Looking for Privacy-Oriented Open-Source Android Browsers
I’m looking for a privacy-focused, open-source Android browser. Here are some options I’ve found:
- IronFox
- recommended by LibreWolf
- Fennec
- no repo
- Waterfox
- Vanadium
- only available on GrapheneOS
- better security
- iceraven
- most stars
- bromite
- no longer maintained
- Bromite has a fingerprint randomization and Vanadium doesn’t. But Vanadium has better security if you use Graphene. So yeah, for privacy Bromite might be better
- cromite
- Bromite fork
- brave
- controversial
- duckduckgo
Is there any other browser out there that fits this criteria? Is there an even better choice? I’m particularly interested in ones that focus on privacy.
EDIT: in terms of popularity, privacy and functionality I guess the best choices are iceraven (based on firefox) as it has most stars on github and cromite (based on chromium) as brave is controversial
Solved Questions
I know that Brave is a bit controversial, but If Brave does something behind our backs wouldn’t we be able to know it since all the source code is out there? If it has some features we don’t like can’t we simply modify the source code?
@slackness
re: open source In theory: yes. In practice: maybe. It’ll probably eventually be caught by some researcher but unlike popular belief all open source code bases are not constantly being audited by the community. A random person can’t just read Brave source code for all platforms and accurately gauge if they’re doing something nefarious. It is very easy to hide stuff in code or misuse a protocol for evil purposes, etc.
You can modify the source code but as evident by the fact that there’s no Brave fork with crypto removed (there was one but their branding was too similar to Brave’s so they got sued), it’s not an easy feat to maintain that.
few questions
- What is the difference between IronFox, Fennec, Waterfox and iceraven?
I know Brave is controversial but they were the only ones (edit: not sure about Vanadium, I’m curious if they were vulnerable) disallowing JS to access localhost thus blocking Meta and Yandex’s recently discovered spying.
Sounds like such a no brainer to not allow random websites to communicate with the localhost and very easily circumvent all sandboxing you spent thousands of hours building. Looking at you Android (Google) and all the browser vendors (also Google?, huh).
actually I’m a bit curious about how an Open Source project could be “controversial”. If Brave does something behind our backs wouldn’t we be able to know it since all the source code is out there? If it has some features we don’t like can’t we simply modify the source code?
It has cryptocurrency integration and it did some shady ad-referral stealing. But yes, it’s fully open source.
Based on this information, I’m really surprised that no one has forked a Brave branch to remove the undesired feature.
There are several alternatives. Keeping up with security patches is a full time job. It’s quite reasonable in this particular case.
thanks for the explanation
Don’t mention it.
It’s backed by Peter Thiel who is a war mongering Nazi billionaire.
Why go that far? Its CEO funding anti-gay efforts is enough to me.
Infuriating as it is, I still have the same question mentioned above
I gave you the real reason it should be controversial. Brave’s fuck ups have not been significantly worse than other companies’.
re: open source In theory: yes. In practice: maybe. It’ll probably eventually be caught by some researcher but unlike popular belief all open source code bases are not constantly being audited by the community. A random person can’t just read Brave source code for all platforms and accurately gauge if they’re doing something nefarious. It is very easy to hide stuff in code or misuse a protocol for evil purposes, etc.
You can modify the source code but as evident by the fact that there’s no Brave fork with crypto removed (there was one but their branding was too similar to Brave’s so they got sued), it’s not an easy feat to maintain that.
it is a shock to me that an Open source project can get sued!?
Why they didn’t create a repo outside github and always use proxy when developing the project to stay anonymous?
Huh, I didn’t know that. I wonder if any of the rest have implemented that since…