355 comments

[ 4.3 ms ] story [ 84.3 ms ] thread
I'm really impressed to see this, Mozilla should've led here on implementing something like this years ago. This is a pretty big nudge for me to consider Brave as a future browser.
Mozilla kicked one of its main creators years ago too, and that guy is the one making Brave... so no surprise ;)

Features that should come out on Mozilla will instead come out of Brave...

Did his resigning have something to do with him personally donating $1000 in 2008 in support of California's Proposition 8 referendum? (opposing gay marriage)

Just checking, you really didn't mention why he resigned.

To be more clear, it was to do with media frenzy once they found out about it.
I agree 100%.

There are still things about brave that confuse me... like the browser feature that allows giving crypto to content providers...

but as someone who loathes AMP... I support this feature.

Do you have specific questions about how the crypto features work? They're optional by the way, but I've found them an amazing way to regularly donate to a couple key blogs I follow.
Yea I guess... How would I set this up? Do I need some sort of wallet? How would a random website author know what to do with this specific cryptocurrency?
As far as I understand it:

Brave sells ads. They get $X normal money from it. The ads are delivered from a local catalog downloaded in bulk (the same way safe browsing blocklists are, for example) and matched on device.

If you opt in to see Brave's ad popups, you get a cut from the revenue those popups generate.

Brave gives this cut as BAT - they buy the coins from the open market.

Brave has a built-in tipping service where you can tip people with BAT. If you do, Brave transfers BAT from your wallet to the tippee (and Brave takes a cut from the transaction).

Tippee has BAT that they can sell because there's at least one buyer of BAT on the market: Brave.

It seems like a sensible system overall, but my specifics may be wrong.

This is interesting though I doubt I would ever enable this because I loathe popup advertisements probably more than AMP
Mozilla is a joke now. They've now converted Firefox into an ad-ware / spyware ( https://www.theverge.com/2021/10/7/22715179/firefox-suggest-... ) because the current geniuses leading Mozilla have decided that apart from the 5+ million users of uBlock Origin, every other Firefox users loves ads and wants them! They've earned 100's of millions of dollars from Firefox, and still claim that they don't have the resources to refactor the browser, modularise it and innovate it.

I have always suspected that the current Brave CEO Brendan Eich was a victim of a malicious campaign intended to get him removed from Mozilla (which he co-founded, and later become a CEO of), because he would have been more vocal against Google in Mozilla, and wouldn't have been happy to let the Firefox codebase stagnate while everyone in Mozilla was content with the millions of dollars they were getting from Google. (His religious beliefs / political ideology was just an excuse and just made him an easy target).

Edit: I am not endorsing Brave browser either, as there are some questionable privacy issues with it.

What's a joke is claiming that paid suggestion search results "have converted Firefox into an ad-ware / spyware [sic]"

I'm not a fan of them adding this and switching it on, but it's easily disabled...

> Click on the hamburger menu and then select Settings

> Click on Privacy and Security in the sidebar and scroll to Address Bar — Firefox Suggest

> Select or deselect the checkbox for contextual suggestions to turn the feature on or off

> Select or deselect the checkbox for “occasional sponsored suggestions”

>> I'm not a fan of them adding this

Excuse me sir but you definitely sound like a fan.

The really real joke is claiming that proclaiming that Mozilla is a joke is some sort of a joke.

Out-of-the-box I would definitely classify Firefox as ad-ware/spy-ware.

Does that make Brave adware as well, since it ships with a suite of features fundamentally designed to serve you ads of their own creation?
Isn't Brave's ads opt-in? I thought they were opt-in. Aren't they opt-in? So what are you on about?
Ad Notifications are, I think occasional ads in new tab background images are on by default (they can be turned off with one toggle, separately from the other rotating pretty backgrounds)
Of course they are. The company is an ad agency, that's how they make their money. They just try to do it in a less garbage way than the rest of the industry, but an ad is an ad, even if designed for privacy and opt-in.
>but it's easily disabled...

No it's not. That's about as buried as it gets without hiding it in about:config.

"Easily disabled" would be a button right next to the ad that said "never show me this dogshit again."

Technically you are right, ofcourse. An adware is unwanted software designed to show you ads maliciously (no way to remove or turn it off). But let's look at some common features of adware / spyware:

1. Advertisements appear in places they shouldn’t be. (Yes in Firefox - ads in new tab and address bar).

2. Your web browser’s homepage has mysteriously changed without your permission. (Yes in Firefox - default custom home page)

3. New toolbars, extensions, or plugins suddenly populate your browser. (Yes in Firefox - bundles unwanted, uninstallable extensions)

4. Your computer starts automatically installing unwanted software applications. (Yes in Firefox - studies can install extensions without your knowledge).

5. Collect personal data without your knowledge (Yes in Firefox - ad partners and studies).

Again, technically you are right that there are options to disable some of these things, (most of which are all enabled by default that the majority of users won't be aware of) ... But when a software imitates and behaves like an adware / spyware, Mozilla would do best to listen to their users criticism than call us ignorant.

