this post was submitted on 03 Nov 2023
171 points (88.3% liked)

Firefox

17880 readers
110 users here now

A place to discuss the news and latest developments on the open-source browser Firefox

founded 4 years ago
MODERATORS
 

Started this morning. All of my personal tools like nextcloud and RSS reader were blocked, and I had to go manually override that screen for each one. Unacceptable.

you are viewing a single comment's thread
view the rest of the comments
[–] grandel@lemmy.ml 161 points 1 year ago (2 children)

Looks like Google is the responsible one, not Firefox. Don't shoot the messenger.

[–] RobotToaster@mander.xyz 59 points 1 year ago (1 children)

Why is firefox trusting the evil empire to tell it what sites are safe?

[–] Sethayy@sh.itjust.works 87 points 1 year ago

Don't have the funding to themselves, and probably worth it so new users don't get fucked

[–] sfgifz@lemmy.world 17 points 1 year ago (4 children)

Why does Firefox need to tell Google which sites you're visiting even if you don't use Google Search ?

[–] RobAley@lemm.ee 139 points 1 year ago

All checking is done locally on your machine from a hashed list of "bad" domains, your visits aren't sent to google. You can get the full details here: https://support.mozilla.org/en-US/kb/how-does-phishing-and-malware-protection-work

[–] Quacksalber@sh.itjust.works 62 points 1 year ago

This is a protection mechanism to prevent laymen from falling for scam websites. It is a service offered by Google, enabled by default in Firefox. It can disabled in the configs.

[–] SzethFriendOfNimi@lemmy.world 11 points 1 year ago (1 children)

Are they submitting that to Google or are they subscribing to some hashed list google has of domains with (according to them) know malware, issues, etc?

In that case everything happens on your pc and doesn’t go to google or Mozilla

[–] Cheradenine@sh.itjust.works 16 points 1 year ago (1 children)

Hashed, but there is also a preferences cookie.

Copied from Wikipedia, but the citation is Google's white paper on this 'Logs, which include an IP address and one or more cookies, are kept for two weeks and are tied to the other Safe Browsing requests made from the same device.'

[–] SzethFriendOfNimi@lemmy.world 6 points 1 year ago

But that isn’t per domain is it? It’s just for fetching the list?

Similar to how your browser may request CRL’s

Not that it’s great that they’re setting a cookie.