Hi, we have logging-based auditing but missed UPnP -- it won't happen again, sorry for this oversight and thanks for pointing it out. What "number of IPs owned by google" did you see? We do not see but you may be in a different region. Thanks for any info.
What kind of a Mickey Mouse (tm) operation providing a private and secure web browser wouldn't have fixed such issues from the start? Doesn't help me trust them.
I think your comment is a bit misleading as they aren't doing anything nefarious as you suggest. My guess is this is a carryover from Chrome and not something Brave decided to build; if that's the case your not getting more secure by staying with Chrome.
In evaluating Brave, you have to give it apples to apple comparison anyway. Brave vs. Chrome as its directly built on chromium. For compatibility, it shares the chrome app store too. I like to think of Brave as Chrome without most of Google but with all the benefits.
Anecdotally, I switched a colleague to Brave about 3 months ago. He decided to switch back to Chrome. Chrome was so much slower than Brave and added battery drain that he came back. I assume it was all the additional requests cut out (Google) or blocked by Brave (Adblocker).
You are implying that they are doing something nefarious by omission. Because it’s implied, you also gave yourself the escape hatch to say “Where did I say that?” When called out on it.
A reasonable person reading your comment would think you are claiming the Brave team added code to surveil your network. If they dig deeper through the link you provided, they learn that the reality is that they inherited code from the Chrome team that exists only to support Chromecast. The problem has been found, a bug has been filed and the feature will be removed.
But, most people won’t dig. They’ll take your comment at face value and walk away with a very different story than the reality.
Now I sound like I’m accusing you of being nefarious :p But, I don’t think you planned out spreading FUD. I think you were dissatisfied and wanted to share a strong version of your user story. Unfortunately, your story is so strongly worded that is ended up resembling techniques used by trolls.
You are trying to make me say things I never said.
What I did was try Brave out. I _want_ to like the product. On top of that I have a lot of respect for most of the people behind the project. As a security conscious person I looked at what kind of network activity there was on start.
After installing Brave, I notice things that IMO should not be there. After that I even spent the time to search what it was. The link mentioned by me in my post looks to me like it is a post at a forum from Brave. As someone who is not familiar to the project it is not clear that there is any bug report or bug filed, where do you see that?
There is also no indication to me that somebody from the Brave team replied to the post. There's 1 reply 6 days later, by an anonymous user, which explains what is going on, then 24 days later the thread is closed.
The reason I did not reproduce the text from the link is that it is pretty clearly stated down there. If I wanted to spread FUD I would not have provided the link.
You never said it. A reasonable person would infer it.
I spend too much time arguing with trolls on the internet for fun. I don't think you intended to, but your post uses a lot of techniques widely used by trolls such as: linking to the complicated, full explanation while telling an edited, "technically true" version that can be misinterpreted by a low-effort reader. Having an escape hatch is very important to them.
Again, I don't think you are trolling. You just ticked off the checklist of a troll by accident. I'm only being a pest in the hopes that in the future you'll put more consideration into how your writing is interpreted by low-effort readers.
Text is such a crappy medium for casual conversation. It's amazing the internet hasn't burned itself down.
This is preposterous. This kind of tone-policing doesn't belong here. A charitable read of what he said doesn't "tick off a checklist of a troll". The time to back down was a few posts ago.
They're the ones who are spamming with their marketing blogposts about just how great their product is. Calling them out with a strongly worded reply in the comments (after actually trying out the product might I add) is about the only counterattack for this spam.
Calling out us HNers as mindless with your 4 month old account is a bad look.
Most of us that do not use Brave at this point do not necessarily use Chrome. In fact, those of us that care about the issues raised by the OP probably use Firefox and/or Chromium.
It doesn't matter if Brave is nefarious or not. Extra data transmission means extra possibility for third parties to gain access to it... hackers, governments, etc.
I'm impressed with Brave. I've started using it as my primary browser (after a couple false starts a year or so ago) and it has all the best of Chrome without the worst.
There is controversy about how Brave does stuff, and I agree there is some sketchy stuff they are doing (replacing ads with their own). I'm glad they are giving us a choice, though, and exploring different options for sites being able to makes some money.
Switched from Firefox to Brave in the last year across devices and not looking back (though I do miss containers!).
Blocking ads and trackers by default is pretty much essential in 2019.
The myth about ad replacement doesn't seem to want to die though!
There is no ad replacement, though the roadmap says at some time in the future publishers who opt-in will have the option to have their ad-slots filled by Brave's privacy-respecting approach.
For now I think the only ad trials running are pop-up notifications if users opt-in, and that's only in a few markets at this stage.
Not something I plan to opt-in to, but looking forward to the Github / Reddit / Twitter tipping and integrated crypto wallet.
That's all rolling through in the next few months.
I'm currently using Firefox on all devices as my primary browser, but there is a single feature that I've gotten used to in Chrom* browsers on mobile - 'pull down to refresh' - that looks indispensable to me, and I'm planning to move to Brave on mobile just because of that (already replaced Chrome with Brave on Desktop as my secondary browser). Yes, there are add-ons to do that on mobile too, but they are all inconsistent and half-baked. Chrom*'s built-in pull to refresh is very smooth.
I primarily use Firefox on my desktop, but I use Brave on mobile. It seems somewhat easier on the battery than Chrome, which would make sense being as it's blocking content that can be CPU intensive.
You might like it, though. I've used Brave's mobile sync and it works for bookmarks across devices quite well. It's surprisingly simple to set up, too. I don't fret much about forgetting whether I opened a tab on my phone or desktop if I remember to bookmark it.
That said, I still use KDE connect to send links to my primary Firefox instance and vice-versa, but the bookmark sync is in some ways more convenient. I'd imagine they'll eventually synchronize more things, like tabs.
Try Kiwi Browser for Android. Its a Chromium-based browser with built-in ad-block. If you want, you can even install uBlock Origin or any other extensions as it natively supports extensions.
That was my setup, and much prefer integrated blocking and the additional polish and features. The yubikey integration coming is particularly interesting: https://brave.com/ios-yubikey-support/.
Future monetization: that was actually an incentive for me. Having been in the belly of the beast on ad-tech I'm cheering the new ad model Brave proposes for the industry.
If you're not aware how messed up the industry currently is, keep an eye on Ad Fraud Historian on Twitter: https://twitter.com/acfou.
Firefox needs to respect the OS certificate store instead of using its own. Without it client-cert authenticated sites cannot be accessed. IT admins usually have policies on Windows and MacOS that prevent export of client cert+priv key.
OS certificate stores often come with the political baggage of the OS manufacturer. When a Chinese Gov't CA was found to have engaged in fraudulent behavior [0] Google and Firefox were quick to revoke/remove the CA cert from their products. Apple and Microsoft did not do the same, likely because they do not want to upset the Chinese Gov't. (IIRC Iphone users cannot even manually revoke CA's on their own phones.)
Then FireFox has made the deliberate choice of excluding millions of users. There are millions of users who use identity management solutions where user-certs and priv-keys are put into the OS store of their devices.
Using the OS secure-store should be a preference option. The folks who don't want to use the "political baggage" of the OS manufacturer - as you put it - can continue to use their pristine gardens.
I didn't know about this option - thanks. This option basically uses the OS cert store for server certificates, which is one part of the story.