I can't comment on his personal ideology - I just respect his technical skills and contributions. But if what you say is true - that he has been leaning more and more to the right - I can't help wonder if the vicious campaign against him perhaps pushed him more to the right and made him a hardliner. The irrational beliefs of fundamentalists often rest on a foundation of victimhood (real or perceived, they are undoubtedly a painful personal experience). As we are learning, the internet's "cancel" culture ( https://en.wikipedia.org/wiki/Cancel_culture ) and echo chambers are making people's beliefs more rigid, and creating an unhealthy us vs them mentality. Till the scandal, Eich seemed to be quite professional in separating his work from his personal life / belief. If that has changed now, for the worse (like you seem to be hinting), then I do feel sorry for his situation.
> Till the scandal, Eich seemed to be quite professional in separating his work from his personal life / belief.

He still is. One of the reasons I like projects like Brave and Vivaldi is that although I can see/infer some of their staff's politics, the teams themselves understand that they're toolmakers. That the world is a better place if smiths focused on forging good hammers and either left the preaching to someone else or did it off the clock.

Both projects have politics, but those are politics of browsermaking - privacy, lack of tracking, trying to give users more control rather than thinking they should tell you and me how to use their tools, what to think, what to see on the web. Brave and Vivaldi make hammers. And that is good.

Every browser is adware, though? Basically every browser in existence is funded through search engine deals, and Google, Microsoft and Apple are all ad agencies themselves.

Even more privacy-respecting options like Vivaldi make their money from search deals, and as much as they try to build their model to be privacy respecting, Brave is still an ad agency.

Next to no one is actually building browsers for a subscription or some other model in that vein. It'd be really hard to get an appreciable userbase that way.

It's a real stretch calling every browser an adware because of the default search engine deals they make. Since every browser already includes an option to do a "quick search" through a search field or the address field, and would already be including a list of search engines for this, users don't mind if a few sponsored search engines find their way in the list as long as the browser doesn't force them to use it or prevent them from modifying the list. The ability to search from the browser, and the list of actual search engines to do this provides a real benefit to the users. Bundling intrusive ads into the browser not only provides no tangible benefit to the user, it also harms them - there's the loss of privacy associated in the data collection of personal data to display these ads and the waste of a users time, bandwidth and computing resources to display them. (This is also why users find a list of sponsored bookmarks more irritating as it provides most no benefit).

The loss of trust and respect also needs to be considered - when you start doing data collection and introduce intrusive ads, how do I trust you to know the data collection stops?

I'm not sure why you would be impressed by something that has been possible in Firefox and Chrome for many years with a de-amp extension (though I would recommend a more general-purpose URL-de-cruftifier, such as ClearURLs, which will also remove most tracking bits from URLs.)

Google removed ClearURLs from the chrome add-ons store because (I wish I were making it up) the extension's description was too detailed: https://www.ghacks.net/2021/03/25/the-curious-case-of-clearu...

Brave implementing this, while nice, is basically a nothingburger.

I think you demonstrated in your own post why this is such a big deal.

Extensions can certainly deliver this type of functionality in large part, but you have to [run an extension]. You need to ran an extension process (with its additional overhead). You need to make sure Google doesn't swoop-in with breaking changes between manifest versions. Then you have to make sure the extension is permitted in the Web Store, and not removed over something as silly as a detailed description.

By delivering this functionality natively, Brave offers a more reliable and efficient solution to the problem of AMP.

You have to run Brave, which is a considerable overhead.
Running a browser is better than running a browser in addition to several extensions for functionality that could be integrated natively, resulting in less overhead.

But yes, you will need to use a browser to browse the Web

I don't trust Brave's implementation in the first place. You have a direct conflict of interest with protecting user privacy since you also make money off of the ads you serve users (because of how you skim BAT revenue). Furthermore, your scummy behavior of holding site operators ad revenue hostage is pretty disgusting, and doesn't provide much of a moral compass for us to base your actions off of. I'd trust stock Chromium before I'd install Brave on any of my machines.
Brave's Ads are optional (off-by default in the case of Ad Notifications), and matched-on device (so no user data leaves the machine). There is no conflict of interest here; Brave doesn't harvest user data. The Brave Rewards/Ads model is centered around _attention_, not data.

Regards to the "holding site operators and ad revenue hostage," I'm not sure to what you're referring. Perhaps the UI/UX of Brave Rewards ("Payments" at the time) in late 2018? If so, see https://news.ycombinator.com/item?id=31086397 what, I hope, will be a helpful answer.

Or...and bear with me here...I just don't run Chrome. I don't run Firefox, but a derivative. On rare occasion an extension I use has been removed from the store over "silly" reasons (this has happened once, maybe twice in over half a decade) I've been able to re-install it from the author's site.

> By delivering this functionality natively, Brave offers a more reliable and efficient solution to the problem of AMP.

Just because it avoids a separate process doesn't mean it is more reliable or efficient. Further, you offer a subset of the functionality of the URL-cleaning extension I do use, so it's moot.

