PiraHxCx

you mean the shark?

Hmm, yeah, perhaps it's better not to have those by default, as it is privacy/security‑oriented… It would be fun to discover how many users change those settings though, if only they gathered telemetry data xD

I just remembered this documentary I watched about industrialized food, and when they created cake‑mix powder in the '50s the housewives didn't like it because they didn't feel like they were making the cake, so the industry removed the dried eggs from the recipe just so the housewives would have to add the eggs and whisk the cake themselves and feel like real bakers... look at us, we are so selective about our software and like to fine‑tune it to our needs. If it already came all configured for us, we would feel like normies hehe

I don't think LibreWolf should allow that DRM crap and other vanilla shit like that, but I don't quite understand the project aim. Is it to be a browser for daily-use or a browser that is to be used only for when you want extra privacy (so it doesn't try to be convenient)?

Mullvad is quite broken for daily-use, and I guess it wasn't designed for that anyway. You can't save password, cookie exceptions seems to not work properly... you seem to have to either erase everything when you close the browser or erase nothing, so in that way LibreWolf is way more friendly for daily-use - I especially liked being able to add Enhanced Tracking Protection exceptions, because I few sites I visit has CORS chatboxes.

So although very configurable for daily use, the out of the box experience suggest the project is not for that?
If everyone using allows saving browsing history, passwords, and add cookie exceptions, I guess those should be the default (most bad reviews I saw complained about it, because not having those as default put it into the "inconvenient" class of Mullvad and Tor), and a prompt asking if you want to stay logged to that site when you save a password so that it's automatically added to exceptions would be nice too hehe

I read it once and couldn't find the post again, but I managed to find some stuff:

The kernel hack was in 2003:
https://lwn.net/Articles/57135/

There is no official communication between the NSA and Linus Torvalds. In 2013 when he was asked about a Linux backdoor for the NSA and said no while shaking his head yes, it's officially considered just a joke
https://www.youtube.com/watch?v=7gRsgkdfYJ8

Later that year his father mentioned it again... is it an official hearing? It seems like they are also questioning people from Microsoft, but I didn't find info on that:
https://www.youtube.com/watch?v=wwRYyWn7BEo

In 2022 a lot of information about Bvp47 came to light, a Linux backdoor NSA was using for more than 10 years - I didn't find any info about this exploit being possibly because of systemd or not.
https://www.bleepingcomputer.com/news/security/nsa-linked-bvp47-linux-backdoor-widely-undetected-for-10-years/

Red Hat introduced systemd in 2010. My info about it being a subsidiary of a Big Tech was incorrect and I removed from my original message. It was only bought by IBM in 2018.

From what I heard, people hate systemd because Linus Torvald was approached by the NSA to create a backdoor on Linux, he said it wouldn't be possible to change the kernel because there were too many eyes on it, there was a mysterious hack of kernel.org introduced a mysterious code but it was spotted and removed... well, what was the only other thing common to all Linux? The sysv-init, but it was too small, too tight, too specific for them to create a backdoor there, they needed something big, bloated, doing way more than it should do, like it was just supposed to start the system but it can also do unrelated stuff like handling DNS, and an American company shows up bringing systemd, that solved all the problems the NSA had to create a backdoor on Linux, and all distros jumped into the honeypot :)

OP just deflecting and ignoring... here's the deal about privacy:

If the company doesn't advertise itself for not saving logs or selling your data: Don't waste time with the ToS.
They are saving logs and selling your data.

If the company advertise itself for not saving logs or selling your data, but it's American: Don't waste time with the ToS.
The government can legally force them into cooperation while placing them under a gag order.

If the company advertise itself for not saving logs or selling your data and it's not American: Read the ToS if you want, but it's not important.
You will hardly find anything that is not open source recommended for privacy. Read independent code review of the software and third party audits of the company.

"they keep using it thinking it enhances their privacy."
Can you give an example of stuff people use because they think it will enhance their privacy but don’t?

about DuckDuckGo https://duckduckgo.com/privacy
"We don’t save your IP address or any unique identifiers alongside your searches or visits to our websites. We also never log IP addresses or any unique identifiers to disk."

Sure, you can't trust American companies for shit, same goes for Brave and its ecossystem, so if you can't trust the ToS content, what's the point of reading it, duh :P

If a company doesn't advertise itself for not saving logs, having no trackers, not using you to train AI, not selling your data, etc, etc, it's because they are doing all of that, so it's also pointless to read the ToS... if they say they don't save logs, etc, then sure, there may be a point reading to see if there are any caveats, but I trust more third party audits (like Proton and Mullvad regularly have) and the code being open source and reviewed independently.

Can you give an example of stuff people use because they think it will enhance their privacy but don't?
Because software and services people use because they think it enhances their privacy usually are:

Proton (mail, VPN, docs, storage)
Mullvad (browser, VPN, DNS, search engine)
Tuta, DuckDuckMail, SimpleLogin, addy.io, Mailvelope, Thunderbird
StartPage, DuckDuckGo, Duck.ai, SearXNG
LibreWolf, Tor, IronFox, Vanadium
uBlockOrigin, AdGuard DNS, ControlD, Technitium, Pi-Hole, simplewall, Portmaster
Debian, Fedora, Arch, GrapheneOS
Qubes, Whoonix, Tails
Fediverse instances that explicitly say no tracking/analytics, telemetry/data selling, ads, AI training

Reading the ToS of any of these revealed they in fact don't enhance privacy?

I want a "target pressure wave attack" necklace

I use my cellphone only to message relatives and play some MP3s. It's a Samsung J2 Core I bought in 2019 because it was the cheapest non-second-hand smartphone I could find at the time. Its last security patch was in 2021, and they dropped support. It's barely compatible with the current Google ecosystem, and I'm probably getting locked out of it anytime now because apps will refuse to work... even LineageOS, which supposedly increases the life of smartphones, doesn't support it... I'm sad I'm going to have to spend money on one of these sometime soon even though it's still working.

Oh yeah, the only problem would be if this simply addon could turn me into an exit node (which is a more complicated thing than just running guard or middle), but being a guard-guard, well, this addon sounds pretty cool :)