HERE is yet another very interesting article about Mozilla's plans for improving DNS privacy in Firefox (my favorite browser by light years more than any other).
Firefox now supports the newest internet security protocol August 13, 2018 https://techcrunch.com/2018/08/13/firefox-now-supports-the-newest-internet-security-protocol/
Firefox Legacy Add-on removal from Mozilla AMO August 21, 2018 https://www.ghacks.net/2018/08/21/firefox-legacy-add-on-removal-from-mozilla-amo/
Since their update mechanism runs as a service, they probably could do anything they want to your hard drive...
Except it's not running as a service on my PC An ongoing comprehensive user.js template for configuring and hardening Firefox privacy, security and anti-fingerprinting Code: /* 0303: disable background update service [WINDOWS] * [SETTING] General>Firefox Updates>Use a background service to install updates * [SETTING-ESR52] Advanced>Update>Use a background service to install updates ***/ user_pref("app.update.service.enabled", false);
I didn't figure you had it running based on your previous post. I was mostly bringing it up for the folks that didn't think of it.
Perhaps it's a good idea to make backups of the extensions. I have sometimes experienced that old extensions would not work anymore, out of the blue, even if extensions were set to manual updating. Hopefully this tool will work, haven't checked it out yet: http://www.snapfiles.com/get/febecleo.html
Firefox 62: Firefox Monitor system add-on integration August 25, 2018 https://www.ghacks.net/2018/08/25/firefox-62-firefox-monitor-system-add-on-integration/
omg we al have been pwnd - we alltime need to check this out, thx mozilla for this fortune extension...
Firefox Nightly Distrusts All Symantec TLS Certs August 27, 2018 https://www.bleepingcomputer.com/news/security/firefox-nightly-distrusts-all-symantec-tls-certs/
Firefox Public Data Report Let’s be Transparent August 28, 2018 https://blog.mozilla.org/blog/2018/08/28/lets-be-transparent/
Firefox Nightly Secure DNS Experimental Results August 28, 2018 https://blog.nightly.mozilla.org/2018/08/28/firefox-nightly-secure-dns-experimental-results/
Will I get paid if I let Cloudflare harvest my browsing history via the DNS over HTTPS thing? Is Cloudflare owned by Google?
It's funny how it's always the most paranoid that don't really have a clue about anything. "Is Cloudflare owned by Google?" ROFL. If you're actually interested in learning: Cloudflare is its own company: https://en.wikipedia.org/wiki/Cloudflare Mozilla made a special agreement with Cloudflare to make their usage even more private than standard Cloudflare DNS users. Cloudflare DNS is the fastest and simplest DNS provider in existence. This is always good evidence of a low amount of code (less to exploit) and no forms of filtering. No DNS provider that offers "filtering" (a.k.a. tampering) can be trusted not to ever use this maliciously. They store usage logs for 1 day only, completely anonymized, and only in RAM, purely for statistical analysis. e.g. "are we being DDoSed" They have a simple way to contact them about issues and actually respond to resolve issues: https://community.cloudflare.com/c/reliability/1111 They (attempt) to contact owners of badly configured DNS servers, which helps everyone, not just CF users. I'm sure this still isn't enough for you, but the least you can do is get off your paranoid horse and acknowledge that this act by Mozilla is a GOOD thing for users. They have said they want to add more providers in future, but you can add/use your own providers already. Currently, this is both a major security AND privacy boost for Firefox users, even when using Cloudflare.
Who is the owner of the company? DNS over HTTPS bypasses your hosts file and sends information to yet another party (Cloudflare, Akamai, Google, different name same sh*t). I don't see how is this a good thing but you're free to believe in fairy tales. What do you think about Cloudflare? CDN detection, especially Cloudflare - "Cloudflare itself is very dangerous, government funded MITMed point."
The big issue with dns over whoever is that it is not up to any browser or cloud provider to be your dns. It is the job of your isp. Mrk
I'm guessing some people are going to disagree, but my point is it's necessary to trust some provider.
You can setup your own DNS server. An example: https://blog.cryptoaustralia.org.au/2017/12/05/build-your-private-dns-server/
I was wondering about this It's more than I want to deal with at the moment, but it's good to know it's doable