this post was submitted on 09 Jan 2024
70 points (96.1% liked)

Privacy

32003 readers
732 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

Basically I am using mull on android and librewolf on linux.I want to use firefox sync or something line that for syncing.So how good Firefox sync is, in privacy point on view. I am not anonymity paranoid I just want privacy so basically what do they collect and for what?

all 43 comments
sorted by: hot top controversial new old
[–] LWD@lemm.ee 40 points 10 months ago* (last edited 10 months ago) (1 children)
[–] itsaj26744@programming.dev 11 points 10 months ago

Thanks, Looks like gonna use it

[–] lemann@lemmy.dbzer0.com 27 points 10 months ago (3 children)

Basically I am using mull on android and librewolf on linux

You may prefer to skip Mozilla entirely and self host your own Firefox Sync: https://github.com/mozilla-services/syncstorage-rs

Otherwise, i've been using Firefox Sync for years and haven't had a single issue with it.

Regarding data sharing, do note that your Firefox Account email address is shared with Troy Hunt (haveibeenpwned) via the Firefox Monitor service, so Firefox can warn you if you have suffered a data breach. Deleting your account is the only way to opt out of that. https://support.mozilla.org/en-US/kb/how-do-i-opt-out-firefox-monitor

I personally have no issue with it as he's a well known security consultant - BUT the caveat being that he's a Microsoft regional director, you couldn't know if that data is being shared any further.

[–] kratoz29@lemm.ee 7 points 10 months ago

You may prefer to skip Mozilla entirely and self host your own Firefox Sync: https://github.com/mozilla-services/syncstorage-rs

Bruh, I didn't know about this, I swear we can self host almost anything, can we self host the Internet?

[–] MonkderZweite@feddit.ch 3 points 10 months ago* (last edited 10 months ago)

As far as i know it's barely possible to really host it yourself. I don't know the details anymore but i looked into it half a year ago and quickly gave up. Think it was severely outdated and depedency issues, not sure anymore.

[–] shortwavesurfer@lemmy.zip 15 points 10 months ago (1 children)

I use it for bookmarks, but that's it. All my passwords and stuff are in my password manager, and I do not trust browsers with that data.

[–] itsaj26744@programming.dev 4 points 10 months ago

Ya I use bitwarden, was asking about data collection.

[–] azdle@news.idlestate.org 9 points 10 months ago* (last edited 10 months ago) (1 children)

As others have said, it's quite good on privacy. For the truly paranoid, IIRC you can even self-host the sync server.

From the security perspective of privacy, do make sure to use a good password for the Mozilla account, the account password is also the encryption key for the E2E encryption.

[–] Matt@lemdro.id 8 points 10 months ago (2 children)

Firefox Sync is end-to-end encrypted and open source, so your data is secure.

[–] Zerush@lemmy.ml 4 points 10 months ago* (last edited 10 months ago) (1 children)

Your syc data is secure, yes, but not so your account data, because is also known by Google, amon yor IP other. Enough to track you through every page with Google APIs (most) also your email, whichi is an unique identificator in the web. Don't trust any web or service which share data to third parties, less in US webs or services. This is one of the reason because I always prefer EU soft, webs and services. They are also not perfect respect privacy, but lightyears better as those from US companies, where something like privacy laws, GDPR and user protection don't exist or only in very deficient manner.

[–] digdilem@lemmy.ml 2 points 10 months ago* (last edited 10 months ago)

Technical point: US companies still need to abide by the GDPR when the user is in the EU or UK.

(But yes, I accept your main point - that protection is not shared to US citizens of those same companies who operate two very different levels of distinction. European originating software/services usually operate at the higher level of protection across all users. )

[–] itsaj26744@programming.dev 2 points 10 months ago

Private? And do they track lot of things If I sign in ?

[–] Zerush@lemmy.ml 5 points 10 months ago (1 children)

All companies that have to pay for infrastructure, servers, employees and invoices naturally need income, as is logical and legitimate. Some use contextual ads, that is, tool ads on a DIY page. This may be annoying, but it does not put privacy at risk, but if it does, when the ads are based on the user's history and data (surveillance advertising), this is what is massively used by US companies.

That there are other models to create income, for example what Proton does, with its Freemium services. The free Proton products (all of which are OpenSource, by the way), naturally have limited functions, but they do not require trafficking in user data, because they are financed through Premium services.

Andisearch, the first search engine on the market that used AI with its own language model, is strictly anonymous, no tracking or logging with sandboxed results, it is 100% free and private, for the future they plan to create a premium model for companies with specific functions for collaboration and special business functionalities, to finance the free version.

Vivaldi in new installations offers a selection of search engines (DDG, Ecosia, Startpage, etc.) and bookmarks, which pay a commission when the user uses them, if not, no, they are free to delete them, apart from a store with merch, upon insistence. from the users themselves sometime ago they also accept donations, probably also receive commissions from VAG, Mercedes, Polestar and Renault to include Vivaldi Automotive in their vehicles. All without trafficking in user data and without external investors so as not to lose independence, the mistake that Mozillla made when accepting Google as an investor. This is independent of having Google as the default search engine, since Google pays Mozilla and finances them, whether the user searches with Google or not.

It's the surveillance policy, selling user data, which is the risk and will destroy the free internet if we don't avoid it The ethics of a company respect to the user is the most important feature today, something that the big US companies don't have.

[–] XTornado@lemmy.ml 5 points 10 months ago

Man... Don't reply if you don't have an answer no need to put a dump of text.

[–] MonkderZweite@feddit.ch 3 points 10 months ago (1 children)

It doesn't sync addons and about:config, so there's that.

[–] LWD@lemm.ee 11 points 10 months ago* (last edited 10 months ago) (1 children)
[–] MonkderZweite@feddit.ch 2 points 10 months ago (1 children)

Man, and it's only half a year back i looked this stuff up...

[–] LWD@lemm.ee 3 points 10 months ago* (last edited 10 months ago)
[–] Dehydrated@lemmy.world 2 points 10 months ago

mull on android and librewolf on linux

Great setup btw

Regarding your question: Firefox Sync is end to end encrypted, so you don't have to worry about it. It's far better than Google's browser sync, as it's encrypted at all (only in transit, but this is standard and it means that Google can still see all of your data)

[–] Ephera@lemmy.ml 1 points 10 months ago

You can find a detailed description about Firefox Sync's design in regards to privacy here: https://hacks.mozilla.org/2018/11/firefox-sync-privacy/