I don't care if your browser ever becomes a superior product for me. I can't stand the community, who are easily the most aggressive and zealot-y bunch of any open source project I can think of. The comments section of any HN article about Brave becomes a shit-show as Brave users with the emotional maturity of teenagers dogpiling on shouting about how Brandon was the victim of a conspiracy by 'The SJWs', Firefox is "spyware", we're all stupid sheeple for not using Brave, etc.

And then at least one person from Brave shows up and starts condescendingly responding to every comment that isn't supportive of Brave.

There's the history of crypto-bro-y nonsense. The donation-scamming where creators had to "opt out" of Brave pretending to collect donations "for them." And so on.

I also don't want to support a company run by a person who has spent vast amounts of his money supporting some of the most bigoted politicians in our nation's modern history and to causes working to strip people of human rights. I don't want to support him, and I don't want to support people for whom his political activities are not an issue.

Extensions are a massive security vulnerability. Any time you can accomplish something without opening yourself up to browser extensions is a huge win.
So is Brave.
No application is perfect, but running Brave is pretty safe. The browser is based on aggressively-tested components, hosted in the open, updated regularly, and routinely hammered-on by reputable folks in the security industry. Not to mention, we pay folks who find weak spots.
I am not a Brave user at present, but I'm curious what you'd refer to here.
plus extensions see all website you visit in cleartext so make damn sure you really trust the extension. it might be something innocuous like history eraser but is harvesting your info across banking & credit card sites.
https://github.com/brave/brave-core/pull/11750 describes the more technically-involved part of the feature - we had to make sure that we detect an AMP page before it gets to the Chromium renderer process, in order to prevent the page from loading the AMP resources (and thus leaking the user's IP address and browsing behaviour to Google).
(comment deleted)
Isn't this going to make mobile performance worse? They should publish performance numbers.
Responsible engineers will prioritize privacy over absolute performance. Nevertheless, investigations into Google's conduct have already discovered internal admission that AMP would actually slow down the web.

"Google falsely told publishers that adopting AMP would enhance load times, but Google employees knew that AMP only improves the [redacted] and AMP pages can actually [redacted] [redacted] [redacted]. In other words, the ostensible benefits of faster load times for cached AMP version of webpages were not true for publishers that designed their web pages for speed. Some publishers did not adopt AMP because they knew their pages actually loaded faster than AMP pages."

"Google also [redacted] of non-AMP ads by giving them artificial one second delays in order to give Google AMP a [redacted] [redacted] slows down header bidding, which Google uses to turn around and denigrate header bidding for being too slow."

And of course, the reason they did all this:

"Google also designed AMP to force publishers to route rival exchange bids through Google’s ad server so that Google could continue to peek at rivals’ bids and trade on inside information. Third, Google designed AMP so that users loading AMP pages would make direct communication with Google servers, rather than publishers’ servers. This enabled Google’s access to publishers’ inside and non-public user data. AMP pages also limit the number of ads on a page, the types of ads publishers can sell, as well as enriched content that publishers can have on their pages."

https://www.texasattorneygeneral.gov/sites/default/files/ima...

If Google's servers pre-cache the contents of the article, the experience is instant when you click on a link, so the idea that it's slower to read a Google Amp Link on a Google Search Result compared to clicking out to a separate website is false.

If a publisher simply uses Google Amp on their own site to display websites, then it can be slower.

They slowed the non-AMP ads because they didn't want loading them to interfere with the content the user was interested in reading.

> They slowed the non-AMP ads because they didn't want loading them to interfere with the content the user was interested in reading.

This is what Google may have told the public, and obviously would like you to believe. However, internal Google emails demonstrate very differently: AMP was designed to increase Google's ad revenue.

Same source:

"Google ad server employees met with AMP employees to strategize about using AMP to impede header bidding, and how much pressure publishers and advertisers would tolerate."

Link to the internal emails? I've read a lot of the emails that came out in the lawsuit, and haven't seen any demonstrating that.
The link I'm referencing doesn't so much as unredact all of the facts listed here, I'm not sure the public has access to the emails described in this complaint at this time. If you know of a publicly accessible cache of internal Google emails sourced from legal discovery processes, I'd love to know about it!
The unredacted AMP lawsuit is: https://storage.courtlistener.com/recap/gov.uscourts.nysd.56...

I'm not aware of other sources of internal emails on this topic. What were you referring to when you wrote: "internal Google emails demonstrate very differently: AMP was designed to increase Google's ad revenue."?

Ah, the unredacted version is quite a bit nicer to read, thank you.

I was referring to the text in the complaint: The complaint is written off the legal discovery process, presumably in the case of especially a tech company such as Google, the statement that these teams met and discussed this topic would presumably be found in the form of either a meeting invite or the notes from a meeting sent in an internal email.

I think within some margin of interpretation, it's reasonable to state that if the text in the complaint is as such, it's backed by one or more internal emails I personally don't have access to. As I think it's pretty implausible that the Texas AG invented a meeting between the ad team and the AMP team and a reason for it out of thin air.

> I think within some margin of interpretation, it's reasonable to state that if the text in the complaint is as such, it's backed by one or more internal emails I personally don't have access to.

ec109685's explanation seems plausible and could easily be misexplained in this way if your goal was to get quotes on twitter.