Now, if they also did this for client-certificates then all the folks in companies that use corporate certificate-based single-sign-on can use FireFox!
I’m actually happy that Firefox uses its own store. This means that I can use it for browsing through the corporate proxy without having the corporate CAs installed in my OS. This way I’m always aware which data is inspectable by the company.
It would be nice however if Firefox had an option to use the OS store, including devices like yubikey.
Doing that gives me a weird, inexplicable feeling. I know Firefox blocks stuff, especially if you set tracker blocking to "Strict". It doesn't block all ads so I still want to use uBO... but do I disable Firefox's blocking to avoid doing the same thing twice? Or are there things Firefox handles better than uBO? It's really too much thinking so for now I'm using Edge Chromium with uBO, and that's not a solution :D
I've never understood this either. I think a deep dive into add blocking as we enter web3.0 makes sense. Granularity is missing in the new "browser wars"
> The myth about ad replacement doesn't seem to want to die though!
Just want to reinforce this from my experience. I've been using Brave since before they were based on Chromium. And a lot of comments were saying that Brave replaces adds with their own. But I never saw that.
Now they have a feature you can opt-in, to see adds and get BATs for that. I actually wanted to test this and opted in, but still never seen an add. I guess my location is not yet included.
So at least based on my experience from using Brave for a long time - it's hard to get adds even if you want to.
Problem with both is that they are still Chrome at the core. Currently Google has way too much power dictating how browsers render the web for users and things don't get any better by using any Chrome(ium) forks.
Only real hold out is Firefox even Microsoft buckled under the pressure. If we lose Firefox then in the future don't be surprised when Chromium support suddenly stops and only game left in town is Chrome.
Now all the nay sayers will come in defense of open source and my only response is: don't be so fast to forget "embrace, extend, and extinguish"
Apple will keep developing Safari, luckily, so there's still a 3-way race in many ways.
Safari is only ~4% of desktop/laptop browsing but over 20% of mobile and with mainstream users slowly moving to tablets over laptops this presents an important and large user base.
If it comes down to Chrome or Safari, I will gladly use Chrome. Safari is far too wonky for me, and whenever I tried using it, I always had bad experiences. Google might be evil-ish, but I find their ecosystem far more pleasant than Apple's. And while Google might try to collect lots of data about my online behavior, I can always use something like a Pihole or other kinds of ad-block to stop them from getting that data.
>There is controversy about how Brave does stuff, and I agree there is some sketchy stuff they are doing
I would be more open to trying/using brave if someone respectable packaged it. As of writing, not a single distro packages it. It would lower my barrier to entry a lot if it were packaged by debian/fedora/f-droid. It doesn't imply anything serious, just that it can be built from source and that it passed the distro's basic diligence and guidelines. This seems like low-hanging fruit from brave's standpoint, and yet multiple issues on their github tracker about packaging downstream have remained open for a while.
Nix packages it: https://nixos.org/nixos/packages.html#brave , which means you could use the Nix stand-alone package manager to install it on top of any distro. (I just tried this and am typing this from Brave, installed via the Nix stand-alone package manager running in Void Linux.)
If they care about both a fast development cycle and rapid adoption then spending time getting an official package for Debian/etc. makes no sense.
> It doesn't imply anything serious, just that it can be built from source and that it passed the distro's basic diligence and guidelines.
For a modern web browser it probably doesn't achieve the latter. Both Chromium and Firefox are too complex for Debian's meager backporting resources. So they make an exception to their guidelines and ship the LTS release. I suppose the userbase just hopes that bad things don't if the browser LTS upgrade happens before the OS's LTS upgrade is ready.
Firefox has an LTS release, but chromium doesn't. So distros just ship the update every month whenever chromium is tagged. In practice, it follows chrome's release cycle very closely. Since brave is based on chromium, I don't see why this model can't work for brave given that distos are able to build and ship chromium already. (Android is a more complicated story )
Hi, in my sparetime I help some of the linux packaging for Brave. We are looking for people to help us do this very thing. We provide packaged for deb, rpm, and snap. I maintain the snaps for brave but have been disappointed with the performance. If you are willing to test an maintain distros we'd be more than happy to get you involved.
Brave is a private, for-profit company that has raised $42 million in venture funding—out of curiosity why do you bother doing free work for them in your spare time?
This same argument is true of nearly all companies, including "not for profit." For instance the chair at Mozilla/FireFox pays himself $1.1 million a year, the treasurer $1 million. [1] And those numbers are probably higher now. That's from 2016, the most recent published data on their site. Since 2013 [2] their CEO has increased his yearly compensation by more than $300k, and the treasurer increased his pay by more than $400k a year. And now with Mozilla planning to release a pay-per-month browser (because their half a billion dollars in revenue just isn't enough!), we can expect to see that executive compensation skyrocket even further.
What people like to imagine "not for profit" means is not what it means in practice.
The Linux foundation heads have a similar salary range, like many other foundations and it is not an issue.
"Not for profit" means with a public stated goal, means that your share holder will not suddenly overcome your company strategy and make you sell all your client data, or make you sell bananas, because "it's more profitable on short term".
That is not an hypothetical scenario, many IT companies already felt into this trap. The foundation model of Mozilla protect you against that. This is something that Brave company does not... And the position of its CEO on publicity does not reinforce my trust into that.
Being non-profit does not somehow protect companies or their customers from making bad decisions. For instance Mozilla lately has been trying to take a position on privacy. They do this at the same time that they direct their users to Google search by default which is about as anti-privacy as you could possibly get. The reason is because they make a ton of money doing it.
Other recent bad decisions from them would include the decision to forcefully install a Mr. Robot related promo into the browser. And now most recently they plan to transition to a freemium model for FireFox where the regular FireFox will be free but "premium" features will now require a monthly fee. If you find these behaviors to those of a company who put mission ahead of profit, then we will have to simply agree to disagree.
And still I prefer all these decisions to a pseudo-compagny that try to create a monopoly on publicity by rebranding Google-chrome (WebKit). Brave could almost be qualified of a scam.
They have all ingredients of a scam, including an ICO.
What is the difference between having the share holders taking decisions for the users against user wishes, or having the heads of a non profit organization doing the same (like Mozzila did quite some times)?
On the flip side, what people seem to want “not for profit” to mean is “employees work for below market rate for some reason”.
I don't get it. I would expect employees at a non-profit to be compensated along the same lines as those at a for-profit. It's a constant easy story for shitty journalism in the UK – "oh my god this head of a charity makes far less than the head of an equivalently–sized private company! what a bastard!"
Take the ideological (and incorrect) definition of not-for-profit vs for-profit companies. The for-profit company is supposed to be willing to utilize any sort of money-making opportunity to improve their bottom line which is supposed to be their goal. The not-for-profit company is supposed to sidestep opportunities that do not necessarily align with their mission, resulting in less profit but greater integrity, as maintaining their mission is supposed to be their goal. If this were the case, not-for-profit business would invariably end up with substantially less funding than comparable for-profit businesses. As a consequence of this, it would be fiscally impossible for them provide the same sort of compensation.
