Bonum Certa Men Certa

Mozilla Firefox Takes Another Step in the Direction of Being Malware With “Firefox Suggest”

Guest post by Ryan, reprinted with permission from the original

Opening: Yesterday I was surfing the web when I found out that LKML.org, a centralized place to see what’s going on in Linux kernel development, was attempting to load an ad script from a company called “BuySellAds dot com”.

When I investigated the company in more detail, I found that there was an entire page where they plot with some of the titans of the web industry to track and psychologically manipulate people.



One such partnership was Brave. Apparently, this company is pushing Brave’s “ethical ads” from behind the scenes, and another was Mozilla.



"One such partnership was Brave. Apparently, this company is pushing Brave’s “ethical ads” from behind the scenes, and another was Mozilla."It said that they feed ads into “Pocket”, which is where the “Sponsored Content” (including from Big Oil companies like Exxon) keep popping up in the Firefox New Tab page, and now in your address bar if you live in the US (under the guise of Firefox Suggest).



Well, what I suggest is that Mozilla CEO Mitchell Baker does with Firefox Suggest and Pocket is probably anatomically impossible, but that’s outside the scope of this post.



It sickens me, that a great piece of software that I used from its inception in 2002 (pre-releases), and even before that (as Mozilla Suite, and before Mozilla, as the proprietary Netscape suite) has gone and done this as a cash grab on the way down.



Each release, there’s more stuff to turn off, and you have to remember to do all of that every time you install it somewhere.



"Each release, there’s more stuff to turn off, and you have to remember to do all of that every time you install it somewhere."There’s like 5 different settings (something like that) to fully disable DRM and keep it from coming back on or demanding it. That’s pretty bad when many of the sites using it are using it not for DRM, but as a fingerprinting attack.



Firefox ceased being Free and Open Source Software when distributed according to the Mozilla Trademark policies long ago, when they enabled Google DRM by default and pestered the user if they turned it off and then didn’t do some “about:config fu” to make sure it stayed off and disappeared from the GUI, but with Cloudflare DNS (a privacy hazard that OpenBSD patched to turn off!), Pocket’s Sponsored Crap, and Firefox Suggest, Firefox has not only straddled the line of what I consider to be “malware”, but has finally crossed it.



Perhaps there’s something very wrong with Debian for not going back to calling it “IceWeasel” and patching this stuff out of the source code so that it can’t come on. They are now in abeyance of their Debian Free Software Guidelines all so they can ship malware and call it Firefox.



You can perhaps forgive, under these circumstances, that some GNU/Linux distributions are throwing in the towel with Firefox, which doesn’t perform very well and uses gobs and gobs of RAM to perform the tasks, and are shipping some other browser.



Linux Mint spins are even putting in Vivaldi. And, if you frame it as a choice between Vivaldi and Firefox, I’d say Firefox is even worse than Vivaldi at this point, though Vivaldi doesn’t pretend to be open source like Firefox does, and they don’t beg for donations while they sell you down the river to adtechs like Mozilla does.



"Firefox ceased being Free and Open Source Software when distributed according to the Mozilla Trademark policies long ago, when they enabled Google DRM by default and pestered the user if they turned it off and then didn’t do some “about:config fu” to make sure it stayed off and disappeared from the GUI, but with Cloudflare DNS (a privacy hazard that OpenBSD patched to turn off!), Pocket’s Sponsored Crap, and Firefox Suggest, Firefox has not only straddled the line of what I consider to be “malware”, but has finally crossed it."What Mozilla fails to understand, obviously, is that by pissing off users into leaving, they not only have less who will stay and drive “ad hits” for them, but they’ll see a further collapse in their search royalty value to Google, and incoming revenue will fall faster than had they just left it alone.



Furthermore, by letting this incompetent twit remain as CEO and firing the engineers while leaving a “Global Chief Diversity Officer” and other dead weight so that they can be a political party, development of the browser’s underpinnings lags while they fritter away valuable capital towards these nutjobs.



