take the app from the developer and make it into an rpm, so there's an extra step there.

For sandboxing, yes, flatpak does do a really good job of that. Otherwise, apps would get sandboxed on Linux with either SELinux or AppArmor.

For security, flatpaks give you the latest version of a package and updates come in automatically, so I view them as being very secure.

Please point out any errors with my reasoning (open invitation to anyone). Thanks!