This is of course fallacious. But the reason for this is that not-for-profit and for-profit companies operate in mostly the same way. This is something that most people do not understand. This is precisely what I was aiming to point out to the person who initially said 'why would you ever contribute your time for free to a for-profit?' It's an intuitive, but incorrect understanding of the differences between the sort of a companies.
You’re saying the same thing but wrapping it up in scare quotes.
You’re suggesting it would be better if Mozilla did… what? Had no leadership team, perhaps using some kind of non traditional management structure? Paid their leadership team below-market rate? Or is it just the general idea that high-level leaders are paid too much throughout society, and that this needs to be fixed? (Which is totally true, but not at all specific to Mozilla).
I also contribute to linux kernel, and tons of open source projects. In this case, I am pushing that users should manage the packages as it gives the distro a bit of independence. this is also the apache way which i am a member of.
I can't tell that I'm seeing "their" ads. The way I see ads is a notification type prompt where I have to click view and navigate to a sponsored page. Do you have a side by side where Brave replaces a site's ad with their own?
I don't think that's a thing they do, so I'm curious to hear from GP. And in terms of the notification prompts, that's something you have to enable (disabled by default) if you want to "earn" tokens.
This is what AdBlock Plus did with the "Acceptable ads" program, which is their main source of revenue. Arguably with some reasonable criteria for what an "acceptable ad" is, but to me entirely unreasonable because the software doesn't by default do what it says on the tin.
That's years ago, I believe, and there are still ad blockers that don't seem to accept compromise.
Can you give Brave your own dir of install in win64? Thats the only thing from stopping me to use it on my streaming #DAW since it has a small SSD, which I refuse to install non-critical software on.
I wonder how that might work in combo with PiHole or similar on my network. Like, if they are replacing ads are those ads then blocked anyway or slip streamed through?
Firefox makes money by its search deal with Google, in other words: by funneling their users towards Google. This pretty much also boils down to "making money by showing you ads". Google's search ads, to be precise. Now you can say: "But I can turn this off", but then you'd also turn off their source of revenue.
Brave's stated goal is to establish an alternative ad-based business model that's long-term viable without the user being tracked. Will this be successful? Who knows, but at least they're trying to find a business model that respects your privacy while being long-term sustainable. Firefox's model doesn't, at least the way it works now.
>Firefox makes money by its search deal with Google
Of course, development costs a lot. They will not need to rely on Google in the future if more people donate to them regularly. Consider donating to Firefox.
Considering most of their jobs are in mountain view, a very expensive col and developer salary area, they should consider moving somewhere more economical if they expect to live on handouts.
Why should we have to support their over priced office space?
I suspect that if you ask them, they're not in Mountain View for fun, they're there for the access to top tier tech talent. Browser rendering engines and java script engines are serious engineering, needing good engineers. It's not the only place in the world you can find them, but it's a good one.
Because they're still doing important work, and deserve to have nice things? Why does working at a non profit mean that you should have a bad quality of life?
You don't have to support them, but if their product provides value to you, it's worth considering
I think this miss the point. This seems more in the line to "Duolingo to Silicon Valley workers: Move to Pittsburgh, where you can actually afford a home" call[1].
That is, it's not about less good quality of life, just less high salary possible only in places with less high level of misc. inflation.
Plus passed some level, I doubt higher salaries make good corollary with high quality of life. Not that you can't have a sane happy life with a lot of money, of course. But :
- it doesn't seem to to be a requirement, see for example the case of Matthieu Ricard[2]
- large salary, or more generally acquiring a social status broadly recognized as great success doesn't prevent from terrible quality of life. Arguably, even you go with Camus saying "Un geste comme le suicide se prépare dans le silence du cœur au même titre qu’une grande oeuvre", not all people in [3] committed suicide out of a situation where they felt they had good quality of life.
You're not wrong, but to many people, the appearance of a non-profit (notwithstanding the legal status of Mozilla Corp) operating in an extremely high CoL region isn't good.
If SV doesn't trigger that for you, think about, say, a non-profit headquartered in Monaco, that asks for donations so that its employees can have a nice home and QoL in Monaco with salaries several multiples of your own for comparable work.
Firefox is persuing other revenue sources as well, such as a paid premium browser. My last hope against the advertising economy is this model taking off.
Same, I intend to pay for their premium browser. I've been using Firefox for years. Chrome couldn't get me to shift over. I only use Chrome when testing front-end code and I don't do front-end development anymore.
I already pay YouTube for no ads, so I agree. I would do the same for TV to an extent, too many Netflix competitors popping up, I don't have time to spend hundreds of dollars on those, I wont be consuming enough content to justify them. I do spend way too much time online, I usually pay for no ads on mobile games / apps.
To argue from an extreme point of view, neither of those choices are very good because the web in general is a terrible platform. The whole standard they implement (and its velocity of change) seems geared towards minimizing the potential for competition, and is implemented without a hint of concern for what identifying information the browser APIs might divulge by design or how much the attack surface for various malicious activities grows with their inclusion. It's an arms race, and adtech have found where all sides keep their guns.
The difference is any tracking Brave does is 100% local on your device, which eliminates any potential privacy issues that may exist with other advertising models.
What are they sending to Google IPs specifically? Also what makes you think that has anything to do with advertising, and isn't, for example, a side-effect of the browser being a Chromium fork?
Brave Ads are opt in and give 70% of gross revenue to the users who opt in. Leaving this out while glossing over other browsers’ default search revenue model is doubly misleading.
Alternatives based on peer-to-peer (micro)payments are already staring to emerge, e.g. this guys is building patreon alternative based on Lightning Network (Bitcoin's second layer able to handle millions of tx per seconds for negligible fee):
depends.. Brave has actually got it's own token that could be used to pay creators, not sure how the transactions are logged though but i'd imagine that you can privately pay without being tracked
What do you mean by ugly? That GDI text rendering is used on Windows instead of DirectWrite for some font families? This can be disabled in about:config by assigning `gfx.font_rendering.cleartype_params.force_gdi_classic_for_families` an empty value. Or do you mean that there's no subpixel positioning on non-Windows/macOS? That one has no fix, except when the text rendering part of WebRender goes into production.
AFAICT Firefox text rendering has always been fine on Linux. Chrome until a year or two ago had no subpixel antialiasing, different gamma for antialiasing, or whatever - its text rendering used to look ugly, or more neutrally: different from everything else.
This is how every thread on this topic goes. 99% downvoted and hate directed towards me. A couple of people chime with “yeah I agree with you”. And nothing changes because it cannot. Because it’s based on preference.
> was already implemented in heavily optimized C++ handling requests with sub-millisecond overhead, we found that we can further optimise it for a 69x average improvement
Seems like an unnecessary optimization, though I'm sure it was fun. I wrote one a little while back in C++ also[0]. It's not documented the best, but uses a kind of custom tree to match.
They're presumably gaining the other non-performance advantages of Rust over C++ (i.e. the borrow checker etc.) though, so safer and faster is a win. As you say though, they seem to focus on performance but that might just be the audience they see themselves talking to.
I think "Chrome but faster" would convince a mainstream audience pretty well, even though they might not be aware that they're not going to notice the milliseconds.
if you're moving from Firefox to brave you do notice the speed increase. FF on my work laptop (i5, 16GB of ram) and my s8 is significantly slower that brave.