> As I think it's pretty implausible that the Texas AG invented a meeting between the ad team and the AMP team and a reason for it out of thin air.

It doesn't have to be out of thin air to be exaggerated or misconstrued. And I definitely wouldn't rely on indicted Attorney General Ken Paxton for ethical behavior or an even handed application of the law.

I can understand your suspicion of Ken Paxton, but this is also part of a very high profile case involving dozens of states and literally hundreds of attorneys. And the precise nature of the claims will likely be still being litigated on ten years from now. So there's a lot of incentive to be accurate on the claims out of the gate.

That being said, I think it'd be great if all the material in the discovery process was available to the public. A company of Google's size has no excuse to operate in the dark.

> the precise nature of the claims will likely be still being litigated on ten years from now

This also sets up a situation where the AG can make exaggerated claims now, score the points, and have moved on by the time we get a resolution.

Wow. I always knew AMP was scammy but I didn't realize they actually forced a 1 second delay on other pages. How enraging. "Don't be evil" is so long lost I can barely remember those days.
We don't need to rely on internal emails, which may be out of date anyway, and we don't need to figure out anyone's intent. Brave (or someone) could do performance measurements to see what the impact is now.
Kudos! While reading this announcement I've learned upcoming AMP 2.x. Impressive that Google still pusing for AMP and as mentioned is even worse.
Braves business is built on Google Chromes source code...

Google has 500+ staff working on that codebase. When they finally annoy Google and they decide to rewrite the license for future versions, will Brave be able to keep up?

Yep, biting the hand that feeds will only work for so long.
Aye, the DOJ won't look favorably on anti-competitive practices.
Google has open sourced only as much as they had too for using Webkit's GPL codebase and have been notorious in close-sourcing bits when they are able (like the DevTools WebAssembly debugging tools and a ton of other stuff).

So the fact Chromium is (mostly) open source (Chrome is most certainly not) is certainly not charity or the goodness of their hearts. It is the work of idealistic individuals like Lars Knoll who gave us this among other things like Qt.

This is also true for a lot of other Google projects like Android.

Having spent a lot of time working on the codebase... Far more is opensource than Google needed to make open, and the development model is far more open than androids. In the chromium codebase, there are even some modules where the key technical decision-makers aren't Google employees.
> Google has open sourced only as much as they had too for using Webkit's GPL codebase

This isn't remotely true. Most of Chromium code is BSD-3-Clause.

> have been notorious in close-sourcing bits when they are able (like the DevTools WebAssembly debugging tools

I'm not a fan of that either, but to be fair it's a Chrome extension[1], not part of Chrome.

> and a ton of other stuff).

Like what? The trend has generally been the other way. Flash was removed, PDFium was released. Video codecs? But they've always been that way.

[1] https://chrome.google.com/webstore/detail/cc%20%20-devtools-...

> This isn't remotely true. Most of Chromium code is BSD-3-Clause.

Yes, because when Apple forked KHTML they made the _least amount_ possible open source and when they faced public pressure and were criticised (note unlike Google - Apple doesn't really have a big business incentive to keep their browser open source anyway) they open sourced the parts that are/were outside WebCore and JavaScriptCore as BSD. Hardly benevolence.

> I'm not a fan of that either, but to be fair it's a Chrome extension[1], not part of Chrome.

That's true - it's also true for other parts of the codebase. I see your point about video codecs, drm and a bunch of other stuff and Google _does_ benefit from the fact companies like Igalia filled with ex-Googlers can contribute significantly to Chromium.

I think it's important to make a distinction here between the engineers "with boots on the ground" - many of them care deeply about the internet and chromium being open and about working on an open source project and the people higher up making the more strategic decisions.

It's also worth mentioning Chromiums is very much a "closed club" with a different (harder) contribution model, builds and meta-builds that work well only if you work for a large-co (otherwise it's built on your machine and takes hours) and it's very unreachable if you're not "in the know" compared to other projects. I don't think that part is malevolence though I just think making an open source project more open is hard.

People won't want to hear your comment (myself included) but it's a fair and important point. I've been on the other side so it does resonate with me. I worked for Red Hat at the time when CentOS changed their model and it was amazing how many people were like f*k Red Hat and their greedy money grab[1], I'm switching to <replacement>. Without realizing that the distros that do very little except rebuild Red Hat are only possible because Red Hat makes it possible. They could absolutely kill the clone if they wanted to[2]. To be clear I have nothing against the clones (in fact I use them), I mainly get bothered by people thinking a quality linux distro happens by accident.

[1]: It was a little more complicated than just "money grab": https://freedomben.medium.com/centos-is-not-dead-please-stop...

[2]: Pre-empting the inevitable "but the GPL", Red Hat goes above and beyond the requirements of the GPL and could make it way harder to build. Also a huge important chunk of the distro is BSD/MIT/Apache/etc. Without that the GPL'ed only stuff would never be a feasible distro anyway

The open-source (also high-profile) nature of the project probably helps Google themselves keep their own team in check with outside accountability.
How does AMP interact with Brave's advertising monetization, BAT?
Great question. Brave's advertising is presently done on the New Tab Page, via Sponsored Images. No AMP impact there. Users who opt-in to Brave's Ad Notifications will occasionally (frequency thresholds are governed by the user) see a native notification displayed outside of the browser. No apparent AMP impact there either.

