this post was submitted on 15 Jan 2025
8 points (100.0% liked)

LibreWolf

3218 readers
2 users here now

Welcome to the official community for LibreWolf.

LibreWolf is designed to increase protection against tracking and fingerprinting techniques, while also including a few security improvements. LibreWolf also aims to remove all the telemetry, data collection and annoyances, as well as disabling anti-freedom features like DRM. If you have any question please visit our FAQ first: https://librewolf.net/docs/faq/

To learn more or to download the browser visit the website: https://librewolf.net/

If you want to contribute head over to our Codeberg: https://codeberg.org/librewolf

founded 3 years ago
MODERATORS
fishonthenet@lemmy.ml
8
Does LibreWolf have add-on signing? (lemmy.ml)
submitted 4 days ago* (last edited 4 days ago) by Linuxdroid@lemmy.ml to c/librewolf@lemmy.ml
3 comments fedilink hide all child comments
 

I hope not. Add-on signing is a glorified backdoor. Not only does it let Mozilla remotely disable extensions, but in future, governments can force Mozilla to censor unwanted extensions.

In addition, it is a privacy violation, since Mozilla can see who has installed which add-on.

[…] when Firefox contacts Mozilla servers to verify if Mozilla approved each extension, it discloses to Mozilla which extensions are in use. So in addition to being a backdoor by definition, it is a severe privacy violation as well. This comes from an organization that perpetually claims to champion user freedom and privacy.

(source: change.org)

And let's not forget about a certain May 2019 incident:

all Firefox addons have been disabled due to an expired certificate. And so, people got silently hit with stuff like this when turning their "private and secure" browser on. It was only a matter of time until Mozilla's extension prison backfired, and it did so spectacularly. Though the BugZilla comments were already predictably closed, they will not be able to contain the armageddon this time, no matter how much PR they spew. The whole /r/firefox front page is filled with threads about this, with many people moving to Chrome-based browsers. Hacker News is also booming. Tech sites are running with the news too. The funny thing is, the whole point of the extension prison was allegedly to increase security - and yet today, all security addons got disabled because of it! Shows how freedom always has to trump over security or it ends up in a disaster like this.

(source: digdeeper.club)

you are viewing a single comment's thread
view the rest of the comments
[–] Linuxdroid@lemmy.ml 1 points 3 days ago (1 children)

and if you look for it on about:config, it’s enabled

The about:config setting has been placebo since version 48. It doesn't affect anything.

Firefox 48: (Pushed from Firefox 46). Release and Beta versions of Firefox for Desktop will not allow unsigned extensions to be installed, with no override. Firefox for Android will enforce add-on signing, and will retain a preference — which will be removed in a future release — to allow the user to disable signing enforcement.

(source)

[–] kixik@lemmy.ml 1 points 3 days ago

Maybe @fishonthenet@lemmy.ml or @mickie@jeremmy.ml. BTW I remember about !librewolf@jeremmy.ml but I think it didn't survive, and on lemmy instances this is the only Librewolf community.