My setup on GrapheneOS with all the exploit protections on except some off for apps with compatibility issues. Thoughts?

    • ZinQ@lemmy.mlOP
      link
      fedilink
      arrow-up
      7
      arrow-down
      1
      ·
      29 days ago

      Firefox is not secure on mobile, Vanadium is a great browser made by the GrapheneOS devs

        • ZinQ@lemmy.mlOP
          link
          fedilink
          arrow-up
          5
          ·
          29 days ago

          People in the comments already have “Avoid Gecko-based browsers like Firefox as they’re currently much more vulnerable to exploitation and inherently add a huge amount of attack surface. Gecko doesn’t have a WebView implementation (GeckoView is not a WebView implementation), so it has to be used alongside the Chromium-based WebView rather than instead of Chromium, which means having the remote attack surface of two separate browser engines instead of only one. Firefox / Gecko also bypass or cripple a fair bit of the upstream and GrapheneOS hardening work for apps. Worst of all, Firefox does not have internal sandboxing on Android.”

        • notarobot@lemmy.zip
          link
          fedilink
          arrow-up
          3
          ·
          29 days ago

          I’m on the go right now. This is a quote for an old privacy guides snapshot, but when I was looking for it, I saw some articles from April saying that this was no longer true, so further searching needed when I get home

          On Android, Firefox is still less secure than Chromium-based alternatives: Mozilla’s engine, GeckoView, has yet to support site isolation or enable isolatedProcess.

        • ZinQ@lemmy.mlOP
          link
          fedilink
          arrow-up
          1
          ·
          edit-2
          29 days ago

          I mean Gecko based browsers are actively recommended against on mobile. Chromium based browsers are recommended. Also I use mullvadVPN DNS based ad blocking, and I also have Brave that has built in ad blocking. Do yourself a favor and ditch adblock in favor of Ublock origin