Where AMP could impact things is for the publisher. Publishers are able to verify their domains/properties, and receive BAT contributions from Brave users visiting their content. If that publisher is having their content served through Google's domain, that would impact their ability to receive support from visitors.

(comment deleted)
I wonder that the EU commission hasn't used GDPR or some anti-conpetition law to ban AMP in the EU.
GDPR enforcement is severely lacking unfortunately. None of the record-breaking “4% of global turnover” fines have materialized even for malicious actors that definitely deserve it.
Nobody complained about Google's RSS monopolizing because the search engine doesn't provide RSS URLs in the top results, unlike they do for AMP links, at least nearly as frequently. RSS is also far from a similar case study to AMP in how web content is delivered. RSS optional, AMP was a lazy web dev's means to presenting pages over mobile without having to think about layout. At least that's what if felt like to me as a web user.
And how is showing AMP in top results monopolizing the web? Bing does the same thing. A social news aggregator could do the same thing if it thinks people could read the article and go back to scrolling the feed faster.

AMP loads instantly. There is nothing lazy about supporting it. Just like RSS, it requires extra work for the publisher to get the user the instant-loading behavior they desire.

I think you read too quickly, or skipped over a few key parts.

Yes, AMP can cause some pages/content to load more slowly. This was stated in the write-up, and supported a link to Google's own DOJ disclosures. In that source we read that Google knew that some publishers avoided AMP because their own pages were shown to load more quickly without it, especially considering 1-second throttling on Google's part for non-AMP pages, aimed to give AMP a "nice comparative boost".

I think you didn't read that report at all. The nice comparative boost was for ads. AMP pages loaded from an aggregator are rendered before you click on them, and the DOJ disclosures did not dispute that this would cause them to load faster for users as it obviously would.
I haven't noticed that many AMP pages recently. Is it still a thing and what kind of sites use them?
Google no longer marks AMP pages in its results, but Bing does.
Wow that's new. Was this announced somewhere or just introduced silently?
They pop up on reddit fairly frequently. Lot of news sites push them, hard...when people get a share link, especially on mobile, they end up with an amp link. Lot of subreddits have automod rules that delete amp links, and there are bots that look for amp links and reply to the comment with a de-amp'd link.
Commercial blogsites that post often, and specifically focus on 'new' stories that people are searching for online.

Think websites that do news, celebrity gossip, music, games and movies.

My main gripe with AMP may seem pedantic or even petty, but it's the way it messes with the URL. Copying and sharing or saving a URL is fundamental to web, and AMP makes me have to mess around to get that standard URL. It's about as small as first world problems get, but it's annoying all the same.
Doesn't sound petty to me.
This bothers me greatly too and is my biggest gripe. I understand it's hard to build something like amp without that, but I think it will have unfortunate reverberations for many years to come. Especially if at some point Google pulls the plug on Amp. Will all those amp links suddenly die?
It's neither pedantic nor petty - I find it so annoying too. It's like a car wash operator placing an unwanted sticker on my windshield.
It's about as small as first world problems get, but it's annoying all the same.

This logic needs to stop. We may as all well live in mud huts. Then we can have "real problems". You can presume privilege is your problem, or, we can continue to strive for better conditions always as a culture. Low standards will lead you exactly where you belong, your mud hut.

Even without AMP, Chrome is dedicated to hiding URLs from users.
[Google employee, opinions are my own]

This was 'fixed' by Signed Exchanges[0] which sites can implement. This is (imho) a cool new web tech that got drowned out in the AMP noise.

[0] https://web.dev/signed-exchanges/

Last I checked, this feature is paywalled behind specific certificate authorities.

Any news on that?

I don't work in this space and hadn't heard of it this. A quick search suggests LetsEncrypt and Mozilla are intentionally not implementing support: https://community.letsencrypt.org/t/cansignhttpexchanges/153...
Thank you for the reply, I was kindof expecting that this would play out as such. I am very excited for the future of browsers and web protocols, but some of them are so exclusive and heavy-handed by Google that I worry.

Google needs to continue their developer relations efforts. I think they want to be on the same team as "us", from a technology perspective. Perhaps if only for the sake of adoption.

Google wanting things, (ab)using their position as the most popular browser to get an implementation out there before there is a standard, then getting surprised that others don't want it. FLoC all over again.
It's a thing only Google wants, so it'll be an interesting flex of their monopoly powers if it goes anywhere

Very similar to what they tried and failed to do with FLOC

I suspect Google is solidly in too many anti-competitive crosshairs around the world to be able to pull anything like this off.

PS: AMP is such as ludicrous over-reach by Google that I think it'll be one of the key pieces of evidence used to demonstrate the need to break up Alphabet into separate companies.

Maybe you should reach out internally and ask if it's really worth it?

There's always a point where the Government steps in. Don't think you're immune. Don't think that just because you've gotten away with it thus far that anything you do will be tolerated by the public forever.