Well, enough was enough so….



I finally figured out the dependency matrix to get Debian to allow me to apt purge firefox-esr from my Debian 11 system without trying to take out GNOME metapackages and the X server.



It turns out that I had to give up on using the GNOME Web flatpak from FlatHub, because it collides with the Stable version from Debian. So I backed that out, and deleted its settings and cache under the .var folder hierarchy, and put the epiphany-browser package back in.



"...on a clean install, Firefox Suggest is on by default and doesn’t even ask whether the user wants ads or a keylogger malware in their address bar."As long as that’s there, and those internationalization and LibreOffice Help Packs and foreign spell checkers and such that I removed the other day are gone, you can remove firefox-esr and the system won’t complain that you need a web browser.



It seems that Apt only wants to remove the gnome metapackages and xorg (Jean-Baptist…Emanuel….Zorg! Sorry.) if epiphany-browser is not already installed. If it is, it’ll shut up and let you get rid of Firefox.



Now you can also reclaim some disk space by removing .mozilla and all of the .mozilla and .firefox stuff under your Home folder (it’s all hidden but unhiding it with Ctrl+H and then using the finder is easy enough). In my case, I don’t use Thunderbird either, so I got rid of its stuff and now it’s just GNOME Web and Evolution.



Mozilla lies and says Firefox Suggest is off by default and that it is opt-in.



In the Bleeping Computer article about Firefox Suggest, which also notes Firefox’s dwindling market share (they went from being almost half of all web users at their peak to being only slightly more popular than Vivaldi, and still falling), they say that in their own tests and user reports, on a clean install, Firefox Suggest is on by default and doesn’t even ask whether the user wants ads or a keylogger malware in their address bar.



I installed the Firefox 93 Flatpak to find out myself. Mozilla even builds it and uploads the builds to Flathub, so they are official. Firefox Suggest was on by default, no message asking me if I wanted it.



When Ubuntu briefly implemented a keylogger that sent your Shell searches to Amazon in their now-abandoned Unity Shell, Richard Stallman called Ubuntu malware.



In its default configuration, Firefox not only sends everything you type into the address bar to Google (even though you can turn that off and split searches into a different box), but also to Mozilla, and Mozilla’s advertisers. This is certainly malware.



"How is it that Debian says the firmware to run my wifi, SSD, and graphics chip isn’t allowed (in the official image, which will lead some people to think Debian is broken and not bother figuring out why….while others have to know there’s a real installer that has firmware that is semi-hidden) but Widevine DRM blobs and a malicious keylogger in Firefox are fine?"How much longer will “Free” operating systems like Debian continue ignoring their own Free Software Guidelines to package this? It already had a grabber that’s on by default to download Google DRM blobs, and now this.



It’s bad enough that Fedora chucked its own Free Software policy out the door when IBM took them over, and started pushing Zoom, Microsoft Teams, and Microsoft Edge.



How is it that Debian says the firmware to run my wifi, SSD, and graphics chip isn’t allowed (in the official image, which will lead some people to think Debian is broken and not bother figuring out why….while others have to know there’s a real installer that has firmware that is semi-hidden) but Widevine DRM blobs and a malicious keylogger in Firefox are fine?



Sounds like someone at Debian should explain this.



As an aside, Mozilla is also considering changing the default search engine to Bing.



Every few years, they come in and decide which crappy privacy-violating mess with worse search results than Google to switch all their users to as part of a cynical ploy to ultimately get Google back to the table for more money.



Microsoft has never offered any browser vendor more money than Google, which is why Google is the default search engine on almost every browser, and the iPhone/Safari, even though Apple pretends they’re bitter enemies (over 60% of Apple iOS apps have Google tracking libraries in them).



I’m not a big fan of Google, but Bing is much worse. Instead of Google violating your privacy, it will be Microsoft, and then the search results often won’t even be usable.



When will Mozilla learn to stop manipulating its remaining users? Never?



