Started this morning. All of my personal tools like nextcloud and RSS reader were blocked, and I had to go manually override that screen for each one. Unacceptable.
Looks like Google is the responsible one, not Firefox. Don’t shoot the messenger.
Why does Firefox need to tell Google which sites you’re visiting even if you don’t use Google Search ?
All checking is done locally on your machine from a hashed list of “bad” domains, your visits aren’t sent to google. You can get the full details here: https://support.mozilla.org/en-US/kb/how-does-phishing-and-malware-protection-work
Are they submitting that to Google or are they subscribing to some hashed list google has of domains with (according to them) know malware, issues, etc?
In that case everything happens on your pc and doesn’t go to google or Mozilla
Hashed, but there is also a preferences cookie.
Copied from Wikipedia, but the citation is Google’s white paper on this ‘Logs, which include an IP address and one or more cookies, are kept for two weeks and are tied to the other Safe Browsing requests made from the same device.’
Set up google search console for that domain, then it will tell you why it’s blocked. It might be a false positive you can flag, or it might be that a host or service has been compromised or contains something harmful. Google’s blocklist is quite aggressive and often blocks entire domains if one of their subdomains has a violation.
Yeah, people are getting really upset at Google/Mozilla here but SafeBrowsing is actually a very good service. I legitimately believe that it frequently prevents malware infections and phishing on a regular basis. It is also architected with a privacy-first approach that reveals very little data to Google. And the SafeBrowsing privacy policy is actually one of Google’s very tight ones.
I think Mozilla made the right choice to enable it by default. They also make it fairly easy to disable this for advanced users under the “Deceptive Content and Dangerous Software Protection” setting. (No need to crack open about:config, disabling it is fully supported.)
I understand that this may be a controversial opinion.
You can just disable Google Safe Browsing in the settings.
But the problem is the general public. People who have it enabled won’t be able to visit his website.
google owns the internet
Are you using a free subdomain?
Reports of individual subdomains that are running shit lead to the main site slowly being pushed to “generally non-safe”.
Anyone also using that free subdomain is linked to you because you’re both using the same domain
I imagine that domain is mostly used for spam/phishing sites so Google preemptively blocks all sub domains until they prove they aren’t spam. That’s one of the shortcomings of using a free domain I guess.
That’s one of the shortcomings of using a free domain I guess.
Domains are cheap as dirt for the most part anyways, it’s like 12$/year for a .com if you don’t mind having one of those weirder TLDs I’ve seen those as cheap as 2$/year
2 dollars a year