Google doesn't want you to use URLs. Google wants you to use Google. Makes sense.
My main gripe is that it just simply fails to render things. About half of the time I'll be scrolling down a page and the text will just stop rendering, it becomes a blank white screen.

I don't know WTF they're doing to render but they tried to be too clever.

Honestly, this is win-win and I applaud Brave for taking on this engineering task.

- Users who are concerned about AMP can use Brave to bypass Google's infrastructure

- Users for whom AMP is a benefit can continue to use it

- Everybody wins

Totally agree! (And I'm usually in these threads just to defend AMP)
Really? What happens when google no longer indexes non amp pages as most of the web pages are on amp? Just a thought teaser. As it looks like there is not much people seeing further from their noses.
Brave has a search engine for that.
> What happens when google no longer indexes non amp pages as most of the web pages are on amp?

Your thought experiment is equivalent to "What happens when Google no longer indexes the open web," and I think the answer is "Bing takes Google's place."

Kudos to Brave - they're a sometimes weird actor, but some of their initiatives are commendable, and they often do what Mozilla should have, but didn't.

I rarely end up in AMP pages on my mobile, but when it happens I immediately feel like I stepped on a turd, and promptly backtrack / close the tab before it hijacks my back button, half the screen, standard controls (including doing something weird to scrolling) and other unpleasantries like banners whose "x" somehow overlaps my browser's bars, and are therefore out of reach (and said browser bars somehow do NOT autohide when scrolling, unlike on normal pages)

Getting AMP results from Google search has been one of the drivers leading me to switch to DDG, so congrats Google, one less customer.

Brave is doing for us all the things Mozilla promised
And a lot of other shaddy things that Mozilla has never done, like the affiliate link hijacking (which yes, was supposedly a "bug" but you have to admit that it's an awfully convenient "bug"), and setting up crypto wallets for content creators without solicitation and then collecting money on their behalf.
Heads up: I work at Brave. As such, I encourage you to check my claims, verify my sources, and don't take anything I say for granted. Always happy to provide more context as needed :)

Firefox literally sends your keystrokes to Google, right out of the box. Brave, however, was found to be the most private popular browser by reputable researchers: https://www.scss.tcd.ie/Doug.Leith/pubs/browser_privacy.pdf.

Brave [never] hijacked links either. Affiliate Links were offered among suggested sites for relevant search input. So if you searched "Binance," the browser would offer (among other suggestions), an affiliate link for the site. Users could then choose to browse to the property with the affiliate link, and in so doing support the development of Brave. No impact to privacy or security at all.

The mistake here was with input handling. Built to handle search input, this feature also mistakenly handled fully-qualified domains. While we intended the app to offer affiliate links (when relevant) to something like "what is binance?", it was also offering them for "binance.us". The latter case was corrected quickly (and the feature itself was disabled out of the box).

More about that on our blog: https://brave.com/referral-codes-in-suggested-sites/.

To your second point, about setting up crypto wallets and soliciting donations on behalf of non-participating publishers, you're mistaken there as well.

To prime the support-system in Brave (called Brave Payments at the time), we staked Brave users with tokens, inviting them to direct those tokens to creators they would like to support. More clearly, Brave gave Brave users say over where Brave ought to direct its own tokens.

Unfortunately, our UI/UX wasn't very clear about which creators were verified, and which were not (we followed the Twitter approach, marking verified creators with a checkmark, but doing nothing for others). This resulted in some confusion at the end of 2018, where users were directing Brave's tokens to non-participating creators (most notably Tom Scott).

We received considerably helpful feedback about how the system could be improved (both from a UI/UX side, and operationally). Frankly, I don't think I've ever seen our team work so hard, and churn out such a monumental update in so little time. We had made massive changes within 48 hours IIRC. Creators were explicitly marked as verified or unverified in all cases, the BAT that Brave stakes with users would remain in the local wallet until it could be received by a verified creator. And BAT that sat pending for 90 days would be unlocked again for the user to direct elsewhere.

Tom Scott was kind enough to review our changes, and explicitly gave us his approval soon-thereafter. What is now 'Brave Rewards' wouldn't be doing so well today were it not for Tom and so many other incredible users helping us find the best path forward.

More about that on our blog: https://brave.com/rewards-update/

Not that I'm downplaying your points, but please next time start a comment saying you're working for Brave ;)
Good point. On Twitter my name is "BraveSampson," and I often forget that isn't the case here as well. FWIW, I'm Sampson, and I work in Developer Relations at Brave. I have that in my bio here, to help a bit.
> Firefox literally sends your keystrokes to Google, right out of the box.

Keystrokes in the URL bar.

It can also be disabled in preferences if you don't like that functionality.
(comment deleted)
Keep an eye on it though because they periodically re-enable it for you. So helpful.
Which is how instant search works, right?

Describing the cost without explaining the why is really putting a spin on things.

Yeah, I don't like that this is the default, but "Firefox literally sends your keystrokes to Google" could easily be interpreted by many people to mean all of your keystrokes (not just the ones typed in the URL bar).

It would have been better to say "by default Firefox literally sends every keystroke you type in the URL bar to Google".

