- cross-posted to:
- [email protected]
You must log in or register to comment.
This is apparently an old issue that somehow got resurfaced again (pull).
tl;dr dev had enabled remote debugging back when the project was new to make debugging easier, apparently forgot about it, someone noticed and reported it, dev apologized and said he was learning and won’t do it again:
Maybe I underestimated the actual risk of this? Yes, but again, it was probably on the first month of development, we learn from our mistakes so we can now provide the most private and secure experience we can. Thanks
enables remote debugging by default and removes the prompt
Dunning–Kruger strikes again.
Unfortunately browsers are probably the single most complex piece of software in a computer nowadays, and doing it right is very difficult if you don’t have the resources to back it up. And it doesn’t help if it’s being done by someone that removes security warnings because they don’t understand them.
This. I personally avoid random firefox forks because there is such a large surface to make mistakes or hide backdoors. If people want a private, hardened firefox, Mullvad’s fork (or Tor) is the best option. If you only want to disable telemetry, you can use betterfox user.js with Firefox.
Fuck! I was just starting to like that browser. Back to librewolf
It’s fud
I’d expect nothing less from these fucking Garbage firefox communities. They were dogshit on Reddit and they’re dogshit on Lemmy.
Damn, I’m glad. I took the bait for a second there
