Firefox 52 Borrows One More Privacy Feature From the Tor Browser

An anonymous reader writes: Mozilla engineers have added a mechanism to Firefox 52 that prevents websites from fingerprinting users using system fonts. The user privacy protection system was borrowed from the Tor Browser, where a similar mechanism blocks websites from identifying users based on the fonts installed on their computers, only returning a list of "default fonts" per each OS. While sabotaging system font queries won't stop user fingerprinting as a whole, this is just one of the latest privacy-related updates Mozilla has added to Firefox, taken from Tor. Back in July 2016, Mozilla engineers started the Tor Uplift project, which aims to improve Firefox's privacy features with the ones present in the Tor Browser.

Re:privacy is overblown

[geekmux]

if you don't have anything to hide, why worry about privacy?

...says the Anonymous Coward...

Fix the user agent too

If they really want to help prevent fingerprinting, they would change the user agent to "Firefox." There is no reason for websites to know anything, let alone everything, the detailed user agent provides. Yeah, I know the argument of "but then there is no way to tell if they want/need mobile." Yeah, that is false, if they want mobile, the user will request mobile; plus detection scripts are notoriously inaccurate as I get served mobile pages on Chromebooks (try nfl.com with a Windows UA vs a Chromebook one, for example), on desktop versions of lessor used browsers and, in many instances, on my Linux machines.

Re:How about speed and RAM usage fixes?

[l20502]

Let's see: - Firefox still has a customizable UI and chrome doesn't, you can have everything back with classic theme restorer, even UI elements from 10 years ago, and you can export your customization to a file for everyone to enjoy. - Firefox is rolling out a multiprocess model that doesn't just blindly give a process to every tab - Firefox still has better resource usage when you open more than 5 tabs - Firefox ESR has been much more stable for me than any chrom*

Same as all the others

[sjbe]

I'm sure some Firefox supporters will post a bunch of unrealistic benchmarks showing how Firefox can run some convoluted JavaScript benchmark the fastest.

No I wouldn't bother with that. I don't think benchmarks mean much. What I can say is that anecdotally I use all the major browsers routinely and whatever speed difference they have are too insignificant for me to care about. I use Firefox the most because it's the one that annoys me the least but we're talking marginal differences. Safari and Edge aren't available cross platform so they aren't contenders to me though I do use them a fair bit for various reasons. Chrome is fine too - my preference is more based on my work flow and configuration preferences than anything else.

On every computer I've tried, from Windows to OS X to Linux, Firefox feels so much slower than Chrome.

I would disagree with that based on my own usage. I use both routinely and in both cases the constraint on speed is almost always the speed of my internet connection or the speed of the database servicing the information from the other end of the line.

I wouldn't say that Chrome is as much of a winner here, but it isn't unusual for me to look at top or some other process manager and seeing Firefox with many gigabytes of resident memory.

I wouldn't say Chrome is any better at all. Not to any meaningful degree. I'm not criticizing Chrome but I think the problem is just that there is a lot of data to display and keeping a compact memory footprint while maintaining performance is actually a rather challenging problem.

Make Firefox a browser that people are excited to use, rather than one that they dread using.

"Excited to use"? I don't want to get excited about my browser. I want to not notice my browser at all. I just don't want it getting in the way of my work flow. I don't think you could make an "exciting" browser anymore. They're fairly mature technology at this point and I'm ok with that.

Re: privacy is overblown

Hello Trump Security Council member 003421

I'm glad that you have taken interest in comrade geekmux. He has been speaking ill of Our Glorious Leader Trump for quite some time now. He will need to be sent to the Re-Edumucation Camps as soon as possible. In addition, we have reason to believe that he enjoys watching Adult Videos where interracial couples are engaging in illegal (since the racial purity act of 2019) coupling. Please be aware of the serious implications this might have on our "Christian" nation.

Please ignore the fact that the single largest denomination/sect in the US is Catholic... and as soon as you bring this fact up... "ohh no, we shouldn't become a 'Christian nation of the Catholic denomination'- nation" is said...

I'm sorry... For daring to think about facts and logic, I'll send myself to the re-edumucation camp later this evening... but please remember to enjoy trolling people who think privacy is at all important.

