SecBrowser ™ in macOS: A Security-hardened, Non-anonymous Browser
< SecBrowser(Redirected from SecBrowser ™ in macOS)
SecBrowser ™ in macOS is currently Unsupported.
SecBrowser ™ can be manually configured in macOS in a similar fashion to SecBrowser ™ in Microsoft Windows.
SecBrowser ™ in macOS Maintainer Wanted!
SecBrowser ™ is a derivative of the Tor Browser Bundle (which itself is a derivative of Mozilla Firefox) but without Tor. This means unlike Tor Browser, SecBrowser ™ does not route traffic over the Tor network, which in common parlance is referred to as "clearnet" traffic. Even without the aid of the Tor network, SecBrowser ™ still benefits from the numerous patches that Tor developers have merged into the code base. Even with developer skills, these enhancements would be arduous and time-consuming to duplicate in other browsers, with the outcome unlikely to match SecBrowser ™'s many security benefits. While browser extensions can be installed to mitigate specific attack vectors, this ad hoc approach is insufficient. SecBrowser ™ leverages the experience and knowledge of skilled Tor Project developers, and the battle-tested Tor Browser.
Table: SecBrowser ™ Security and Privacy Benefits
|Default Tor Browser Add-ons||
|DNS and Proxy Configuration Obedience||Proxy obedience is achieved through custom patches, Firefox proxy settings, and build flags. Plugins which can bypass proxy setting are disabled.|
|Reproducible Builds||Build security is achieved through a reproducible build process that enables anyone to produce byte-for-byte identical binaries to the ones the Tor Project releases.|
|Security Slider||Enables improved security by disabling certain web features that can be used as attack vectors. |
|WebRTC Disabled by Default||WebRTC can compromise the security of VPN tunnels, by exposing the external (real) IP address of a user.|
|Firejail (Linux only) (testers repository only)||... |
Privacy and Fingerprinting Resistance
Research from a pool of 500,000 Internet users has shown that the vast majority (84%) have unique browser configurations and version information which makes them trackable across the Internet. When Java or Flash is installed, this figures rises to 94%. SecBrowser ™ shares the fingerprint with around three million other Tor Browser users, which allows people who use SecBrowser ™ to "blend in" with the larger population and better protect their privacy.
The EFF has found that while most browsers are uniquely fingerprintable, resistance is afforded via four methods:
- Use of Torbutton, which is bundled with SecBrowser ™ and enabled by default.
- Use of mobile devices like Android and iPhone.
- Corporate desktop machines which are clones of one another.
- The User Agent is uniform for all Torbutton users.
- Plugins are blocked.
- The screen resolution is rounded down to 50 pixel multiples.
- The timezone is set to GMT.
- DOM Storage is cleared and disabled.
The EFF's Panopticlick fingerprint test shows that SecBrowser ™ resists fingerprinting.
Note: Because tracking techniques are complex, Panopticlick does not measure all forms of tracking and protection.
- SecBrowser ™ conveys 6.26 bits of identifying information.
- One in 76.46 browsers having the same fingerprint.
- Browser's that convey lower bits of identification are better at resisting fingerprinting.
When Tor Browser's and SecBrowser ™'s HTTP headers are compared using Fingerprint central's test suite the results are near identical.
Table: Tor Browser vs SecBrowser ™ HTTP headers comparison.
Percentage (%) out of 1652 with fingerprints tags [Firefox,Windows]:
|User-Agent||Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0||2.48||2.42|
|Accepting-Encoding||gzip, deflate, br||82.14||82.13|
SecBrowser ™ is a derivative of Tor® Browser, produced independently from the Tor® anonymity software and carries no guarantee from The Tor® Project about quality, suitability or anything else.
This is a wiki. Want to improve this page? Help is welcome and volunteer contributions are happily considered! Read, understand and agree to Conditions for Contributions to Whonix ™, then Edit! Edits are held for moderation.
Copyright (C) 2012 - 2019 ENCRYPTED SUPPORT LP. Whonix ™ is a trademark. Whonix ™ is a licensee of the Open Invention Network. Unless otherwise noted, the content of this page is copyrighted and licensed under the same Freedom Software license as Whonix ™ itself. (Why?)