this post was submitted on 06 Mar 2026
15 points (100.0% liked)

Privacy

9170 readers
262 users here now

A community for Lemmy users interested in privacy

Rules:

  1. Be civil
  2. No spam posting
  3. Keep posts on-topic
  4. No trolling

founded 2 years ago
MODERATORS
iopq@lemmy.world
15
Konform Browser 140.8.0-106 - Security- and privacy oriented open source web browser (codeberg.org)
submitted 2 days ago* (last edited 2 days ago) by ken@discuss.tchncs.de to c/privacy@lemmy.world
5 comments fedilink hide all child comments
 

I would like to invite all of you Linux users^1^ to check out the latest release of Konform Browser.

Konform Browser is a free/libre and open-source (FLOSS) fork of Firefox with the primary goals of security, privacy, and user freedom. Hoping to be an example of how these three goals don’t have to be at odds but support each other and work in harmony. Would love to hear your feedback on if it's in the right direction and what can be improved.

Been posting on and off the lemmies about the project during 2026. Below are major highlights since 140.8.0-103 update from a week and a half back:

  • Bundling and enforcing use of bundled fonts. Konform Browser now carries the same font-loading patches and bundled fonts as Tor Browser and Mullvad Browser. While this does increase download- and installation sizes, it has two clear benefits:
    • Significantly improved resistance against font fingerprinting used by tracking scripts. Konform Browser should now be more robust against this attack by having shared global font fingerprint.
    • All languages and scripts should render as expected regardless of what fonts you have installed on system.
  • Also bundled is now Multi-Account Containers Lite addon. It's a debloated^2^ fork of Firefox Multi-Account Containers so you can utilize Container Tabs and set per-container proxies without installing addon for it.
  • While "AI chatbot" feature was already disabled and hidden by default, it was previously still possible to trigger activation of proprietary networked centralized cloudbots by setting pref browser.ml.chat.enabled=true. These have now been fully removed and replaced by a single provider utilizing locally running llamafile instance.
  • Ported a bunch of security fixes and improvement on fingerprinting protection from FF Rapid Release and Tor Browser which didn't make it into upstream FF ESR.

For details and references see linked release notes. For even more details I hope the commit log is digestible.

Packages available for most Linux distributions.

AUR source package

Releases

Konform Browser is also on Mastodon where followers make me happy: https://techhub.social/@konform

^1^: Non-Linux users: This is the year to convert! (Or help out with porting if you're a rare BSDer ;))

^2^: Similarly as rest of Konform Browser: Removal and disabling of telemetry, analytics, ads, touting, nags ("call-to-actions"), and integrations with centralized proprietary service (Mozilla VPN in this case).

top 5 comments
sorted by: hot top controversial new old
[–] Darkcoffee@sh.itjust.works 4 points 2 days ago (1 children)

Interesting project!

[–] ken@discuss.tchncs.de 2 points 2 days ago* (last edited 2 days ago)

TY! Would be cool with your feedback if you decide to try it out. And feel free to share around :)

[–] statelesz@slrpnk.net 3 points 2 days ago (2 children)

What's the benefit over or difference to other Firefox forks like LibreWolf?

[–] fizzle@quokk.au 3 points 2 days ago

bundled fonts.

if you're using librewolf try the eff fingerprinting tester thingy and if you analyse the results your fonts will be your most identifyable metric.

[–] ken@discuss.tchncs.de 4 points 2 days ago* (last edited 2 days ago)

The readme lists some of the motivations as well as distinguishing differences with LW specifically. Though the latter is a bit out of date by now as we've further diverged (gaps should be captured in by release notes, which is probably best place to read up on project RN).

What benefits are there for you? IDK, I don't know you or your needs and priorities! There are a lot of possible different answers to that. Also I'm a dev not a salesperson or influencer 😅

Why not give it a spin and let us know about pros/cons? :)

Separately, this is still relatively early days in public life of the project and I don't want to say "trust me bro" too much but aside from the actual differences between browsers themselves, we take the supply-chain side seriously and aim to keep a tight ship delivering new security patches from upstream on time while minimizing breakages for users. Since this is built without pinning on past achievements or identity, it will still take time (years I guess) to build track record and make this apparent.