It’s been a while!
Konform Browser version 140.12.0-100 was recently released and if you aren’t aware it’s time to upgrade! 1
Konform Browser is a free/libre and open-source (FLOSS) fork of Firefox ESR with the primary goals of security, privacy, and user freedom. Shows by example how these three goals don’t have to be at odds but support each other and work in harmony. Runs lean and light with lights off out of the box, while making it convenient to toggle on the features you want. All telemetry removed, none added. Fingerprinting and tracking extras with base defaults on par with (or exceeding) Tor Browser, still keeping common-sense tweaks like dark mode and installation of self-built addons available without making a fuss about it. Graceful degradation for private networks and more granular control for those who want a browser that really conforms.
“ESR” means there’s a major upgrade coming up soon with the expected jump from Firefox ESR version 140 to 153 next month. Work has already been ongoing for a while to prepare Konform Browser v153 to be the most secure Firefox build at release. Early alpha builds based on FF153beta are available for anyone who wants to do early testing or help out with any other contribution.
Current Konform Browser 140.x is production-ready and expected to keep receiving security updates and bugfixes for at least a couple of release cycles after initial v153 release so users can upgrade at their leisure.
If you try it, would love to hear your feedback on the browser - and if you like it, tell your friends!
Installation instructions provided for most Linux distros
New: Artix Linux package, Gentoo ebuild
Mastodon: https://techhub.social/@konform
1 or install 😘
What does that mean for you, exactly? I know that there is a lot of different ideas out there on how to interpret these results and what “good” means so would be helpful to know what your expectations are to give meaningful answer to such question.
Anyway, I just tried running the test at creepjs.org and this is result: Test hangs at “57/58: Currently collecting: Private Click Measurement complete”, with no errors in the js console.
Having compared results with some other fingerprinting suites previously, default settings should give plausible fingerprint corresponding to user base of existing browser. Only Cloudflare seems to hate it: Turnstile in strict mode throws a redirect loop when their troubleshooting tool says all is fine. Is that because fingerprinting protection “works to good” or is broken? You tell me!
I would appreciate an outside and less biased review, comparison or benchmark on stuff like this! Want to try and report back?