undefined | Better HN

0 pointsamenod7y ago0 comments

> ...and then slapping Google tracking into everything they do...

Huh, I must have missed that - if true, this is a huge breach of trust for me. Do you have a link?

0 comments

10 comments · 3 top-level

Certhas7y ago· 7 in thread

Until it's provided I would assume that it's a gross misrepresentation/exaggeration.

Other than putting Google Analytics on all Mozilla properties as sibling commenters have already mentioned (link to info on that here [0]), there is also the following:

- as I mentioned in another comment, Firefox Preview comes with Google as a default search engine (not a huge issue) and with "search suggestions" enabled by default (which sends everything you ever type to Google).

- Even if you disable search suggestions (or change provider), Firefox has a built-in feature called "Google Safe Browsing" which collates every URL you visit and sends bulk reports to Google. This feature is only disable-able via the "here be dragons" about:config area.

- then there's Google Location Services, which sends your WiFi router SSID, SSIDs of routers in range, and hardware details, to Google. This is less clear cut as Mozilla's use of this service has been on-off over time, and varies per device. See[1]

[0] https://www.mozilla.org/en-US/privacy/websites/

[1] https://bugzilla.mozilla.org/show_bug.cgi?id=1512161

roca7y ago

This amounts to far less than "slapping Google tracking into everything they do", which reasonable people would interpret to include just using the browser. Reasonable people also understand that performing Google searches sends data to Google.

Safe Browsing DOES NOT reveal URLs to Google. See https://en.wikipedia.org/wiki/Google_Safe_Browsing#Privacy and read the protocol spec or Firefox source code if you doubt this.

> Google Location Services, which sends your WiFi router SSID, SSIDs of routers in range, and hardware details, to Google. This is less clear cut as Mozilla's use of this service has been on-off over time, and varies per device.

Mozilla has made a significant investment to try to get away from this by building the Mozilla Location Service. In the meantime it's a straight tradeoff between quality of user experience and information leakage. Experience shows that degrading the user experience for some invisible and small privacy benefit is not a winning strategy.

fabrice_d7y ago

Safe Browsing doesn't report plaintext urls to Google. See https://wiki.mozilla.org/Security/Safe_Browsing and the more precisely the Update API it's using from https://developers.google.com/safe-browsing/v4/

mncolinlee7y ago

Safe Browsing in Firefox is nothing more than a flat list of malware-laden sites your browser downloads. It compares your current site against the list to warn you if a match occurs. It does nothing else whatsoever. Even the most basic search of technical details would show that. Firefox code is also open to be read.

rrix27y ago

> Firefox has a built-in feature called "Google Safe Browsing" which collates every URL you visit and sends bulk reports to Google. This feature is only disable-able via the "here be dragons" about:config area.

Is this not 'about:preferences' -> Privacy & Security -> Block dangerous and deceptive content ?

dblohm77y ago

"One of the most persistent misunderstandings about Safe Browsing is the idea that the browser needs to send all visited URLs to Google in order to verify whether or not they are safe."

https://feeding.cloud.geek.nz/posts/how-safe-browsing-works-...

amenodOP7y ago

Thanks for the clarification - this is all acceptable in my eyes then. Of course I never use Google Search (prefer Qwant, StartPage and DDG) and location services are never running in my browser. Safe Browsing - I prefer not to have it enabled, but it's not such a risk if it is.

This is quite a different thing from using Chrome(-ish browsers) with the "phone home".

1 more reply

zaarn7y ago

They do use Google Analytics on their websites but they do have a contract with Google that explicitly states that Google cannot use any of that data for tracking ever for any reason at all. Would make Mozilla rich if Google violated that.

yorwba7y ago

E.g. this issue about Google Analytics on about:addons https://github.com/mozilla/addons-frontend/issues/2785

j / k navigate · click thread line to collapse