Recent Techrights' Posts

Microsoft 'Studies' Again? Leon Musolff is Writing Papers With Microsoft.
Even if one can see/find a link to "the study" (in the Bezos-controlled publication), most people won't look any further and just take everything at face value.
Towards GNU World Domination
The FSF led by Geoffrey S. Knauth with his friend Richard Stallman in the FSF's Board [...] Let's encourage people to adopt GNU/Linux. There has never been a better time.
 
Open Source Initiative (OSI) Promoting Microsoft and Proprietary Software Using Microsoft Operatives
Because nothing says "Open Source" like GPL violations facilitated by Microsoft
Another Site Bites the Dust: "Open Source For You" Becoming a Slopfarm (LLM Slop)
What a shame. Another dead site.
Links 23/04/2025: Crackdowns on Dissent, Palin Loses Libel Retrial Against New York Times
Links for the day
Links 23/04/2025: Hard Times and Digital Amnesia
Links for the day
The GNU/Linux Site Formerly Known as "linoxide.com" is Back... as an LLM Slopfarm!
Better for linoxide.com to go offline than to do this
Get Rid of Back Doors, Don't Obsess Over Bounties and Other Corporate PR Stunts (or Needless Reboot Rituals)
Security as a term has mostly lost its meaning due to repeated misuse for many years
Richard Stallman to Speak in Oxford University Exactly a Day From Now
outsourced to GAFAM
Links 23/04/2025: "Hiding Corruption" and "The Cost of Defunding Harvard"
Links for the day
statCounter Helps Visualise Just How Deep in Trouble Microsoft is (Especially in Africa)
Microsoft sabotaged efforts to connect Africans and equip them with GNU/Linux laptops
The Register is Using Linux-Hostile Clickbait in Articles of Linux Proponents
Don't be a "whore" to advertisers, team El Reg
Microsoft Windows in Cyprus Lacking a Future
Most people access the Web there from mobile
Matrix Has a Severe Problem With Illegal Images
If Matrix cannot get the CP problem under control, many projects and people will dump Matrix
Never Try to Justify Strangulation of Women (Not in the US and Not in the UK)
Joint post by Mrs. Rianne Schestowitz and Dr. Roy Schestowitz
Links 23/04/2025: Tesla Profits Plunge 71%, Intel Ready to Lay Off 20% of Staff, Microsoft and IBM Layoffs
Links for the day
Microsoft's Most Profound Issue is That People Moved to 'Mobile' and "App Stores" (Microsoft's Presence There is Negligible)
Expect a wild ride for Microsoft this year
Google News is Amplifying FUD and Lies About Linux (and OpenSSH/SSH) by Promoting Slopfarms With Machine-Generated FUD and Slop Images
Google should know better
Gemini Links 23/04/2025: Librarians, Anubis, and Refactoring a Gemini Capsule
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Tuesday, April 22, 2025
IRC logs for Tuesday, April 22, 2025
Links 22/04/2025: Ending DEI Policies at Adobe, FTC Sues Uber
Links for the day
RMS is Done at KCL, Next Stop is Oxford
The message of RMS has long resonated well in India
US Government Already Bailing Out OpenAI/Microsoft With "Contracts", As Usual, Back Doors You Cannot Remove Becoming 'a Step Closer' on New PCs (Unless Everyone Acts ASAP)
The next "logical" step towards digital prisons
Microsoft Devises PR Stunts to Distract From Impending Mass Layoffs and Likely Bad Results Preceding Those Mass Layoffs
A "voluntary exit plan"
Gemini Links 22/04/2025: Deaths, HamsterCMS, and More
Links for the day
Links 22/04/2025: FTC v. Meta Trial and Google Remedies
Links for the day
In Turkey, Windows Down Rapidly While GNU/Linux Grows
Although Turkey is in NATO (but not the EU), it cannot quite trust computer systems controlled by the United States
GNOME, Microsoft, and GitHub: The Lack of Reporting on Abusive Colleagues Contributed to Profound Media Vacuum (or Blackout), Now Resorting to SLAPPs
