If you want to use a secure #browser but have no idea at all, which one do you use?
I don't mean the following text in a negative way, because you can't expect every Internet user to have studied #computer #science beforehand in order to be able to evaluate the security of #software correctly. Safety, like truth, is in the eye of the beholder. Some people think it's great to get targeted #ads and just don't want to be trojanized when paying for online shopping. A #whistleblower, on the other hand, would prefer not to leave any usable traces on the #Internet at all.
How can you decide now, even without studying, whether one browser is more secure than another?
Some time ago I recommended #Librewolf ( https://librewolf.net ) as a browser and immediately got disagreement in the comments: https://despora.de/posts/ddc445606a79013af2e2543d7eeced27
Here is the article out of the comments that now really clearly states that Librewolf is not a secure browser: https://www.unixsheikh.com/articles/choose-your-browser-carefully.html#librewolf <- I think the whole article is bad unprofessional propaganda :(
Every software contains more or less serious security vulnerabilities in certain versions. Without an indication of which version was tested and whether these vulnerabilities were closed in the next version, the accusation is worthless. Every browser makes contact with numerous IP addresses, which is the whole point of its existence. Without knowing what is behind these IP addresses and whether they offer useful services, a beginner cannot evaluate whether they are dangerous. An example: The browser checks every web page for viruses at #Google. This increases the #security for the surfer to get Trojans or worse, but Google also gets the entire browsing #history and can evaluate it. You have to classify the whole thing and also say why you rate things as bad or good.
So instead of Librewolf, #GNU #IceCat is recommended there, among other browsers. Is this a good advice?
I don't think so, since IceCat itself always adds important security #updates very late due to an complex build process ( https://www.mail-archive.com/bug-gnuzilla@gnu.org/msg03934.html ).
So let's use the #TOR browser, which is always up to date and is even recommended by #Snowden.
You can do that and I have also recommended the TOR browser in certain situations. But if you have no idea for which specific problem the TOR browser was developed in the first place and you can't understand the term #darknet, you might end up with more problems than you gain in security. But if you know that TOR stands for the #onion router and that the onion is just a metaphor for a routing protocol, then you surely know how to set up a secure exit node and how to minimize dangers.
If you question everything, you never come to a conclusion?
As I said, safety is in the eye of the beholder but there are some guidelines that are universally valid when evaluating. The browser should be made of free open source #software ( #FLOSS ), even if this alone is not a security feature. Free software just means that anyone can search the source code for security holes and backdoors, and that independent trusted vendors can compile the browser for me. However, in order to maintain this safety gain, this work must be done. Since it is time-consuming and usually poorly remunerated, this unfortunately happens far too rarely.
That is why automated tests are used. These are better than nothing, but only find known security problems. An automated test cannot find a backdoor injected by a secret service. The results of such automated tests can be found here: https://privacytests.org/private.html
Looking at the security of the TOR browser in the test result, one might conclude that it is better to use another more secure browser on the darknet. This is dangerous because one security feature on the darknet is that everyone has the same browser fingerprint, and if you don't use the TOR browser you are easier to track because of a different fingerprint.
Long speech short sense. I trust you and take the Librewolf.
On #Windows, Librewolf is a poor choice because it has no automatic #update process. Let's face it, beginners tend to forget to keep their software up to date. On Windows, it's better to use the original #Firefox, which updates itself automatically.
Firefox or Librewolf can be further improved in terms of security with add-ons.
One thing in mind is that every add-on slows down the browser and increases the probability of catching additional security vulnerabilities. Software is always complex and more software increases complexity and decreases security.
If you have no idea, please use only verified add-ons. Fortunately, this is very easy with Firefox, because you only have to check for this sign:
https://support.mozilla.org/en-US/kb/add-on-badges#w_recommended-extensions
I have gathered here some add-ons that are verified and increase your security. Please install them only if you know exactly what these add-ons do and if you need them.
#knowledge #privacy #surveillance #tracking #news #Recommendation