It's been a gift to me, since I really just can't help but install extension after extension and FF is just not good at that in my experience (plus the selection is narrower but I don't put that on FF). Another thing is that Brave has the Chrome url search which I've come to realize is actually pretty central to me, I just can't stand the 'prepending a letter' type search. Overall it's the closest I've felt to chrome with the stated goal of addressing the the primary reason I feel uncomfortable with chrome, so I'm happy for now.
People need to stop with this argument. Chromium might be open source, but it's still Google who decides what get merged. And yes, people can fork, do their own patches, fixes, but if it deviates too much from Google, you'll end up with a new browser to maintain on your end without a team the size of Google. If all theses teams choose to not implement their own browser, it's for a reason: a web browser is a complex piece of software. And the best example of this is the Edge team who forfeited implementing their own and just went with Chromium.
They definitely can't reasonably do that but in the long run I don't think Brave has the resources to maintain a hard fork from Chromium. That's the main reason I don't really get the Brave hype when Firefox does the job just fine and is actually a fully independent codebase instead of a relatively shallow customization of Chromium.
The only argument that keeps coming up is that Brave has a built-in adblocker but it's not like installing ublock origin is very challenging in Firefox (and on top of that your extensions are automatically synchronized if you use the Sync feature) and the relatively blurry monetization scheme of Brave makes me think that in the long run this built-in ad-blocker might prove a liability more than a strength. I'll take my ad-blocking independent, third-party and non-profit, thank you.
Brave, Opera, Vivaldi, Epic, Blisk, (and Edge?) can pool development resources. I dont think all the forks would have as much problem as people believe they would. A ton of webkit users switched to blink nearly overnight.
I think the bigger issue is chrome implementing an new web feature that blink-fork2 and firefox dont agree with, that web devs start implementing anyway. Google controls web development more than they control browser development.
Theres also the WideVine argument, but for me personally I dont see why i need my primary browser to also play netflix. Its not that hard to open a separate netflix app/browser. The amount of drm encapsulated video I watch in my browser is minimal to none.
I think Edge is good for Chromium. That puts Microsoft as a stakeholder there too, which takes power away from Google. If Apple were to move to a chromium-backed Safari, that would mean that three major players would be stakeholders in Chromium having a sane future.
This means that if you send a meaningful patch, Google doesn't like it, but Microsoft and Apple do, it might get merged.
I kinda agree that we don't need myriad of browsers. OS and CPU duopoly seems to be kinda ok. But for something that's _supposed to_ be universal it makes no sense to encourage fragmentation...
> chromium-backed Safari
Double whammy. Chromium runs on fork of WebKit which is Safari's engine.
> Developer Samuel Maddock found this out to his cost. He's been working on an open source Electron-based (Chromium) browser called Metastream that allows users to stream videos in sync with one another. It's designed to be a way for friends to watch shows together even when they're apart.
> But Google's Widevine DRM business doesn't want to work with him. After four months of waiting, the firm responded to his request to license their proprietary DRM code, in conjunction with the castLabs API, with a denial.
unless they fork from original open source. google can stop developing it but they can not stop others from continuing from where they left off from that point. i don't know any thing about brave but, chromium is differrent from chrome.
It's interesting to see block list creators more or less reinventing all the tricks that network-security regex implementation people invented 10-20 years ago. One wonders whether they might do better picking up an off-the-shelf regex implementation (e.g. our own Hyperscan, or for those who must must must have something in Rust, the engine from ripgrep, which I believe is just called "regex" :-) ).
As far as I know the « regex » crate is used in some places. But interpreting block rules has a lot to do with specific options and behaviors which are pretty tailored to the task and it would not be easy to use off the shelf regex implementations for this. Although I myself looked at Hyperscan in the past for the purpose of blocking ads (the performance looks amazing!).
Here the specificity is it tries to match against multiple regex, in rust there is RegexSet from the regex engine, it performs a single pass, but I'm not sure it optimize a lot graph for matching. It seems HyperScan can do a lot of optimization by extracting commonalities between regexes.
They replace other ad network ads with their own ~ads~ crypto currency. They monetize the content of others and don't tell them. If you have a youtube channel, they will swap out ads and collect the ad revenue without telling the channel that they're doing so.
I'm not particularly impressed with their business. In fact I'm pretty disgusted with it.
This is untrue, as far as I'm aware. Brave blocks ads and trackers by default, and you can opt into a separate "Brave Rewards" program which pays you in crypto-currency tokens in exchange for receiving ads via push notifications and the New Tab page (not inline with web content).
Users can then choose to contribute some or all of those funds back to the publishers/creators they visit that have signed up to Brave's platform. They try to do this all in as privacy-preserving a manner as possible.
I’ve been around the ad ecosystem for a decade, and for the better part of it I’ve been convinced that the audience needs a full seat at the table and a piece of the ad transaction if advertising is going to have a future at all on the web.
Brave and BAT is the most credible solution to this problem I’ve ever seen.
No, the Brave browser does not try to verify that the page that it's replacing ads on has opted into Brave's "rewards" thing. They'll s/page_ads/brave_ads/ and collect a check regardless of if that revenue is going to the page owner or not.
My point was that this literally does not happen. Brave does not insert ads into pages, ever, it only removes them. I'll admit I'm skeptical of the whole cryto-currency model, too, but I try to keep my points factually accurate.
They aren't. The brave ads appear as a system notification at fixed intervals whether or not you're browsing. They're as disconnected from your browsing activity as they could possibly be.
The only connection is that your browsing activity determines how much each content provider is owed.
Could you please stop spreading misinformation? As the surrounding commentors have mentioned, Brave Rewards is completely opt-in for users _and_ they do verify whether the page is a part of the program _and_ they don't replace ads with their own.
Why would they have to? The user has opted in. From your link: "Starting today, users of Brave’s latest release of the desktop browser for macOS, Windows, and Linux can choose to view privacy-preserving Brave Ads by opting into Brave Rewards" [emphasis mine]
Like everything on Brave it's all up to the user. First the user has to opt-in to this ad program. By default Brave simply blocks everything. If they opt-in then they will be able to see a number of ads per hour that they specify. Of these ads, 70% of the revenue will go straight to the user and 30% will go to brave. The user then decides how their coins will be spent. There are straight forward ways for users to support their favorite sites or content creators. So imagine you want to support site.com, you could choose to automatically donate some chunk of your tokens to it per month. From then on everything would be automatic, the user would just browse as normal, accumulate tokens, and the site would be compensated.
In my opinion this is also the ideal system since it removes the fundamental problem of advertising. And that is that when a company relies on advertising, their customer is no longer the people visiting their site - but the advertisers they make money from. This can lead to advertiser influence slowly creeping into every aspect of the site, including the content that is created. By directing the ad revenue to the user who then directs it to sites (at their discretion) it keeps the benefits of "free" sites, while removing all the nastiness that generally comes with ad-based revenue systems by untangling the relationship between advertiser and content creator.
There is always tons of venom of this exact sort thrown at Brave on HN, yet I've used Brave and have not seen any ads that have been spoken of. Even if they did replace, to be frank, the advertising industry already is disgusting and I'd have no problem with it (well at least no more problem than I already do)
In any case it's a great browser, at least better than Chrome when it comes to privacy, and I personally won't fall for the propaganda. Just like Tesla, there is a lot of "old" money that is threatened by the upstart so there is also a lot of negative sentiment.
