• TCB13@lemmy.world
    link
    fedilink
    English
    arrow-up
    5
    arrow-down
    17
    ·
    1 year ago

    Does it include unique IDs for each installation as well? What snitching to Mozilla every single time you launch the browser and a 3rd party analytics company even after disabling everything that can be disabled via settings and config?

    • dan@upvote.au
      link
      fedilink
      arrow-up
      12
      arrow-down
      2
      ·
      edit-2
      1 year ago

      snitching to Mozilla every single time you launch the browser

      It’s only for the first run, to track downloads and installations. Pretty much every mobile app on both Android and iOS, and a lot of desktop apps, do the same thing as they want to know how many people install (and uninstall) their app.

      It’s also only if you download the installer from the Firefox site, so Linux repos are unaffected.

      • TCB13@lemmy.world
        link
        fedilink
        arrow-up
        5
        arrow-down
        12
        ·
        edit-2
        1 year ago

        Dude, fire Wireshark, launch Firefox and then come back here. Just because others do it, doesn’t mean it is decent nor should Mozilla do it and no, its just not once, Firefox is constantly going for their servers for multiple reasons, not all requests include the ID that’s true, but calling 3rd party analytics companies… from a browser… kind of questionable. We all know there are other ways to fingerprint a browser.

        Stop believing on the narrative of the all savior Mozilla. They’re full of shit, less than others indeed, but still shit.

        • dan@upvote.au
          link
          fedilink
          arrow-up
          5
          arrow-down
          2
          ·
          edit-2
          1 year ago

          All I was saying was that the unique download ID is only used once, not every time you start Firefox. I wasn’t making any other claims as to what other analytics they use.

          Having said that, Telemetry is important to making a good product. The developer needs to know about crashes and what causes them (to fix bugs), which features people are using the most and least (to know what to work on and what to potentially deprecate), etc. As long as it’s anonymous, I don’t see a problem in that?

            • dan@upvote.au
              link
              fedilink
              arrow-up
              2
              ·
              1 year ago

              IP is considered as PII.

              Sure, but a lot of systems don’t actually store it. Even if they do, erasing the last octet (for IPv4) or the last 32 bits (for IPv6) is sufficient to de-identify it.

              • TCB13@lemmy.world
                link
                fedilink
                English
                arrow-up
                1
                arrow-down
                2
                ·
                1 year ago

                You can’t guarantee it is isn’t stored somewhere or checked by someone between you and Mozilla and used against you. Even your ISP can use Mozilla’s calling home against you.

                • dan@upvote.au
                  link
                  fedilink
                  arrow-up
                  1
                  ·
                  edit-2
                  1 year ago

                  You can’t guarantee it is isn’t stored somewhere

                  OK, but what do you expect companies to do about this? There’s literally no way to browse the web without revealing your IP address. Are you saying that every single company online is collecting PII?

                  Even just checking for updates (which happens in the background with all modern software) would connect to Mozilla’s servers.

                  • TCB13@lemmy.world
                    link
                    fedilink
                    English
                    arrow-up
                    1
                    ·
                    edit-2
                    1 year ago

                    I except things to be kept on a reasonable level and that doesn’t include the amount of connections Firefox does, nor contacting a 3rd party analytics company.

                    What I also expect is to have simple toggles instead of having to spend half an hour going over advanced config, disable everything that can be disabled and still having it making connections to 3rd parties. Is it that hard to be transparent and make things right?

          • TCB13@lemmy.world
            link
            fedilink
            English
            arrow-up
            1
            arrow-down
            5
            ·
            1 year ago

            Telemetry is important to making a good product. The developer needs to know about crashes and what causes them

            Telemetry is the new age bullshit excuse and alternative to proper in-house software testing and money cuts. Why hire testers and have public testing programs if you can just deploy to the end users, let it break and then collect logs. You’ll get tons of PII as a bonus :)

            • ante@lemmy.world
              link
              fedilink
              English
              arrow-up
              6
              arrow-down
              1
              ·
              1 year ago

              No amount of in-house testing is going to catch everything that can be experienced on a nearly-infinite amount of hardware/software configurations that are tested once a large userbase gets a hold of a product.

              • TCB13@lemmy.world
                link
                fedilink
                English
                arrow-up
                1
                arrow-down
                3
                ·
                1 year ago

                Yeah I guess NASA, Lockheed Martin and Airbus all use analytics for testing instead of actual testing. You seem to be very unware of the current corporate trend of replacing in-house testing by analytics as a cost cutting strategy.

                • russjr08@outpost.zeuslink.net
                  link
                  fedilink
                  English
                  arrow-up
                  3
                  ·
                  1 year ago

                  I do wonder why billion dollar companies (or in the case of NASA, an organization that AFAIK is still funded directly by the government) can afford to do this.

                  I’d also argue that extremely rigorous testing is a bit more important in terms of life-or-death scenarios for the companies that you mentioned, rather than Mozilla - but hey, that could just be me.

                  I mean come on, your comparison might work for a company that can hold a candle to the ones you mentioned (ie, Google or Apple) but how large do you think Mozilla (who still has to take handouts from Google essentially) is? Even then, I’d still say it’s probably a bad comparison given my second point.

                • ante@lemmy.world
                  link
                  fedilink
                  English
                  arrow-up
                  1
                  arrow-down
                  1
                  ·
                  1 year ago

                  Yeah, embedded systems for military applications is exactly the same as consumer software. You’re right.

                  • TCB13@lemmy.world
                    link
                    fedilink
                    English
                    arrow-up
                    1
                    arrow-down
                    1
                    ·
                    edit-2
                    1 year ago

                    Have you ever noticed that when stuff was sold on CDs and internet updates weren’t a thing software was properly tested and mostly bug free while today the end user has to be the beta tester and report bugs / have telemetry?

                    Software should be approached as engineering not as the shit show it is today.

            • katy ✨@lemmy.blahaj.zone
              link
              fedilink
              arrow-up
              2
              arrow-down
              1
              ·
              1 year ago

              tell me you’re not a decent software developer without telling me you’re not a decent software developer