From: Maxime Devos <maximedevos@telenet.be>
To: Jacob Hrbek <kreyren@rixotstudio.cz>, 52236@debbugs.gnu.org
Subject: bug#52236: PRIVACY: Integrate arkenfox for icecat configuration
Date: Thu, 02 Dec 2021 15:50:05 +0000 [thread overview]
Message-ID: <b8a491fbd9aeb6008aace4b36d15fed34308bb34.camel@telenet.be> (raw)
In-Reply-To: <xBZGHWvz0F1Fo2Znd9OrhjxMs8EIWHA3zRtfhXvPVcpavYWw9RdYTVUyh_Ac4ZwKd2536nrUoZxMX-O7EU2fIyqzS9rDEpPAJtA8ojtAaN4=@rixotstudio.cz>
Jacob Hrbek schreef op do 02-12-2021 om 03:58 [+0000]:
> Arkenfox <https://github.com/arkenfox/user.js> is a community
> maintained user.js file used for browser hardening.
>
> Proposing to implement it's configuration in GNU Guix's IceCat
> mainly: [...]
These things might be useful, but wouldn't IceCat's mailing lists be
more appropriate for suggesting different configuration defaults?
(See https://www.gnu.org/software/gnuzilla/ for the mailing lists of
IceCat and other GNUzilla software.)
> Additional configuration should be defined in guix-home with sane
> default [...]
I don't think guix home is necessary for this, wouldn't some kind of
parametrised packages be sufficient? E.g., something like:
(packages->manifest
;; This creates a wrapper around ticecat instructing the firefox
;; derivative to use the supplied user.js instead of wherever firefox
;; normally goes looking for things. (I don't know how to do that,
;; but should be possible?)
(icecat-with-configuration ; (defined in gnu packages gnuzilla)
#:user.js arkenfox ; defined in (gnu packages gnuzilla)
#:package the-base-icecat-package)) ; by default icecat, but any
firefox derivative will do
emacs other-packages ...)
That could be useful for both "guix shell --manifest=manifest.scm" and
guix home users.
> [...] so that the browser can be a sufficient replacement for Tor
> Browser Bundle.
The Tor project advised against using anything but their Tor Browser,
to avoid fingerprinting. It also advised against customisation, for the
same reasons. I cannot find the web page explaining the details, but
<https://support.torproject.org/tbb/tbb-14/> comes close. Tor makes
modifications to the browser, so simply modifying some settings isn't
sufficient.
Also, from the arkenfox/user.js README:
‘Note that we do not recommend connecting over Tor on Firefox. Use the
Tor Browser if your threat model calls for it, or for accessing hidden
services.’
Greetings,
Maxime.
next prev parent reply other threads:[~2021-12-02 15:51 UTC|newest]
Thread overview: 7+ messages / expand[flat|nested] mbox.gz Atom feed top
2021-12-02 3:58 bug#52236: PRIVACY: Integrate arkenfox for icecat configuration Jacob Hrbek
2021-12-02 15:50 ` Maxime Devos [this message]
2021-12-03 0:32 ` Mark H Weaver
2021-12-04 0:31 ` Jacob Hrbek
2021-12-04 1:27 ` Liliana Marie Prikler
2021-12-18 3:20 ` Maxim Cournoyer
2021-12-03 0:11 ` Mark H Weaver
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
List information: https://guix.gnu.org/
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=b8a491fbd9aeb6008aace4b36d15fed34308bb34.camel@telenet.be \
--to=maximedevos@telenet.be \
--cc=52236@debbugs.gnu.org \
--cc=kreyren@rixotstudio.cz \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this public inbox
https://git.savannah.gnu.org/cgit/guix.git
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).