Brave Ads are opt-in, you have to click on the triangle in the right end of the url bar and enable Brave Rewards, which includes Ads. You can turn off Ads but keep Rewards on and send tokens you buy, or direct tokens we have in a granting pool, toward your favorite creators. Ads pay 70% of the gross revenue to the user who opts in, and by default these tokens flow back to your creators, anonymously. Neither Brave nor any partners see linkable automated contributions thanks to a ZKP protocol (anonize.org based). No user browsing data in the clear goes to our servers or partners’ servers (or of course on a blockchain) for any part of Brave Rewards. Which is off by default, to return to my first point. I hope you give it a try. Thanks for your support.
Just last week, we found out that they sat on a severe vulnerability for 2 months, only bothering to patch it after someone used it to try to pwn Coinbase[1].
I use Firefox everywhere. I tried Chrome recently and it feels a lot faster, but in the end the ability to block ads and trackers (everywhere, including mobile which is where I do most of my browsing) is more important than a bit of speed. If Firefox is fast enough, then faster is pointless. But as can be seen in this thread, some people believe it's their duty to look at ads so for them the extra speed is probably a nice bonus (and perhaps partially compensates for the extra work their browser is doing).
It's been years people suggest the same "have you tried recently", but it doesn't come even close to the snappiness of any chromium based browser when I use it.
Have you tried using it recently? The quantum rewrite they released last year is incomparable to the previous releases. I use FF at home and Chrome at work and I can tell you that there is no noticeable difference in performance. The only time you'll notice the difference is when you use google apps that are written specifically for Chrome, but I personally prefer to avoid trusting the biggest adtech company in the world with my personal data. Plus, FF supports vertical tabs, Chrome doesn't.
"If a publisher has not verified ownership, then a user’s contributions will be held in reserve inside the browser for 90 days. The browser routinely updates an internal list of all verified publishers to determine whether a property can receive contributions. At the end of the 90 day period, any contributions marked for unverified publishers will be released back to the wallet. No funds leave the browser except to go to verified creators."
Previously:
"Previous versions ... would then hold contributed funds for those publishers in escrow until they’d verified. [And] Funds that were contributed from user-funded wallets will be held indefinitely, until the publisher verifies and transfers them to their own wallet."
That sounds like they had a suboptimal policy, realized it, and fixed it. If they _keep_ their 5% cut, or the interest on it, from contributions to unverified creators, I'll share your criticism.
That's still terrible. If I'm a Youtube content creator who doesn't want anything to do with Brave, they're still going to remove the ads that I want on my videos to monetize my content, and hold any of the BAT that Brave users contribute to me hostage.
When file sharing first came along it was pretty clear that the status quo of dropping $20 on a CD for some music was not going to last. Regardless the music industry refused to accept this and fought tooth and nail to try to keep CDs as the norm instead of adopting to changing times. Unsurprisingly that's a battle they eventually lost.
A decade or so ago ad-blocking was extremely esoteric. Today it's reaching a majority on all devices excluding mobile. Though mobile will also likely follow a similar esoteric->majority trajectory. In any case it should be clear that the status quo of advertisements isn't going to last. Google trying to break ad-blocking in Chrome feels very much analogous to the old dinosaurs in the music industry trying to cling onto CDs. Users hate unsolicited ads and, in the end, it's a losing battle to try to force everybody to keep watching them.
The point of this is that that money you're being offered is money that would not exist otherwise. These people are not going to watch your ads, period. You're free to take it, and you're free to not take it - it'll eventually be returned to the people that wanted to give it to you. But complaining about it's very existence is peculiar. It's like if you only accept PayPal and I said I don't use PayPal but I'd be happy to send you money through e.g. Stripe. If you don't want to setup a Stripe account to accept my money then that's completely your choice, but to complain about it just seems petulant.
Agreed - the only reason ad-blocking is even a thing is because:
- Overuse of tracking, including nefarious attempts to de-anonymise users through excessive fingerprinting
- Crappy, distracting, in-your-face ads
- Ad networks serving malware (rare, obv)
If ad networks focussed on ridding the world of these issues, more people would be happy to let the ads through and help support content creators through ads.
I hate them, no matter if they track me or are in-your-face.
I will always use an ad-blocker, but allow ads if a site asks me to do so, and I enjoy the content.
But I realize I'm probably in a minority here. Most users would not bother with adblockers if ads would not degrade the web experience so much.
Then block tracking, but don't remove the advertising content. Or propose a solution that doesn't involve paying them with a worthless cryptocurrency, unless you'd like your salary to be paid in BAT.
Advertising is literally an attempt to manipulate people in a way that subverts their interests. It's like you are making money by giving a "free" concert wherein you are paid to kick the audience in the nuts and now you are shocked that people are starting to wear a cup.
It's not just that I choose option C to continue watching and not pay. I in fact opt out of the entire decision making process. I'm not going to figure out what sort of ads you have or whether I should or shouldn't block them because life is short and I have other better things to do. I'm just going to turn on ublock and just keep swimming.
If you don't put out videos tomorrow because of this I will watch someone else's content. If you produce something truly unique put it out there for money and I will make an informed choice on whether I want to pay for it.
It's really weird to see ad-tech defenders on Hacker News in 2019. Create a Patreon. Take the few minutes to create a Brave Creator account. Use a non-invasive ad network on AdBlock's "Acceptable Ads" list. Read an Orwellian novel.
Anything available on the web, an open platform, is free to view by design. To make it not free, you as a publisher are required to take extra steps which do not presume control over the client computer. If you don't like this, perhaps the web platform is not the one you intended to use.
If not, what if I had a special pair of glasses that obscured such billboards or other physical advertising? It's not possible today, but not that hard to imagine in the near future.
How are these situations different from blocking ads on the web?
The majority of ad revenue goes to the site, not to Brave[1]. The user gets a cut for having to see the ad, and Brave gets a cut as well.
But even if you're right, why is it unethical for me to install software on my own computer to render websites differently than the creator intended? For example, by removing ads? Or replacing ads with different ads? Or rendering all ads upside down?
Because it's monetizing other peoples content. In my view, it's the same as cutting and pasting somebody else's content onto my own site with my own ads.
Even if I promise to give most of the money I make back to the original content creator, I really have no right to the small part I skim.
Update: Sorry didn't mean to suggest it was unethical for you to view a page any way you want, but I think the creators of the Brave browsers are scuzzy.
Update Two: I see now that Brave have updated the policy and will only collect funds for creators that have opted in.
Also, as others have pointed out in this thread, they don't replace ads on websites with their own. It blocks ads, and if you want you can view Brave ads in exchange for their cryptocurrency and optionally donate them to participating publishers. I'd say this is no worse than a regular ad blocker, but you at least have the choice to attempt to remunerate the publisher for the lost revenue.
> But even if you're right, why is it unethical for me to install software on my own computer to render websites differently than the creator intended?
It's not unethical for you to run that program, but what is being argued is that Brave (the company) is acting unethically, for example by taking donations on behalf of other people without their consent[0].
