Hi,

I was just reading this section of the GOS usage guide and stumbled upon this paragraph:

Even in the desktop version, Firefox's sandbox is still substantially weaker (especially on Linux) and lacks full support for isolating sites from each other rather than only containing content as a whole. The sandbox has been gradually improving on the desktop but it isn't happening for their Android browser yet.

So, according to this Firefox/Gecko based browsers have a substantially weaker sandbox than chromium based browsers especially on Linux systems. Personally, I use Firefox as a daily driver simply because I prefer diversity over monopolies such as chrome and chromium based Browsers (plus, a strong competitor is always good for balance and a healthy market situation).

But this is only feasible as long as the trade off in security features (and others) is acceptable. So, my question here is: Are there any links/sources that verify the statement above? I do not doubt it, in general, but I prefer to read the data/research myself before I accept it as a given. It's not really a trust issue, but I would like to understand it.

    Phead For the case of Android, given the changes made to Vanadium I think we can trust the Gos developers, right? If you don't trust them, you might as well use a stock Android.

    On desktop I use linux and I don't trust in-browser measurement anyway. In the default configuration when you launch a browser it has all the rights on the user session. It can therefore read or modify any file belonging to the user who executes it.
    To avoid this problem I use either Firejail or Flatpak + Flatseal. And in this configuration I don't really care about the measures integrated or not in Firefox which is my desktop browser.

      Kiba

      Kiba For the case of Android, given the changes made to Vanadium I think we can trust the Gos developers, right? If you don't trust them, you might as well use a stock Android.

      Well, I've never said I do not trust them, GOS or anything GOS related. My goal was to understand the statement that I quoted in my first post. Also, questioning a statement on the internet is, in my opinion, never wrong. I chose to trust GOS and their work and part of this trust is based on their open information policy which enables me, as a user, to make up my own mind.

      [deleted]

      Thanks for the link! I've read one of his blog entries about linux. Very informative. Also, quite discomforting that some (or most) of the firefox bugs mentioned in your link are 4 years or older and still open. I am not involved in browser development but to me it appears waaaay too long.