smdh @ more Firefox BS.

“Firefox was created in 2002 under the codename ‘Phoenix’ by members of the Mozilla community who desired a standalone browser rather than the Mozilla Application Suite bundle.”

Remember those halcyon Phoenix days? I do.

They were all too short lived.

Now even Firefox forks such as @librewolf seem to be sitting on their thumbs, thinking maybe it’s sufficient to merely option out offending lines of code.

Have decades of return to libc exploits meant nothing to developers?!

If you aren’t going to branch to the code, don’t leave it in the source! It is an attack surface laying dormant whether you realize it or not.

Is it more work? Sure.

Do the work!

LibreSSL didn’t rip out tens of thousands of lines from OpenSSL without good reasons.

The dividends have been appreciable.

  • ohfp (she/her)
    link
    fedilink
    arrow-up
    7
    ·
    4 months ago

    For a moment there, I even foolishly started to type out a long reply, trying to take this in good faith. But the more I think about it, the more more or less everything about this starts getting infuriating.

    So, uh: whatever. Fork it? Send PR / “Do the work!”? Use something else? Go away?

    • ティージェーグレェ@sfba.socialOP
      link
      fedilink
      arrow-up
      1
      ·
      4 months ago

      @ohfp yet, you replied.

      How am I supposed to respond?

      PRs would probably be ideal.

      I can’t even get a working build environment locally for LibreWolf.

      They cross compile to macOS in the cloud and don’t have build instructions for macOS, because they apparently don’t use it.

      So the PRs would need to get started on a much more fundamental level.

      How many spoons do I have?