Just curious, what exact sentence(s) from the above links to the Brave website do you see contradicting this claim about "shadow wallets"? (if that's the correct wording)
When I read something like this, it almost sound like they're making wallets (without necessarily asking beforehand):
> If you own a website, or even just a blog or other sub-domain on a hosting site, we’ll create a site wallet for you.[0]
Yes, they created wallets without asking beforehand, replaced the ads you monetize your site with with their own BAT system, and held funds hostage unless you buy into their system.
If I feel you're owed a token, but you don't have a wallet in they currency, what should I do:
- make you a wallet and let you claim it later?
- keep the token?
Neither of these constitute a hostage situation. There's no buying in except the time it takes to move that token to an exchange and turn it into dollars or kgs of cocaine or whatever.
Yeah, I suppose it would be better to just let the tokens pile up in the wallet, the better to later inventivize adoption later.
I still think it's less shady than the concept of advertising in the first place. I have yet to come across a satisfying definition of malware that doesn't also describe web advertising.
Exploiting this grey area in the law will lead to a response from the courts and lawmakers. That response might well require that browsers display pages exactly as the publisher intends.
In other words, the end of ad blockers and other tools, thanks to Brave.
(Not at all unlikely given that Google seems to want that too.)
There is at least an opt out to Google, there is some benefit to showing up on Google search, and there is a significant transformative action both in aggregating and summarizing, and in providing web-pages based on a keyword search.
That said, there is an argument to be made here. One that's included in the disputed EU copyright directive in the 'link tax'.
The web server freely provides that content, it's not like the browser is stealing it. If they really want to protect their content, they can put it behind a paywall.
It shouldn't be illegal to not request certain parts of a site, and it shouldn't be illegal to choose not to render parts of a page. What should be illegal is taking credit for copyrighted material, and that's not what going on.
I think it should be illegal to profit from showing other people's work neigh verbatim. For example, taking their content, stripping out some stuff, and placing ads there.
The issue here, as opposed to just stripping ads, is that a totally unrelated party is making money with ads.
Wait for it; there will be mandated software on 1st-world machines in our lifetimes. Root on your machine is already a bit of a fiction because of government action (the cpu management engine); look for that to become more explicit after the first really big blackout/other catastrophe caused by a computer security failure.
Unrestricted mathematics are too dangerous to be allowed to normal people.
They won’t mandate a specific browser, but they can regulate functionality.
Piracy is already considered theft. Viewing webpages without ads is basically “stealing” web content. I would not be surprised in the slightest if some big advertiser runs with this idea and lobbies for strict legislation. And they likely would succeed, quite honestly. Congress doesn’t understand adblocking or the internet, but they have a vague idea of digital piracy.
That isn't what he is claiming though. He's claiming that they do this without the users consent. If I want a page re-skinned in purple to hell with what the content provider wants. It is also reasonable, as Eich pointed out, to act as a mediator for unrequested donations. Which is what Brave does.
Would it be nice to reject these donations? Sure. But we don't demand that with any other transmission service. If Eich and the user concede to the terms and if you accept the money, what is the problem moral or otherwise?
It depends. Are Brave's ads more similar to the banner ads of the old days? If they are not so intrusive and privacy violating like modern ad-networks, that would still be a net win in my opinion.
As for the hypothetical youtuber, they are always free to put product ads directly in their videos if they can/want to. However, if they can only make money via abusive 3rd party trackers, that's on them.
I've had Brave as my mobile browser since early 2017 and the only ads I've ever seen on it are the random Google Adsense ad that slipped through. These instances are in the single digits, in 2.5 years. im in Canada, so that might have an effect.
This seems like an unreasonable interpretation; it’s much more likely that ‘dymk wants to execute the bare minimum amount of arbitrary code on a web page.
There's no agenda, just proper reasoning. Think about it in terms of Bayesian probability: it's a cryptocurrency product, and pretty much everything in the crypto space is a scam, so right off the bat when you hear about Brave, before you even know anything your prior probability that it's a scam is 95%. Then they got busted 'keeping the money' and not telling the creators, and the posterior jumps to 99.5%. I know they mostly fixed that, but at that point the trust was gone and it's not worth anyone's time to give a second chance.
It sucks, but at the same time, if you're going to be an honest actor in crypto, you better cross every t and dot every i, because bad actors are everywhere and so smart people just assume bad faith and are arguably correct to do so.
If your proper reasoning involves the premise: "it's a cryptocurrency product, and pretty much everything in the crypto space is a scam," you might want to adjust want you call "proper reasoning."
Sure! But one product doesn't adjust it very far. So next time I hear something is a "cryptocurrency product", instead of 95% scam alert I'll be at 93-94% scam alert.
The reason that Brave doesn’t get a great rap around here is because it trips the sketchy detector. They make a marketing image of themselves as the protectors of privacy and whatnot and then the browser includes (or included) a lot of features that seem to go contrary to the stated mission.
The content producers who distributed their videos on YouTube agreed to Google's monetization terms. They did not agree to Brave's. I cannot unilaterally make copies of Harry Potter books, sell them for a dollar, and give a cut (even a 50% cut to make the Brave analogy complete — they like to say they give a larger cut to publishers without mentioning that it is a larger cut of a much smaller pie) to JK Rowling. Even Brave eventually understood why this was wrong.
Did you read the link you posted? They block many facebook tracking components but there are some things they aren't touching right now because some website depend on facebook for logins.
Honestly, blocking ads/trackers on mobile has always been a tricky business. You could set up Pi-Hole on your home network. Or see if there's something similar to this on iOS:
https://f-droid.org/en/packages/dnsfilter.android/
It's actually one of the reasons I use Android and why I'm looking at alternatives, like Librem 5 and PinePhone. I don't like how Apple doesn't allow competing browser engines on their phones and tablets (only skins that use Safari underneath), and I don't like Google's privacy issues on their phones.
Yeah, I've pre-ordered the Librem 5 for those same reasons. It will likely absolutely pale in comparison to Android/iOS features, but I'm wanting to go full "Off To Be The Wizard" and help develop the lacking apps.
The discussion in this thread makes me wonder if Brave is a good browser to recommend to friends & family. The widespread usage of Chrome was probably largely in part due to folks like us recommending it to friends & family.
I think that was a large factor, but I think constantly showing ads for Chrome to anyone who views google.com in a different browser and telling them their browser is bad was a bigger factor.
For me, Phoenix/Firebird/Firefox was a noticeable step up from IE, and Chrome was a noticeable step up from Firefox. Chrome did especially well relative to Firefox when I had a lot of tabs, and for JS-heavy sites.
Several reasons for not switching back, some idiosyncratic:
* I trust Chrome more than Firefox on security
* I'm used to Chrome's debugging tools, and would need to learn Firefox's
* I use the Chrome password manager, and it would be annoying to switch
If Firefox were enough better I would still switch, but at this point my understanding is it's more like "Firefox is no longer slower than Chrome" not "Firefox is a step up from Chrome in the way Chrome once was from Firefox".
That's understandable though I imagine it's unlikely we'll see something like that ever again, right? To me it seems kinda like how race car engineers used to be able to discover some major advancement in their engines that would give them wins for a few years but nowadays it's much more homogenous and worked upon for much less significant gain. I don't know much about the deeper webdev stuff though so who knows, but it seems like that could only ever really possible with a shift in a browser trying some novel shift in architecture.
