In your opinion at this present time...Most secure browser would be........?

Discussion in 'other software & services' started by The Red Moon, Jan 10, 2016.

  1. The Red Moon

    The Red Moon Registered Member

    Joined:
    May 17, 2012
    Posts:
    3,871
    As title conveys.With all the updates etc which do you see is the most secure browser.?
     
  2. Windows_Security

    Windows_Security Registered Member

    Joined:
    Mar 2, 2013
    Posts:
    3,068
    Location:
    Netherlands
    Lynx by far :p, followed by Chrome on Linux, and ex aequo on a distance third Chrome (on Windows 7 and higher) and Edge (on Windows 10)
     
  3. Daveski17

    Daveski17 Registered Member

    Joined:
    Nov 11, 2008
    Posts:
    8,028
    Location:
    Lloegyr
    Chromium on Linux? Firefox on Linux with NoScript? Anything on Linux? lol
     
  4. safeguy

    safeguy Registered Member

    Joined:
    Jun 14, 2010
    Posts:
    1,709
    Chrome 64-bit.
     
  5. summerheat

    summerheat Registered Member

    Joined:
    May 16, 2015
    Posts:
    720
    Firefox on Linux is more or less on a par with Chromium if running with Firejail (although Electrolysis is not yet available but hopefully will be in a couple of months). Regarding Noscript: I would allow scripts globally (its protection against XSS and Clickjacking will still be enabled) and use uMatrix instead as it is much more powerful and flexible.
     
  6. Daveski17

    Daveski17 Registered Member

    Joined:
    Nov 11, 2008
    Posts:
    8,028
    Location:
    Lloegyr
    It took me seven years just to figure out NoScript lol! uMatrix is way too complicated for me. ;)
     
  7. Brummelchen

    Brummelchen Registered Member

    Joined:
    Jan 3, 2009
    Posts:
    1,732
    uBlock is the better choice to replace noscript. the matrix is pretty simple
    https://github.com/gorhill/uBlock/wiki/Dynamic-filtering:-quick-guide

    for the answer: my browser :D

    but for real i would say chrome on linux, then chrome on windows, then firefox on linux, then firefox on windows.
    why chrome? blink is more secure by design
    why linux? simply more secure than windows ^^

    but at least it depends on settings. to leave out the exploit kits it is possible to setup both very secure without much effort.
    any decent ad filter is recommended, from my view uBlock is the best for now.
    ofc it is possible to lock any browser down to its knees with some paranoid settings.
    some dont need much goodies to make browsing pretty secure without losing comfort.

    at least - install and use that browser you feel familiar or happy with. it is pretty pointless to install a software you can get along with.
     
  8. amarildojr

    amarildojr Registered Member

    Joined:
    Aug 8, 2013
    Posts:
    1,974
    Location:
    Brasil
    Iceweasel from Parabola's repo, way better than regular Firefox (which is privacy-enemy).
     
  9. The Red Moon

    The Red Moon Registered Member

    Joined:
    May 17, 2012
    Posts:
    3,871
    is iceweasel still supported.?
     
  10. amarildojr

    amarildojr Registered Member

    Joined:
    Aug 8, 2013
    Posts:
    1,974
    Location:
    Brasil
    Absolutely. Debian rebrands Firefox into Iceweasel, but that's basically it. Then, Parabola grabs this Iceweasel and transforms it into a trully GNU and Privacy-friendly browser that works with Arch Linux, Manjaro, Arch-Bang, etc. Do you know that "Firefox quiet" thread? Iceweasel from Parabola comes pretty much 100% with all those options enabled, so you don't have to configure anything. Also, no "OpenH264" plugin, no service, nothing. It's DRM-Free!
     
    Last edited: Jan 12, 2016
  11. Brummelchen

    Brummelchen Registered Member

    Joined:
    Jan 3, 2009
    Posts:
    1,732
    but that may mean i can configure firefox as iceweasel
    leaving out h264 means EME version of firefox

    and even a regular firefox can be cut off h264
    http://www.ghacks.net/2014/07/18/firefox-openh264-gecko-media-plugins-current-state-development/
    theses codecs are not present by default, firefox need to download it at first use.

    so iceweasel is a normal eme free firefox with some presets.

    btw no h264 means no mp4 video

    https://developer.mozilla.org/en-US/docs/Web/HTML/Supported_media_formats
    http://w3c.github.io/encrypted-media/
    https://wiki.mozilla.org/Media/EME
    http://www.ghacks.net/2014/07/18/firefox-openh264-gecko-media-plugins-current-state-development/

    if iceweasel is community driven it will go same way as seamonkey, palemoon and others (thunderbird will) - away from mozilla engine.
    so many forks - too much forks!
     
  12. amarildojr

    amarildojr Registered Member

    Joined:
    Aug 8, 2013
    Posts:
    1,974
    Location:
    Brasil
    But why would you go through all the trouble? It's already done, the program only waits for a "pacman -U" to install :p And I'm not sure it's easy to strip down vanilla Firefox.

    Debian only removes Mozilla's branding, they leave the tracking cookies, "enhanced new tab", calling home, everything enabled.

