Mull Browser - Privacy Oriented Browser

Antsu · January 10, 2024, 8:47am

Hi there!

Would it be possible to implement the “force locale” -feature to the Mull browser? The same kind that the Tor Browser has.

Edit.

Sorry for cluttering this thread with nonsense question. Thank you @SkewedZeppelin for the clarification.

SkewedZeppelin · January 10, 2024, 5:22pm

@Antsu
Mull is not Tor Browser.

Rorse · January 24, 2024, 4:04pm

Is the mull browser more secure than iceraven browser? Also please tell why iceraven is not in f-droid.

SkewedZeppelin · January 24, 2024, 4:07pm

Iceraven isn’t on F-Droid because it isn’t compiled from source and contains proprietary Google libraries: `com.google.android.gms:play-services-fido` ends up in the build and pulls in other parts of the Google Play Services client library · Issue #463 · fork-maintainers/iceraven-browser · GitHub

Iceraven also changes few settings compared to vanilla Firefox.

My Mull on the other hand disables features that are a security risk and enables many privacy options by default.

See my Browsers - DivestOS Mobile

Alex456 · February 11, 2024, 7:10pm

Mull browser is turning on location permission without my knowledge. This keeps happening even after manually turning the permission off.I installed the browser from fdroid. (Android 12, Motorola device)

SkewedZeppelin · February 11, 2024, 8:11pm

Apps can’t magically grant themself permissions.
This is an issue with your vendor OS, what version/device are you running?

Alex456 · February 12, 2024, 4:12am

It has done that, not once but several times in the past 2 months. I’m using an A12 Motorola device. I don’t know what triggers it to automatically grand access (it doesn’t turn on the phone’s GPS, only app access). Sometimes I browse for a while, and when I check app permissions, the location access would be turned on. I’ve never received any pop-ups during browsing to allow location. And it doesn’t happen every time. I know it’s hard to believe, but it’s true. I’ve seen someone else post a similar experience on Reddit about Firefox Android (not mentioned which fork). I’m kind of losing trust in Mull. I’ve not installed any add-ons.

SkewedZeppelin · February 12, 2024, 4:14am

@Alex456
Some Android versions will, for whatever reason, automatically grant location to the default browser.

Try installing another browser (eg. official Firefox), ensuring it has no location granted, then setting it as default browser, and see if it is granted automatically or not.

Also if you install Mull from F-Droid.org, you’re installing a version directly compiled by them from source code.

Alex456 · February 12, 2024, 4:17am

Mull is currently my default browser. I’ll change it to see if it helps. Thanks.

Irynfedy2017do · February 12, 2024, 6:51am

Спробуйте браузер Iceraven (sauna repo)-я думаю,що це буде набагато кращий варіантш,ніж Mull.Я з ним працюю вже пів року-і нема жодних проблем.

Licaon_Kter · February 12, 2024, 10:23am

Is that open source? IF so… why not in F-Droid? Hmmmm

Alex456 · February 12, 2024, 12:18pm

screen-20240212-171045~2

The Mull browser is automatically granting Location access. (Android 12, Moto). When you clear Mull Browser storage (delete app data), somehow the app automatically grants Location access. This could possibly be a privacy threat for many. I have attached a gif as proof. This doesn’t happen with Fennec, OG Firefox and Firefox Nightly . Mull developers, please look into this issue.( Mull was not set as default browser while testing)

Alex456 · February 12, 2024, 12:25pm

@SkewedZeppelin I have found the issue. Please look into this.

SkewedZeppelin · February 12, 2024, 8:39pm

@Alex456
again, the issue here is your system

Mull and Fennec F-Droid are identical in this regard.

karen · May 10, 2024, 2:06am

Just asking as there have been zero updates since April 6th despite Firefox updating several times since then.

SkewedZeppelin · May 10, 2024, 2:23am

It absolutely is not.

F-Droid can just be slow sometimes.

If you want the latest version, get it from my repo directly: Our Apps - DivestOS Mobile

Update history of various Firefox forks are here: https://divestos.org/misc/ffa-dates.txt

darren · August 20, 2024, 10:05pm

Hi, I use Mull on two seperate devices with which one I get through the fdroid app and the other through the fdroid site since I always get errors when trying to add a new repository. The issue I have is detailed below.

On my phone I managed to add the DivestOS repositories and got an update for Mull today, upon checking it says the app has several new permissions yet all the permissions marked as new are permissions it already had? Is this because the DivestOS version doesn’t recognise the pre granted permission of my installed copy of Mull since it came direct from f droid? It also states the app contains anti features which I don’t remember it saying before I changed repos?

Second issue - where do I actually find up to date apk installers for Mull? My tablet won’t work with the DivestOS repo so the only way of being updated before fdroid upstream 192.0.2 is to somehow get the apk through the fdroid app, upload it somewhere and then re download it on my tablet for installation. It would be much easier if Divest gave out apk’s.

xUxSxExR · August 20, 2024, 11:16pm

You cant update from F-Droid to DivestOS Mull, you need to reinstall. Different signing keys

Metadata is different these antifeatures are things that are added voluntarily.

Why doesnt the divestos repo work?
Check if FFUpdater works.

I use Obtainium with the DivestOS repo as source:

Url: DivestOS Official

Type: F-Droid 3rd party repo

App id: us.spotco.fennec_dos

darren · August 21, 2024, 12:38am

When I try adding the repo through URL I always get this message on my tablet.
I get the same on my mobile but found that adding the repo by scanning the QR works for it but the same scanning method does not work for my tablet which is kind of weird.
I use a thirdparty firewall and think that may perhaps be somehow involved but don’t want to disable it in order to find out, or selectively pick through granting internet permession to each random app and process until I find the one related.

Thank you for confirming my suspicions about this.

Since anti features are a bad thing is it not unwise to voluntarily add something which is seen as harmful to privacy and security?

Thanks I will do - do they link in with the DivestOS repo also?

SkewedZeppelin · August 21, 2024, 3:07am

FFUpdater pulls from DivestOS.org repo
I recommend F-Droid official client over FFUpdater or Obtainium because it has full mirror support
Mull from F-Droid.org and DivestOS.org have different signing keys
Mull on F-Droid.org gets updates a few days after DivestOS.org
If you want to switch between them you must uninstall
The DivestOS.org repo is documented here: Our Apps - DivestOS Mobile
Metadata, including anti-features, between them is the same
Permissions showing as new is an old F-Droid client bug and shows for other apps as well