this post was submitted on 28 Oct 2023
-1 points (0.0% liked)

Firefox

17829 readers
65 users here now

A place to discuss the news and latest developments on the open-source browser Firefox

founded 4 years ago
MODERATORS
[email protected]
-1
FIrefox can and should but refuses to implement browser level encryption to protect every browsing data generated by the browser. (discuss.tchncs.de)
submitted 1 year ago* (last edited 1 year ago) by [email protected] to c/[email protected]
8 comments fedilink hide all child comments
 

Chrome does not do it either but are we supposed to be the ones that start a new trend or the ones that follow the trend?

I made a post into their feature request section about how important it is for privacy and security. It is perfectly possible to do but they are not interested in doing.

What I asked was that they provide a feature that allows users to opt in to encrypt all browsing data including history, passwords, cookies, etc. With this feature I can only access my browser information after I open up Firefox and provide my encryption password.

How would this help? Well, there could be viruses that can read Firefox browsing history and cookies and send that to the server. With this feature enabled, one can be even more safer.

There is an option to encrypt Passwords. Thats not enough, every other piece of browsing data should also be encrypted.

top 8 comments
sorted by: hot top controversial new old
[–] [email protected] 1 points 1 year ago

To protect it from ... what attack are you stopping here? If you don't know, and it sounds like you don't know, then forget it.

If someone roots your device, you still lose. If someone takes your device while you're browsing, you still lose. If your hard drive is unencrypted, you still lose.

[–] [email protected] 0 points 1 year ago* (last edited 1 year ago) (1 children)

Sandboxie might help? (For Windows)

https://github.com/sandboxie-plus/Sandboxie

[–] [email protected] -1 points 1 year ago

Thanks but you should have told me about it earlier

[–] [email protected] 1 points 1 year ago

I'm a little confused as to how that would help with privacy/security.

When your browser is open and 'unlocked' a virus could still read the data.

It's the same thing with full disk encryption, if you get a virus on the running system it doesn't matter.

[–] [email protected] 1 points 1 year ago (1 children)

Isn't your computer disk encrypted already?

Otherwise you seem to want jails or sandboxes to protect each app, with access denied by default. That sounds more like Android, or possibly Qubes OS: https://en.m.wikipedia.org/wiki/Qubes_OS

[–] [email protected] 1 points 1 year ago

Or flatpak

[–] [email protected] 1 points 1 year ago

"full-disk encryption" is the search keyword you're looking for

[–] [email protected] 1 points 1 year ago

They refuse to do it because the idea has absolutely no merit to it. If there's a virus on your computer that could steal your data, it can just wait till you unlock that data to steal it. There is zero practical benefit to implementing your suggestion.