Lynx by far , followed by Chrome on Linux, and ex aequo on a distance third Chrome (on Windows 7 and higher) and Edge (on Windows 10)
Firefox on Linux is more or less on a par with Chromium if running with Firejail (although Electrolysis is not yet available but hopefully will be in a couple of months). Regarding Noscript: I would allow scripts globally (its protection against XSS and Clickjacking will still be enabled) and use uMatrix instead as it is much more powerful and flexible.
uBlock is the better choice to replace noscript. the matrix is pretty simple https://github.com/gorhill/uBlock/wiki/Dynamic-filtering:-quick-guide for the answer: my browser but for real i would say chrome on linux, then chrome on windows, then firefox on linux, then firefox on windows. why chrome? blink is more secure by design why linux? simply more secure than windows ^^ but at least it depends on settings. to leave out the exploit kits it is possible to setup both very secure without much effort. any decent ad filter is recommended, from my view uBlock is the best for now. ofc it is possible to lock any browser down to its knees with some paranoid settings. some dont need much goodies to make browsing pretty secure without losing comfort. at least - install and use that browser you feel familiar or happy with. it is pretty pointless to install a software you can get along with.
Absolutely. Debian rebrands Firefox into Iceweasel, but that's basically it. Then, Parabola grabs this Iceweasel and transforms it into a trully GNU and Privacy-friendly browser that works with Arch Linux, Manjaro, Arch-Bang, etc. Do you know that "Firefox quiet" thread? Iceweasel from Parabola comes pretty much 100% with all those options enabled, so you don't have to configure anything. Also, no "OpenH264" plugin, no service, nothing. It's DRM-Free!
but that may mean i can configure firefox as iceweasel leaving out h264 means EME version of firefox and even a regular firefox can be cut off h264 http://www.ghacks.net/2014/07/18/firefox-openh264-gecko-media-plugins-current-state-development/ theses codecs are not present by default, firefox need to download it at first use. so iceweasel is a normal eme free firefox with some presets. btw no h264 means no mp4 video https://developer.mozilla.org/en-US/docs/Web/HTML/Supported_media_formats http://w3c.github.io/encrypted-media/ https://wiki.mozilla.org/Media/EME http://www.ghacks.net/2014/07/18/firefox-openh264-gecko-media-plugins-current-state-development/ if iceweasel is community driven it will go same way as seamonkey, palemoon and others (thunderbird will) - away from mozilla engine. so many forks - too much forks!
But why would you go through all the trouble? It's already done, the program only waits for a "pacman -U" to install And I'm not sure it's easy to strip down vanilla Firefox. Debian only removes Mozilla's branding, they leave the tracking cookies, "enhanced new tab", calling home, everything enabled. Then Parabola: Uses Trisquel's Addons. Trisquel is another GNU distro, it's based off of Ubuntu and is recommended on gnu.org (as well as Parabola). Their addons are only licensed with GPL or compatible (but nothing prevents you from installing addons from addons.mozilla.org); Remove the DRM player; Disable Safe-Search; Disable GPM PDM; Remove Google and other privacy-enemy search engines; Disable features which violates user privacy; Then finally, make crypto hardening, removes privacy and freedom issues, disable freedom DRM violating feature (browser eme), default to "classic view" for new tabs; and makes many other privacy enhancements. More: https://projects.parabola.nu/abslibre.git/tree/libre/iceweasel The biggest problem I have with Firefox is that many of these invading features are enabled by default, such as new tab sponsors tracking, DRM player, Google cookie (only by opening the browser) and search engine by default, etc. Parabola removes all that, it's simple, and it's effective. I see no logical reason to install regular Firefox and then strip it down, when it's already being done. Talk about duplicate of effort Who knows. Debian has been maintaining Iceweasel for 10 years, I doubt they'll stop it in the foreseeable future. If ( and that's a HUGE if) Parabola stops maintaining Iceweasel (because let's face it, Debian probably won't stop supporting their own version Iceweasel), the scripts are all there, all it takes is to download the source files and then "makepkg -s". Done, new Iceweasel hehehehehe
i am more fan of original software with custom tweaks instead software with fixed tweaks i can not change for reason. no one is nailed to use not the about:newtab and none is forced for "sponsor track"s in newtab. that complete wrong, its called "suggestions" and those are only images loaded from a mozilla server. disable suggestions and the pane is clear. google cookie (NID) at startup is caused by the safe-browsing list download, i its not used elsewhere - again wrong information. do i have to assume that no cookie means no safe-browsing list? search engine by default is ofc google, but to change with a single click to bing, yahoo or duckduckgo. maybe some like to install and forget, but from my view its the wrong strategy - people need to know about their used browser and whats the best way leaning to open settings and change them? after that process there is no reason not to use iceweasel i admit but not the first contact. the next point to mention how compatible those forks will be? are they based on current firefox engine or another fork like Palemoon? anything away from firefox is causing conflicts, if not now then the next release. some minor to moan - the cert from parabola.nu is not valid. why should i trust a software while its web cert is not valid? bit more real - some wants to sell me security but is not able to fix its own security? sounds strange, heh?
I use my own secure browser plugin on the major 3 windows browsers. Gets the dangerous part of browsing off of my computer entirely. Basically I only use my local browser as a thin client to the real browser that runs inside a one-time-use VM in the cloud.
Quarri is supposed to be real secure, there is also SRWare Iron a Chromium based browser but I am not sure it is still in development.
That looks very interesting how is the speed? Do you still use all your security extensions or just it alone? I know there is a browser called Maxthon that uses the Cloud for browsing but I am not sure it does what that does.
iron has stuck - in fact it never was that good as advertised, better choice is vivaldi or opera (chromium forkes)(opera is more like chrome, vivaldi is more like opera 12) quarri and lightpoint are remote browsers.
Speed is great. For most sites, its pretty hard to tell that the browser is remote. It is the only security extension I use. It will work with any extension as long as the extension in question does not need access to the site content (because its not really there). Maxthon is advertised as a "cloud browser", but thats misleading. It is not a remote browser at all. All web content still comes to your computer. It has cloud-related features like link sharing, backing up downloads remotely and syncing currently viewed pages across multiple devices. I don't think Quarri is a remote browser either. Its more of a locally sandboxed browser. Their site does not go into specifics about what they really do though.
iceweasel isn't community maintained. It's packaged for debian by Mike Hommey (a mozilla employee). As of iceweasel v44, a couple notable patches are applied. First, the "signed addon requirement" is removed. Second, it's built with EME support disabled. Also (not a newly-added change), iceweasel is built with the updater disabled. Otherwise, except for a dozen or so prefs changed away from ff release channel default values, its code is indeed identical to firefox. I don't expect to see iceweasel's code diverging much from firefox. The patch n build process is nearly entirely automated. Unless something disrupts that, it's reasonable to expect continued future iceweasel releases. No. Absolutely not. For me, it's proving to be much more complex -- maddeningly so. It's become a "throw the baby out with the bathwater" endeavor. The "searchservice" is so convoluted, so perverse, that I'm resigned to just ripping out the entire "search(box), searchengines" feature. Same goes for newtab -- so much entagled crap code, for sanity sake it's better to just rip it out. Opening new tab displays about:blank. Done. Now that I'm mucking through the code, it's kinda obvious why, across versions, the browser has become so increasingly slow to start. Even if you disable telmetry sending, GOBS of telemetry timestamps are collected, especially at startup. It's a Schroedinger's Cat scenario.