- cross-posted to:
- firefox@lemmy.ml
- cross-posted to:
- firefox@lemmy.ml
There’s this new browser built on Firefox that seems to be picking up steam on GitHub lately.
It looks like it’s trying to be a more feature-rich, “batteries included”, version of Firefox with hardening out of the box.
Has anyone used it? What do you think about it?
Security concerns. There’s a lot of debate over it, but from the research I’ve done, I believe the Flatpak of Firefox is less secure, since it seems to remove part of Firefox’s internal sandboxing, and relies heavily on Flatpak’s sandboxing.
Basically makes it easier to compromise your data within the browser (like cookies, site data, passwords, etc), but maybe harder to get to the rest of your OS.
I just prefer using the rpm of Firefox with Firejail, as that keeps Firefox’s built-in sandboxing intact, while adding an extra layer similar to Flatpak to restrict it further. Best of both worlds.
Interesting. It’s my understanding that flatpaks deliver the app as close as possible to the way that the developer intended. With an rpm, someone had to go and take the app from the developer and make it into an rpm, so there’s an extra step there.
For sandboxing, yes, flatpak does do a really good job of that. Otherwise, apps would get sandboxed on Linux with either SELinux or AppArmor.
For security, flatpaks give you the latest version of a package and updates come in automatically, so I view them as being very secure.
Please point out any errors with my reasoning (open invitation to anyone). Thanks!