In my opinion it is a user-hostile "feature", and should be pointed out, but not in way that could be so wildly misinterpreted.

> In my opinion it is a user-hostile "feature", and should be pointed out, but not in way that could be so wildly misinterpreted.

I agree. I don't like a lot of what Mozilla does but I don't like Brave at all, so I'll gladly defend Mozilla against hyperbole coming from Brave. Brave isn't even a browser, so I just ignore it most of the time.

I appreciate this respectful, thorough, evidence-backed response to criticism that makes claims you dispute. It's so rare on HN and the wider world.
> Firefox literally sends your keystrokes to Google, right out of the box.

This is a touch of FUD. Firefox sends what you type into the search/address bar to google for search suggestions by default, yes. Your perhaps unintended implication here is that all keystrokes are being logged and sent to google.

> Brave, however, was found to be the most private popular browser by reputable researchers: https://www.scss.tcd.ie/Doug.Leith/pubs/browser_privacy.pdf.

This is a bit of a misstatement of the research; Rather they found that Brave doesn't tag users' installs with persistent IDs by default in startup telemetry or update requests, while most of the rest of the competition do. This means Brave has a superior initial privacy state but says nothing about the overall usage posture. Is it better? Possibly but that's not the conclusion the researchers actually came to.

Here's an example of why the first line of FUD is dangerous: "Brave's BAT is basically just a way for users to be tracked as they go about navigating the web."

This is an easy throw-away statement with little substance and likely little to no truth behind it.

A more concrete example might be that the so-called "Privacy Preserving Product Analytics API" that collects data on Brave users' installs gets enough data to pretty easily fingerprint a user if you wanted to. You don't need many data points to identify an individual from a large group.

People around here love to pile on Mozilla for every perceived slight or misstep but they rarely have any ideas on how Mozilla is supposed to fund itself.

Some of the ire is earned but I have yet to see how Mozilla is supposed to fund Firefox development without that google search bar.

> they rarely have any ideas on how Mozilla is supposed to fund itself

If we’re talking about the Mozilla foundation, they should seek donations and grants and focus on being the best user web tooling.

If we’re talking about the corp, they could’ve kept rust under the umbrella and pioneered the WASI runtime and built an alternative to k8s that runs webassemblies and built out a paid cloud infra.

It doesn’t make sense to have a foundation that is user aligned and a corp that is user hostile. There should be aligned incentives.

In 2013/2014 when Snowden started whiste-blowing we were hoping for Mozilla to monetize privacy, but they never did. They only recently made some very poor attempts at private email, VPN and integrated some DoH. They were very hesitant for any cryptocurrencies integration. I would be happy to pay for a serious VPN and email service (remember Mozilla owns Thuderbird) with promises like Tutanota or Proton have. They could have acquired them, but instead they acquired pocket. Mozilla had the perfect brand and enough userbase to do it. Mozilla started doing that work 5-7 years too late and did too little to be meaningful. I feel they are doomed now and their space is shrinking and there's no future for Firefox in the long term.

There's a lot that can be added here:

Mozilla promised to opensource pocket server and never did.

They promised to hire someone full-time for Thunderbird, but never did. afair there is a German company that has full-time developer working on Thuderbird.

They promised a VPN... yes, delivered something.

They promised anonymous email, I know they were giving access by invites, but nothing more about it.

They promised to unfork Tor browser and integrate Tor into Firefox, they were even running a few Tor nodes.

Remember how hyped everyone here was for Servo in Firefox and electron competitor?

MDN could have integration with GH or GL and educational content for web development, they literally had resources, brand and ability to join an online university and give degrees or at least serious bootcamps. Mozilla was a meaningful brand to do it.

They had a lot of opportunities to sell privacy, we literally demanded it from them, but they weren't interested in listening. Instead they delivered 6 rebrands each breaking my muscle memory.

Do you remember how they advised EU to regulate monopoly on the webbrowser market? There was time when they had all ability, but 0 will to keep it this way https://en.wikipedia.org/wiki/BrowserChoice.eu

wow this escalated so fucking fast i have no idea what happened
(comment deleted)
Not really, its just the epitome of blagging which is criminal!
on the other hand, colorways
By not spending the >$1 billion they've taken in over the last decade as fast as they got it. A billion+ is a ton of money in the open source world and had they been responsible stewards they would have been able to fund development for a very long time without short term funding concerns. The fact that they've pissed away every cent taken in is their problem.
For starters Mozilla could operate with a much smaller footprint, much less projects in parallel and less vanity projects. That would reduce the amount of money required by a lot, which is the big problem in the first place.

Developing a browser isn't easy and requires a few teams of developers, but in 2020 it spent 242 million dollars in software development costs, 137 million dollars in administrative costs and 37 million dollars in marketing and branding costs. I don't live in a lala land where I think you can develop a browser for free, but I think we can all agree that you don't need to spend this amount of money on it either. Are 100 developers enough? 200? How much does that cost? Do they all need San Francisco salaries to develop a good browser?

