Ok I was not knowing about the site isolation, and I will follow your tip for the ad to be blocked

Thx [deleted]

    I chose Firefox as default browser only because I personally prioritize granular ad-blocking and the ability to use my own userscripts with Tampermonkey, over the native security hardening like site isolation. I still use Vanadium if I need more security.

    I also use all 3 available Firefoxes, so although each may not isolate each as well as Vanadium, but separate apps are certainly isolated from each other. That does require habit changes, so you are not just opening a bunch of tabs in one browser. The default browser (A), Logged in websites (B), Grey area sites (C). For (B), try not to click links to unknown sites, crank up restrictions (don't even allow javascript), whitelist your frequented sites. Qubes is similar in its method of isolation, although for desktop they have a browser addon that will auto-open links in another VM if not whitelisted.
    In Android, you can set different URLs to open in different browsers. But that doesn't work if you're already in browser.

      • [deleted]

      xtrox You have to be very careful with adblockers, they only block a part of the trackers and make you very unique! Personally I would only disable javascript but that's me

        [deleted] they only block a part of the trackers and make you very unique!

        Adblocking is a different need than privacy/anonymity. Tracker blocking is not the main purpose of an adblocker. There are other addons for that.
        Getting rid of ads, popups, banners, clutter... makes much of the Internet usable on mobile devices. For many sites, I don't care if they've fingerprinted my interaction, and can see if I come back even without a cookie. As long as they cannot serve me an annoying ad.

        [deleted] I meant you have courage.

        It's certainly harder work. Just like using Qubes. But not really scary once you understand the risks of not having the same hardening as Chromium or Vanadium. Lacking site isolation is a bummer, but still a very unlikely attack vector, which I mitigate with app isolation anyway.

        5 days later

        xtrox
        Browser addons only isolate sessions by having separate containers for cookies. The tabs still share the same process memory space. So if you have a malicious webpage, and a vulnerability in the browser, it might be possible to get info from other tabs. That's the problem Vanadium and other Chromium browsers try to solve with their site isolation. Each site is run in its own process, and thus memory is isolated.

        https://www.chromium.org/Home/chromium-security/site-isolation/

        Firefox for Android doesn't have this yet, although someone claimed to have it working.
        https://www.reddit.com/r/firefox/comments/ttn9oy/site_isolation_is_working_on_firefox_android/

          22 days later

          Graphite
          Thx, i thought FF Focus is one of them, so i was unable to guess the third :)
          (so you maybe got a 4th option for ff :) )

            xtrox I don't find ProtonVPN blocks my ads. Am still using Nextdns which does a much better job.

            xtrox

            I don't think Firefox ESR exists for Android.
            Firefox Focus could be a 4th browser if you like.

            VPNs like ProtonVPN often do some ad blocking. But not a lot. It won't block many of the annoyances. And a few of them get paid to NOT block certain ads. That's why I don't really trust free adblock by DNS services where the user cannot customize. They may block some things today, but don't keep up with changes as quickly and will never block somethings. Plus they can only block entire subdomains, not granular down to just the page elements.

            I prefer Firefox addons like ublock origin that I can customize with a lot of lists to block ads using filter lists in 34 languages and regions, and ranging from malvertising to just minor annoyances. And then I can further customize to block ads, banners, and info popups that nobody else is blocking, by using the element picker. Can't do that at the DNS level.

              Graphite
              In the netshield option as shown here it says it block ads malware tracking

              protonvpnsettings.jpg

              With this config and using the DNS they provide on ma local news paper It does the job great.
              That was to give vanadium a try since we told me about the isolation lacks within Firefox.

              [deleted] And you can add an ad blocker at the dns level like for example dns.adguard.com

              BTW: The Adguard-Server has changed its address to dns.adguard-dns.com