This is the main reason I think Safe apps will run in the browser and not natively.
The Safe Browser can act as an operating system for the apps, banning access to direct IP and the likes. With properly implemented capability based access control, the Safe Browser could make sure only explicitly authorized local resources (storage, camera, mic, GPS, etc) and network resources (folders, documents, etc) would get exposed to the apps, which would provide unprecedented privacy, especially on mobile.
The moment one runs a native app, much of that is gone. It will always be possible to run such apps but we’ll need to make it well known that native Safe apps can be quite unsafe.
As a note, WebAssembly is more promising than JavaScript in the long run. Apps can run at near native speed while still running safely sandboxed.
Until we have a network with a decentralized dns , we can set “network.trr.mode” in about:config to 5 ( off by choice ) instead of 0, which means “default” and not “off”, and clear “network.trr.uri”.
Please note the passage : “we may have DoH/TRR on by default in some regions” …
First time I’ve come across DoH (DNS over HTTPS) - I had to look it up. From a privacy / security / censorship point of view the situation doesn’t appear to be black and white. It takes some of the centralised controls from the ISP and offloads them to the DoH provider. So long as there are options to choose that provider and to turn it off altogether that doesn’t seem any worse than the existing situation - unless I’m missing something. This article lays out the pros and cons.
You are right , in the sense that people with some computers understanding can even take advantage of that mechanism.
My concern is for the vast majority of people who don’t know anything about this obscure stuff, and who will leave the settings in default state. Those will make good cash cows for Cloudflare, who in turn will happily hand our data to go-figure-who
But as mentioned in the forum you linked, its more a case of who you give your DNS access information to. EG your ISP.
The thought was that the the requests are relayed through the servers and potentially remove a lot of the linking to particular person/browser instance.
I think this needs to be kept an eye on, but it is not as bad as it first appears.
I think it’s good they are looking for other sources of revenue than promoting Google. Maybe they’ll be interested in creating a browser for SAFE and earning that way. Hope cool would that be?
A history of Silicon Valley and the origins of the modern Internet … and it’s original purpose? What do people think? Click-baity title IMO … but some decent research. I am posting this in here because this video suggests the Internet was effectively created as a means of spying (so a thing that won’t happen on Safe.)
I will watch it later, but from the top of my head, it wouldn’t make sense to think that the ARPANet was made for the purpose of spying. It was a national network for institutional and military usage, and it was designed to be super resilient in case of disruption (ie. Nuclear war), it was academic in nature and a research project on decentralized networks.
In fact in the early days, using the internet was almost like using tor. If you wanted to talk to someone clandestinely, they would avoid phones because those can be located, tracked and tapped. The “internet” back then was so new that there weren’t techniques yet to intervene or trace someone… it certainly is very similar with what happened with bitcoins: people at first flocked towards it because it seemed to be anonymous, but that illusion of anonymity and privacy was there because the technology wasn’t really well understood by both it’s users and the law enforcement.
And in a similar way that bitcoiners used mixers to cover their traces, people used to use “remailers”.
Legally speaking, with CALEA the telephone companies had the obligation of preparing their switches for real time eavesdropping, and enabling access to law enforcement, but it didn’t cover internet communications.
The existing problems of today were an organic evolution of the opportunity that opened the advancement of technology, the inherent vulnerability of software and the centralization of services based on the SaaS business model.
I believe the SafeNetwork has the potential to solve them all.