    Then Parabola:

    More: https://projects.parabola.nu/abslibre.git/tree/libre/iceweasel

    The biggest problem I have with Firefox is that many of these invading features are enabled by default, such as new tab sponsors tracking, DRM player, Google cookie (only by opening the browser) and search engine by default, etc. Parabola removes all that, it's simple, and it's effective. I see no logical reason to install regular Firefox and then strip it down, when it's already being done. Talk about duplicate of effort ;)

    Who knows. Debian has been maintaining Iceweasel for 10 years, I doubt they'll stop it in the foreseeable future. If ( and that's a HUGE if) Parabola stops maintaining Iceweasel (because let's face it, Debian probably won't stop supporting their own version Iceweasel), the scripts are all there, all it takes is to download the source files and then "makepkg -s". Done, new Iceweasel hehehehehe
     
  13. Brummelchen

    Brummelchen Registered Member

    Joined:
    Jan 3, 2009
    Posts:
    1,732
    i am more fan of original software with custom tweaks instead software with fixed tweaks i can not change for reason.
    no one is nailed to use not the about:newtab and none is forced for "sponsor track"s in newtab. that complete wrong, its called "suggestions" and those are only images loaded from a mozilla server. disable suggestions and the pane is clear.
    google cookie (NID) at startup is caused by the safe-browsing list download, i its not used elsewhere - again wrong information.
    do i have to assume that no cookie means no safe-browsing list?

    search engine by default is ofc google, but to change with a single click to bing, yahoo or duckduckgo.

    maybe some like to install and forget, but from my view its the wrong strategy - people need to know about their used browser and whats the best way leaning to open settings and change them? after that process there is no reason not to use iceweasel i admit but not the first contact.
    the next point to mention how compatible those forks will be?
    are they based on current firefox engine or another fork like Palemoon? anything away from firefox is causing conflicts, if not now then the next release.

    some minor to moan - the cert from parabola.nu is not valid.
    why should i trust a software while its web cert is not valid?
    bit more real - some wants to sell me security but is not able to fix its own security? sounds strange, heh? ;)
     
  14. badkins79

    badkins79 Registered Member

    Joined:
    Dec 23, 2011
    Posts:
    60
    Location:
    Maryland
    I use my own secure browser plugin on the major 3 windows browsers. Gets the dangerous part of browsing off of my computer entirely.

    Basically I only use my local browser as a thin client to the real browser that runs inside a one-time-use VM in the cloud.
     
  15. Socio

    Socio Registered Member

    Joined:
    Jun 29, 2004
    Posts:
    166
    Quarri is supposed to be real secure, there is also SRWare Iron a Chromium based browser but I am not sure it is still in development.
     
  16. Socio

    Socio Registered Member

    Joined:
    Jun 29, 2004
    Posts:
    166
    That looks very interesting how is the speed?

    Do you still use all your security extensions or just it alone?

    I know there is a browser called Maxthon that uses the Cloud for browsing but I am not sure it does what that does.
     
  17. Windows_Security

    Windows_Security Registered Member

    Joined:
    Mar 2, 2013
    Posts:
    3,068
    Location:
    Netherlands
    @Socio Quarri seems more of a corporate solution: have you used it?
     
  18. Brummelchen

    Brummelchen Registered Member

    Joined:
    Jan 3, 2009
    Posts:
    1,732
    iron has stuck - in fact it never was that good as advertised, better choice is vivaldi or opera (chromium forkes)(opera is more like chrome, vivaldi is more like opera 12)

    quarri and lightpoint are remote browsers.
     
  19. badkins79

    badkins79 Registered Member

    Joined:
    Dec 23, 2011
    Posts:
    60
    Location:
    Maryland
    Speed is great. For most sites, its pretty hard to tell that the browser is remote. It is the only security extension I use. It will work with any extension as long as the extension in question does not need access to the site content (because its not really there).

    Maxthon is advertised as a "cloud browser", but thats misleading. It is not a remote browser at all. All web content still comes to your computer. It has cloud-related features like link sharing, backing up downloads remotely and syncing currently viewed pages across multiple devices.

    I don't think Quarri is a remote browser either. Its more of a locally sandboxed browser. Their site does not go into specifics about what they really do though.
     
  20. inka

    inka Registered Member

    Joined:
    Oct 21, 2009
    Posts:
    406
    iceweasel isn't community maintained. It's packaged for debian by Mike Hommey (a mozilla employee). As of iceweasel v44, a couple notable patches are applied. First, the "signed addon requirement" is removed. Second, it's built with EME support disabled. Also (not a newly-added change), iceweasel is built with the updater disabled. Otherwise, except for a dozen or so prefs changed away from ff release channel default values, its code is indeed identical to firefox.

    I don't expect to see iceweasel's code diverging much from firefox. The patch n build process is nearly entirely automated. Unless something disrupts that, it's reasonable to expect continued future iceweasel releases.

    No. Absolutely not. For me, it's proving to be much more complex -- maddeningly so. It's become a "throw the baby out with the bathwater" endeavor. The "searchservice" is so convoluted, so perverse, that I'm resigned to just ripping out the entire "search(box), searchengines" feature. Same goes for newtab -- so much entagled crap code, for sanity sake it's better to just rip it out. Opening new tab displays about:blank. Done.

    Now that I'm mucking through the code, it's kinda obvious why, across versions, the browser has become so increasingly slow to start. Even if you disable telmetry sending, GOBS of telemetry timestamps are collected, especially at startup. It's a Schroedinger's Cat scenario.
     
Loading...