There is a new Firefox fork in town: Konform Browser. Its focus is privacy, security and user freedom. Yes, I know this sounds familiar - but hear me out, I do think we have something to bring to the table!
The project started as a fork of LibreWolf and now stands on its own four feet.
Some highlights to give an idea to those familiar with LibreWolf or other FF fork:
- Security: Konform is based on Firefox ESR. This means a more stable base without missing out on the latest security updates, in exchange for longer time waiting for the newest features from Firefox. It also enables shorter lead times to backport upstream updates.
- In this sense (and a few others), Konform Browser is closer to IceCat/GNUZilla than it is to Librewolf.
- Freedom: Konform allows a higher level of customization. It gives the user control and trusts you with that responsibility. Some examples:
- Allows enabling dark mode and following system theming even when Resist Fingerprinting is enabled.
- Allows installing your own self-built unsigned add-ons
- “Spoof referer source” user configuration option
- Privacy and security: Disables all browser features relying on external network connections.
- “RemoteSettings” is completely disabled1.
- No cloud “AI” integrations. You can run Konform on a disconnected network and not notice any reduced functionality.
- All telemetry, metrics, and ads from the browser disabled.
- OCSP turned off (but we have CRLite).
- tcpdump and see the difference
I should add that even if we contrast with LibreWolf above, this is not at all meant as a dig or criticism. That we chose it as base and that it’s the easiest to compare with is a testament both to how closely aligned we are and that Konform has a lot to thank Librewolf and the wider Firefox customization community for. Like they built from Librefox and Arkenfox to bring private browsing to a wider audience, so are we but the next to try help widen and deepen the browser ecosystem.
The recommended installation method is building from source but there are also binary packages for x86_64 built by Codeberg CI. Currently Linux only, considering Android next and could use some assistance with that.
Doors open for users, testers and contributors. Looking forward to hear what you think and if there’s anything missing.
1: This means that local full-page translation is also unavailable even if in principle it should be possible to bundle and run translations fully locally. It’s just the way Mozilla built it. Patches towards allowing users to enable fully offline translations would be very welcome.
Sources: https://codeberg.org/konform-browser
See releases for details.
The name is not a wordplay with some form of lupine or canine animal, then no deal.
Jokes aside, taking note of it. 👀
If only… What does fox say?
Ding ding ding ding ding !
Can I ask why you decided to fork Librewolf?
An AppImage or Flatpak would be great for us atomic users. Maybe you are considering that in the future.
Having more options is always good.
are you planning to push it to nixpkgs as well so that Nix/NixOS users can acquire it? :)
I’d like to try it
I’m so glad you want to try!
The problem with both that and Flathub is that I can’t seem to pass Githubs signup CAPTCHA whatever I tried (and yes I tried other browsers too lol). Besides, having my old account there arbitrarily blocked on phone number verification in the past, not feeling super keen on having users rely on them for updates, even putting aside whatever I feel about Microsofts and GitHubs role in the ecosystem in general…
However, if anyone would be up for the literal push-part of pushing it up and wouldn’t mind collaborating a bit in the process, would be happy to make that happen together (or use your privilege if you’re motivated; it’s free software yo, just heed the license ;)). There is an Issue thread for coordinating if this is you.
I don’t think it should be too involved as the source repo and source tarballs are built in pretty much the same way as LW, which already has a derivation in nixpkgs. Didn’t look closer at that derivation but hopefully shouldn’t be much more than copying
pkgs/applications/networking/browsers/librewolfand replacing some strings.
Allows enabling dark mode and following system theming even when Resist Fingerprinting is enabled.
So, basically defeating the point of RFP?
There is a longer discussion to be had about both what RFP does, how effective it is, and the relative impact on entropy of this particular feature.
For now I will just say that this: Providing configuration for this serves the projects goal of user control and freedom. It should be up to the user to make that call. Us as developer shouldn’t unilaterally decide on behalf of everyone. We can’t think of everything and we don’t always know best. Of course we can still provide guidance and put what we believe is sensible as defaults. I find it odd to criticize empowering users in this way, in particular considering the status quo.
Were it up to me, everyone should have Letterboxing on by default, probably with similar reasoning. I don’t see why you wouldn’t use it. Everyone enabling it would make us all (ever so little) less fingerprintable. Arguably more meaningful impact than dark/light-theme. And less of an accessibility issue. Even so, we still leave this configurable in the same way as the dynamic theming.
You can also see this way of thinking reflected in allowing loading of your own add-ons from file and allowing userChrome customization. Probably niche power-user features with risks involved and sharp edges exposed but we are developers and maintainers of software, not your sysadmins1 or caretakers2.
If you fundamentally disagree, well, not all software has to be for everyone. Probably there is already something else (like Tor Browser) that serves your needs and aligns with your philosophy better?
1: …xcept… you want us to be your sysadmin? 👉👈 Call me when you close that seed round bb 😘
2: Nope.
Just, uh, don’t turn on dark mode then?
I want dark mode. I’m going to turn it on.