Ask yourself a question - why would you do that? For privacy reasons and to avoid future Googlenet monopoly? Then using Chrome mod instead of Chrome solves nothing.
Because even if we're being not generous, the difference between natively blocking even some ads/trackers and disentangling from Google services in any way is clearly better than not. Would you flip a coin every time if an unmodifiable computer offered only Chrome and Brave?
My dad was the first person in my family to start using it, loved it, told all the rest of us to use it and I liked it so much I spent the last year working there.
In Brave, Undo Closed Tab doesn't work for me. It should supposedly work with Ctrl+Shift+T, as per an online search. Like Chrome, the built-in session save and restore (after a crash or close) is mostly miss, with few occasions of hits. It's good at blocking ads, but these other factors are enough to keep me on Firefox.
You must be talking about private browsing or the native TOR windows. No history at all is retained for those windows and so restoring closed windows/tabs is not possible. For regular browsing sessions tab restore and session restore work 100%. I have plenty of sloppy tab clicking experience to prove it!
It's sad how, although I personally prefer to support Firefox by using it, I have still stuck with Google's Chrome due to a speed/sleekness factor which I can't quite put my finger on, that Firefox has never been able to overcome in my mind since fully switching over to Chrome several years ago.
It's little touches like how you can't re-order extension buttons with a basic mouse drag - no, you have to go into 'Customize...', and that's so clunky and 2004. They have some more work to do to really make it competitive with the mighty Chrome.
So after all that time, Brave is the first browser registering my interest due to these regular news stories. I still use Google services, but I don't like their current dominant position in shaping how the web works. That's too much power.
Recently I've had terrible performance issues with chrome. Freezes, crashes, and really long delays, as well as significant memory usage. I switched to Brave, but it was worse. Safari, by contrast, has been amazingly fast and responsive.
I've had quite the opposite experience there. I eventually settled on Brave because of my browsing habits. In particular I tend to have several windows of a browser open with dozens of tabs a piece and tend to rarely reboot my machine. Capping all this off is that I enjoy playing chess, which relies on millisecond responsivity. This [1] is a screen cap of the current performance usage of Brave. It's completely negligible, and hasn't been restarted for days. The higher memory processes are exclusively from pages I am currently using with extensive content loaded on them.
No clue about Safari but Firefox dies under these conditions, and I'm not interested in Chrome given not only Google but their 'vision' for the future of that browser including native anti-ad blocking. Opera was okay, but I enjoy the privacy features of Brave. Native ad-block, tracker blocking, etc that can all be customized per site in literally two clicks. Lion->Third Party Trackers for instance would allow me to enable third party trackers exclusively on Hacker News if, for some reason, I wanted to. Pretty cool stuff.
That may be a Firefox on Windows issue (not that it helps you in this case). I regularly have ~1000 tabs open in Firefox on Linux with no issues (related to tabs and performance, anyway).
The only related issue for me recently was a failure to restore a session after Firefox forced a restart for an update. That's the behavior that chases me back to Brave on other systems (where it's not as easy to `tabs.sh > current_tabs` just in case).
Firefox on Windows handles hundreds of tabs also just fine in my experience (assuming you run some kind of ad/script-blocker, otherwise some runaway ad somewhere will probably get you). Only thing I can think of that something might have triggered the multi-process mode to disable - that'd cause performance problems, but can be forced through the settings.
From my personal experience, I tried using Chrome for few months (approximately when FF versions were 3X.X) and Chrome caused certain perceptible lag. FF wasn't lightspeed fast at that time but Chrome wasn't either, just differently somehow.
PS: using Brave browser, which is essentially a Chrome mod, also cements Google monopoly, indirectly.
I can almost put my finger on firefox problems. The html/js engine is great. It's the GUI that severly lags. Tabs, menus, url. On the same machine Chromes never stutter, firefox nightly does way too much.
Mozilla did a lot for so long, let's hope they can circle the issues and find resources to fix them.
These are all just anecdotes. I use a low-end laptop from 2010 and Firefox works fine on it. I switched to it from Chrome years ago when they removed some functionality (I think it may have been the backspace to go back but it may have been something else) and I didn't notice any performance issues. If anything it got faster with the Quantum update though I haven't used Chrome since so I don't know how they compare.
I agree with you that it's usable, but on my machine (an i5 iMac/16 gb/Debian) it's slightly slower than Chromium. Not enough that I won't use it, but noticeablely slower.
I also agree with the upstream comments about UI clunkiness. There are a lot of things that irritate me about Firefox that Chromium just handles better.
Mostly little things like the "Recently Closed Tabs" menu is buried 6 levels deep in the "Library" menu. And the completion list that pops up when typing in the address bar always seems to miss pages I've visited but includes things that seem unrelated to what I'm typing in.
It's a new, faster algorithm with rule pattern matching. The language is only mentioned once as an implementation detail, not that rust's 69x faster than C++.
It’s actually a Rust implementation of https://github.com/cliqz-oss/adblocker. So you can interpret the difference in the chart between Ghostery and Brave as being how much Rust improved performance over Node.js
IMO when anything is rewritten (usually in a modern language), it's faster than the original implementation. That's usually because you have much better hindsight since the entire implementation is finished before the rewrite is started.
I'm sure the more modern languages also help though, but I don't think that using a modern language is the major reason for the speedup.
Algorithm. The title is a bit misleading, and conveys that "it's faster because we re-wrote it in rust". If any thing, the move to rust might cause it to be a little slower (compared to the same thing written in c++ and considering how heavily optimized they said it was; not dinging rust, but you can't just port cpp optimizations to rust with syntax changes due to safety requirements etc).
Why is this necessarily true? All Rust gives you is safety -- no data races and better memory safety. But since data races and use-after-free are undefined behavior in C++ anyway, C++ compilers can still aggressively optimize by assuming those two don't happen.
It's true that some compilers disable optimizations on certain undefined behavior to prevent unintuitive behavior (https://blog.regehr.org/archives/140) but that's unlikely to happen for data races or memory safety.
For one, in typical code, the Rust compiler can make more aggressive optimizations because every `&mut` is guaranteed not to alias. The C++ equivalent, from the optimizer's standpoint, is `T * restrict`, which is rarely used (and harder to use correctly) by comparison.
I believe the code miscompilation bug in LLVM that was blocking enabling it was fixed. That said, it's gone back and forth now several times as new bugs get discovered. The code paths in GCC and LLVM for noalias optimizations aren't particularly battle-tested because C and C++ basically don't use them.
The nightly build has tipping buttons for twitter and reddit. Hoping this will finally execute the micropayment use case for crypto.
The pop up ads have been activated and I have been receiving the token for clicking, about $8 month worth of BAT. I am hoarding the tokens so that USD value might go up if the token moons together with bitcoin.
I think Brave has the ability to save the web, it has a great model of blocking ads by default, at a lower level than the extensions do so it is much faster. I think Opera had/has this too.
> Brave will replace blocked ads with its own ads, taking a 15% cut of revenues.
> In practice, Brave just sounds like a cash-grab. Brave isn't just a glorified adblocker: after removing ads from a webpage, Brave then inserts its own programmatic ads. It sounds like these ads will be filled by ad networks that work with Brave directly, and Brave will somehow police these ads to make sure they're less invasive/malevolent than the original ads that were stripped out. In exchange, Brave will take a 15 percent cut of the ad revenue. Instead of using tracking cookies that follow you around the Internet, Brave will use your local browsing history to target ads.