Re:Why are fonts still a thing these days?

[ARoamingGeek]

"The user privacy protection system was borrowed from the Tor Browser, where a similar mechanism blocks websites from identifying users based on the fonts installed on their computers, only returning a list of "default fonts" per each OS. "

That is NOT "we're going to force you to view every page in Times New Roman" it's "We'll only report to the site/server that you have the default fonts that come with the OS"

Re:How about speed and RAM usage fixes?

[oji-sama]

The same goes for memory usage. I wouldn't say that Chrome is as much of a winner here, but it isn't unusual for me to look at top or some other process manager and seeing Firefox with many gigabytes of resident memory. Yeah, RAM is "cheap" these days, but that doesn't mean I want it to be wasted. Browsing Slashdot and a few other web sites shouldn't lead to gigabyte after gigabyte of memory being consumed!

At least on Windows, the memory and CPU usage is somewhat difficult to compare due to the Chrome being in lots of smallish chunks, but based on my own anecdotal experience, Chrome keeps chugging quite a bit of memory and plenty of CPU per process after a while, so when you count all the processes together, Firefox is often using less CPU and about the same amount of memory than Chrome. I do use the Chrome dev tools more (better source view), but closing them does not seem to help at all.

Re:privacy is overblown

[AmiMoJo]

Everyone has something to hide. You wouldn't be happy if your bank statements arrived printed on the back of a postcard. You want that information hidden inside an envelope for your privacy.

Except it doesn't prevent font fingerprinting?

[CrashNBrn]

Blocking a request for installed fonts is a feel-good outlier, which does nothing to prevent font fingerprinting:
--> Render Html (not display) in different font families|types, and measure the width of the block element.

A few ways that might defeat actual font fingerprinting:
1) UserCSS to apply a font-normalization style that is used for all pages, or
2) UserScript to replace inline requests for fonts with standard ones, before the page is rendered.... Which only some browsers can do at all.
3) Run your browser in a jailed-directory or VM, that only has standard system fonts.

If they really do care

Where do I begin...

If Firefox developers really care about privacy:
- Telemetry would NOT be enabled by default
- Safebrowsing should NOT be there (- it calls home to google for every site you visit)
- The ability to disable Javascript should NOT require installation of an extension. This option used to be there more than a couple of years ago.
- about:permissions should be a menu item.
- Get rid of the stupid intrusive 'gear' button tracking crap when you visit about:blank. The page should be completely blank!
- Go to about:blank and search for http, and search for 'social'. All this calling home to Facebook and Google garbage should NOT be there!
- Geo tracking should NOT be in a browser, and should NOT be enabled by default.

This would be just the start...

Re:If they really do care

- Telemetry would NOT be enabled by default

That's not enough. It should be removed completely. Even if it were disabled by default, it would still be present. That means it could inadvertently be re-enabled. Or worse, it could potentially appear to be disabled, but behind the scenes it is actually enabled.

I can't see how they can justify keeping it in. I'm sure they'll say that they "need" the data, but that's a load of bollocks. Seeing as how Firefox keeps getting worse and worse, whatever information they are already collecting and using is probably total rubbish. Heck, any smart person would have immediately disabled it, so they're likely only collecting data from the dumbest Firefox users.

Making decisions based on junk data could very well be worse than making decisions based on no data.

Aside from that, the rest of your suggestions are excellent. If Mozilla doesn't want Firefox to become more irrelevant than it already is, they'd get those all implemented for Firefox 52, as well.

Re:If they really do care

[equivocal]

And add fine-grained cookie permissions like another browser has. Oh, that other browser is older versions of Firefox.

Letting sites track you until you close your browser is not the same as NOT being tracked. Even the hoard at slashdot doesn't get that.

Finally!

[Zitchas]

I've been wondering why browsers don't do this for years now. I mean really, it was what, several years ago when it was demonstrated how thoroughly they could fingerprint a browser based off a number of characteristics, including the font list. Why on earth would my OS's entire font list be something that my browser would broadcast to any site that asked for it?!

Browsers should work the other direction: Only give information that is needed, and in the case of fonts, just give me the site. If I have a particular font, great, if not, it gets rendered in whatever I have. I'm not concerned.