This lack of morality/courage has helped enable further abuse, lining up more victims
Richard Stallman Has Updated His Article on Why "Free Software Is Even More Important Now"
Richard Stallman is about to give a talk here in the UK in a few hours
Microsoft Already Attacks the BSDs as Well (the E.E.E. Way, as Usual)
Bearers of bad news
The Open Source Initiative (OSI) is in Trouble, May Soon be Out of Business
Openwashing needs to end
Microsoft's Debt Grew Over 6 Billion Dollars in the Last Reporting Quarter (Before Inauguration), Expect Worse Next Week When 'Results' Are Disclosed and Mass Layoffs Resume
Microsoft is bleeding. It does not want people to notice.
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Monday, April 21, 2025
IRC logs for Monday, April 21, 2025
Richard Stallman Gives Public Talk in London in 7 Hours (Need to Register as Venue Limited to 150 Seats), Public Announcements Begin to Appear
These are not announced weeks or months in advance
Gemini Links 21/04/2025: Remembering Pope Francis, Crystal Simulation
Links for the day
Doing Microsoft's Job. On IBM's Payroll.
today's Red Hat cannot recognise threats even after a head-on collision
Google News is Rewarding Slopfarms, Not Journalism
Don't read junk from chatbots
Teaching GAFAM in Schools is Like Teaching Children to Smoke Tobacco
So suggests an FSF presentation
Richard Stallman, Whose Site is Trusted by Greater Manchester, Has Come to the United Kingdom
He doesn't suck up to the Crown, so he'll never be "knighted"
On Desktops/Laptops in Singapore Does a Fifth of Users Run GNU/Linux?
Probably not, but it's growing fast there
Links 21/04/2025: Fake Ceasefire and Software Patents (Fake Patents) Thrown Out
Links for the day
Companies With Fake Values and a Fake Economic/Financial State (Phony Valuations)
It'll all go up in smoke, eventually
Links 21/04/2025: Microsoft LLM Slop (Plagiarism) Going Out of Control, CT Scans' Cancer Problems Was Underrated
Links for the day
4 Years Ago Freenode Crumbled From Within
there are still hundreds of thousands of users online at any given time
GNOME Has a Long History (Over a Decade) Misusing the Code of Conduct (CoC) to Censor (Cull) Legitimate Technical Criticism
This has nothing to do with manners, it's about control (by cover-up)
Microsoft Has Tainted GNOME, Which Has Key People Acting as a SLAPP Front Against Techrights (Trying to Censor the Site by Extortion and Many Threats)
One common denominator (other than Microsoft salaries) is GNOME, which was led by an actual professional crank until she quit so suddenly months ago
Homeland of Linux Kernel Turning to GNU/Linux?
Adoption of Vista 11 has been relatively low
According to StatCounter, This is What Linux Adoption Looks Like (Based on Web Requests Visible to StatCounter)
How much worse will it get for Microsoft?
Gemini Capsules Still Outsourcing to Certificate Authority Let's Encrypt Now Measured at Less Than 10 (or Less Than 0.3%)
In Geminispace, Let's Encrypt is not commonly used
Twisting Microsoft's Failure (Transmitting Malware) as "SSH Backdoors" and a Linux Problem
Somehow we almost always find that those FUD pieces about "Linux" are based on obvious falsehoods
Vista 11 Has Burned OEMs and Some Move to GNU/Linux
When people can finally avoid Windows (there's no reason to attach it to new PCs) there will be a lot more GNU/Linux users out there
Remember That Microsoft Mass Layoffs Are Imminent Because Its 'Empire' is Falling Apart
European politicians take a long, hard look a Free software
Richard Stallman in the UK This Week, Scheduled to Give Two Public Talks (London and Oxford)
Those talks do not cover the same topics
Gemini Links 21/04/2025: April, Autism, and ASN
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Sunday, April 20, 2025
IRC logs for Sunday, April 20, 2025