It seems still be an accurate assessment of what they are planning.
> Ads and trackers are blocked by default. You can allow ads and trackers in the preferences panel.
> Later, as mentioned above, Brave will let you opt into receiving a reduced ad load that comes without trackers, maintains your privacy and helps support the publishers you like.
Do you have any evidence that Brave's ads are not intended to be a replacement for traditional ads on publisher sites? What else would they be for?
And, regardless, the rest of my comment stands. It may be "better" to shows ads without tracking, but it's still rent-seeking in the ad blocking space. Ad blocking is a solved problem - just use uBlock origin.
Edit: from only a year ago:
> Brave will scrub sites of ads and ad tracking, then replace those ads with its own. Meanwhile, BATs will be awarded based on user attention, or put plainly, time spent viewing ads and content. Brave users who agree to receive ads will be rewarded with BATs. The tokens, in turn, will be exchanged between users, advertisers and site publishers.
According to https://news.ycombinator.com/item?id=20290854 Brave's ads won't go into the page unless the publisher agrees, and the current ads are shown as notifications. Note that while your link uses the word 'replace', the source blog post does not.
Assuming that user is even right about this, I would call that the most extreme imaginable version of trying to buy off publishers with a cut of the lost revenue. That's #3 on my list of scammy Brave practices.
It's opt-in IIRC. And it pays you in BAT when you view the ads, which then you can contribute back to content creators. I think it's a solid way to do ads.
No, it does not inject its own ads by default. I think there is a feature where you can do this to some benefit to yourself but that is not default. Brave removes as many ads as it can by default.
I've switched from chrome to Brave (with duckduckgo as default search engine) after seeing this https://myactivity.google.com/myactivity and really satisfied with the result.
Unfortunately Firefox is not a good match. I've tried the latest versions of Firefox and the developer edition, before using Brave and it still uses so much CPU in my macbook and the fan of the laptop sounds like an airplane is about to take off.
I'm wondering, how Brave is going to fight fraud? The users are anonymous and not tracked, isn't this is why Brave ads are still delayed and TBH I see no practical solution to that?
How does it stack up against uBlock Origin on Chrome ? ABP is a notoriously heavy unoptimized piece of software compared to uBlock. I would be very interested in this comparison.
Slightly off topic: Does anyone else have the problem of constantly being logged out of your Google accounts on Brave. I keep getting logged out even without closing the browser. I have tweeted to them but haven't been able to get a response. I am so annoyed with the experience that I stopped recommending it and am planning to switch back to Chrome.
Edit: I have multiple Google accounts signed into. And also, it does not block all ads in GMail which uBlock on Chrome is able to.
The way they’re handling cookies may be just be strict enough that it can break security measures on some sites. Unfortunately, lots of websites have come to rely on things that maybe should’ve never been features (like third party cookies, for example.)
Just out of curiosity, have you tried Firefox? I know it’s not perfect, but with minimal tweaking I think it’s very competitive.
Yes, Firefox is good for browsing but as a developer who has to work on the frontend, the ecosystem isn't there in Firefox. Many of the framework debugging tools for React, Redux, etc. don't work well in Firefox.
Ever since WebExtensions, there's not really a good reason for the devtools to be much worse on Firefox.
If you have used these extensions and have issues, I'd love to hear them. I've done React/Redux dev on both and I don't notice things working significantly better in Chrome. (Admittedly, I haven't done any in a few months.)
The only real thing that gets me now is the lack of being able to inspect WebSocket frames. :(
Thanks for clarifying! I should give Firefox a try again, when I tried last time it wasn't good enough. Chrome's devtools had many features of timing and performance which were absent or not good enough last time I tried.
I don't do anything too special, no userstyles for me or anything like that. I generally just do the following:
- Remove the spacers next to the address bar. (I prefer having a huge address bar.)
- Install uBlock Origin, Bitwarden, and a few other extensions (GitHub Notifier, for example.) I don't use Firefox Sync right now, so I do this manually per install.
- Disable "Ctrl+Tab cycles through tabs in recently used order." I prefer the old Ctrl+Tab behavior where Ctrl+Tab moves right and Ctrl+Shift+Tab moves left.
- Set search to Duck Duck Go.
- Disable all Home content except Search.
- Disable browser, download, form and password history. Tweak content blocking settings a bit. (I generally 'block third party trackers' but I aspire to block all third party cookies if that ever becomes supported by most websites.)
Sometimes I also tweak other random things, like disabling the clipboard APIs entirely to avoid sites that attempt to add garbage to the end of copies. But realistically, these are the things that I usually keep the same. On portable devices I sometimes also enable permanent private mode, to keep even less sensitive data in storage.
Can you use your own block list in Brave? Last time I checked on mobile I couldn't see how to. If not that seems like a major downside compared to other browsers.
I switched to Kiwi Browser recently from Brave (after their bottom tab bar drama). Kiwi allows extensions so you can install uBlock Origin and add your own lists.
Brave mobile started letting ads go through a few months ago for me. I switched to Firefox mobile, which is not as fast / usable but at least supports ublock.
Do you have a citation for this? Why would brave users be less likely to click on ads than a normal user if they weren’t using a browser that blocked ads?
I've been using brave for a few months and I never noticed any difference in its ad blocking performance vs Chrome with AdBlock. I actually perceived it as faster, since most AdBlocking plugins on chrome actually let some ads through (ads that pay the plugin authors i guess).
In what situation would this "orders of magnitude slower" actually manifest itself as a perceptable delay?
Brave in Tor with YouTube seems to track you and show you recommended videos across sessions. Probably some browser fingerprinting. But always found that weird considering it portrays itself as privacy-focused.
Well, when are they going to remove the ad placeholders on pages? It's great we don't have to see ads, but they still take valuable screen space this way. With uBlock origin, I don't have to see te placeholders.
Anyone familiar with configuring the Brave ad blocker? I find that by default it blocks fewer ads than uBlock origin. I'm not really sure what special sauce is involved in that.
Brendan Eich is a Catholic that is why he opposed same sex marriage.
That doesn't make him a homophobe, that makes him someone that opposes same sex marriage because of his religious beliefs.
People seem to constantly conflate opposition to Same Sex marriage with Homophobia. Sure I suspect that many homophobes are opposed to same sex marriage, but many libertarians are opposed to it because they don't believe Government should have anything to do with marriage that doesn't make them homophobes.
Secondly I dunno where to start with this. Comparing homosexuality to Child abuse or implying that Brendan Eich is okay with it. The second is probably legally defamatory but IANAL.
Installed it and then noticed in my firewall that it is
- trying to connect to a number of IPs owned by google, umm OK
- sending a multicast SSDP UDP request on port 1900 to 239.255.255.250
So googled that and got this page: https://community.brave.com/t/why-is-brave-issuing-upnp-disc...
Which basically tells you that the first thing Brave does is to try and detect what devices are in your local network.
... and that's where my Brave experiment ends.
edit:
Also note that uninstall is completely silent, no confirmation that it actually completed.
The uninstaller also leaves behind the updater utility AND the Windows Task scheduler tasks that run the updater.