560
Google Chrome disables uBlock Origin for some in Manifest v3 rollout (www.bleepingcomputer.com)
submitted 5 months ago by cm0002@lemmy.world to c/technology@lemmy.world
87 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[-] kat@orbi.camp 6 points 5 months ago

Main reason I don't is cuz:

https://grapheneos.org/usage

Avoid Gecko-based browsers like Firefox as they're currently much more vulnerable to exploitation and inherently add a huge amount of attack surface. Gecko doesn't have a WebView implementation (GeckoView is not a WebView implementation), so it has to be used alongside the Chromium-based WebView rather than instead of Chromium, which means having the remote attack surface of two separate browser engines instead of only one. Firefox / Gecko also bypass or cripple a fair bit of the upstream and GrapheneOS hardening work for apps. Worst of all, Firefox does not have internal sandboxing on Android. This is despite the fact that Chromium semantic sandbox layer on Android is implemented via the OS isolatedProcess feature, which is a very easy to use boolean property for app service processes to provide strong isolation with only the ability to communicate with the app running them via the standard service API. Even in the desktop version, Firefox's sandbox is still substantially weaker (especially on Linux) and lacks full support for isolating sites from each other rather than only containing content as a whole. The sandbox has been gradually improving on the desktop but it isn't happening for their Android browser yet.

[-] aBundleOfFerrets@sh.itjust.works 11 points 5 months ago

This only applies to android, not desktop use, and you couldn’t use uBlock on mobile chrome anyway so it is simply not relevant.

[-] kat@orbi.camp 2 points 5 months ago

Other security implications are stilp valid.

[-] Rogue@feddit.uk 3 points 5 months ago

They're completely irrelevant to the average person.

If you want absolute perfection then sure, stick with Chrome but implying Firefox on GrapheneOS is insecure is misinformation.

this post was submitted on 22 Feb 2025
560 points (100.0% liked)

Technology

73758 readers
3587 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
L4s@hackingne.ws