In terms of funding, they got 440 million dollars from royalties (what they get from setting default search engines on their browser) and 25 million dollars in subscription revenue (Pocket and VPN subscriptions type things - products they actually sell).

Now, can you develop a browser on 25 million dollars per year? Maybe it's cutting it short, but for sure there could be a strategy to invest more on this side of the equation to phase out the need to be Google's bitch in a more intentional way.

Source: https://assets.mozilla.net/annualreport/2020/mozilla-fdn-202...

> Are 100 developers enough? 200? How much does that cost?

100-200 developers probably roughly costs on the order of 25-50 million a year (assuming a made up number of 250k fully loaded cost with benefits and taxes, which might be lower or higher than their average, idk. This number seems almost too conservative to my gut). From this back of the envelope math, I don't think the royalties business is enough to support the development cost alone.

> Do they all need San Francisco salaries to develop a good browser?

If you don't want them to leave to work on safari or chrome, probably? This experiment was more or less tried by opera, right?

Brave gets away with a lot lower overhead by bascially piggybacking off chrome. Opera similarly gave up selling their own browser engine and cut their development teams while switching to another wrapper on blink. Firefox could become yet another skinning of blink and chrome code, but it's not clear to me how that's helping them with being "Google's bitch in a more intentional way".

I think there are problems with Mozilla's side project expenditures, there is definitely some bloat, and they have had some expensive failures like Firefox phone. However I don't think Mozilla could have survived without Google's funding and people vastly underestimate how expensive quality software is.

>Brave gets away with a lot lower overhead by bascially piggybacking off chrome

Chromium get contributions from a few big companies, why couldn't Mozilla create a "contributor community group" something like Java has? Oracle keeps control over Java but there is a democratic process on what gets into Java/JDK. At some point Samsung was contributing to servo when it still was experimental.

> why couldn't Mozilla create a "contributor community group" something like Java has?

Mozilla regularly accepts code from unpaid community members and has since its inception.

>Mozilla regularly accepts code from unpaid community members and has since its inception.

Yes, so it Java and Google and Microsoft... you're still missing the point I made there. Make Servo a cross-company product serving more than just Firefox. More companies contribute to it, lower costs of development.

> From this back of the envelope math, I don't think the royalties business is enough to support the development cost alone.

Did you mean subscription business? Like I mentioned, the royalties were 440 million which is way larger than 25-50. If you put 200 developers on this project, with fully loaded costs of 400k / year each, that's 80 million dollars per year. You add 20 million dollars for administrative and other expenses and we come to 100 million dollars per year burn rate.

In 2020 they made ~25M on subscriptions, if 50 of the 200 developers focus on improving the subscription business, at the current rate of growth they had from 2019-2020, in a few years they could totally phase out of needing royalties at all to cover their $100M / year expenses, with 200 developers earning competitive salaries.

Yes, sorry, I meant non-royalties business. I don't believe the kind of growth you mentioned is likely, but maybe I am missing things about their business. I think they bet big on diversifying with other initiatives like Firefox phone that just didn't hit, lots of browser things like you were talking about.
There's good developers living in regions where 50k is a really excellent salary. Even 100k. I agree with the parent poster that SF salaries are crazy for a product like this.
Even 100k salary is like 130k with benefits and taxes, so 200 developers takes out 26 million, above the subscription revenue without counting for any overhead like infrastructure, ops and administration. And below 100k, I think you will struggle to hire enough with the skills you need, browser dev is hairy and hard, and you are competing against an extremely well funded project in Chrome.

I don't doubt there are developers being paid peanuts with more talent than I will ever see, but I haven't seen them and I know a lot of people spending a lot of money looking, which suggests to me they are rare and hard to build a team out of.

And if they found them, and they fired all the senior bay area folks and rehired these 100k developers tomorrow, are those developers experienced writing fault tolerant c++ in a multi-decade codebase? And if so, how many will relocate or take remote jobs for way higher salaries after a couple years? Google, Amazon and Microsoft would be happy to have them and pay 300k+ TC for those skills, as well as countless banks and fintech firms.

I was considering 100k including everything :)

Here in Spain (which is a first-world country :) a good dev would make about 50k or so..

I think the Silicon Valley area has really skewed expectations of salary (and of course living expenses!). Familiarity with codebase is a problem indeed, but they could start setting up a hub somewhere in Europe.

I think part of the problem is that when they incorporated Mozilla they started thinking as a corporation. Multi-million-dollar-paid CEOs, top-heavy with marketing etc. They should have stayed nonprofit IMO.

>how Mozilla is supposed to fund itself.

1. Stick to building a more private browser

2. Become a non-profit or Benefit Corp

3. Fund #1 through all of us donating and encouraging our less tech savvy connections to use it and donate

1. Why focus on privacy? The niche is already taken by brave 2. To do so, they'd have to drop their half-billion default search engine deals 3. Currently, the donation figure is about $20mil. They'd have to somehow additionally collect $1.5 from every single user annually to prevent layoffs.
It's not a small niche. It can be shared with Brave.

And Brave has things that not everyone likes like the bat token stuff. And chromium.

> 2. To do so, they'd have to drop their half-billion default search engine deals

Yes, that is part of the reason why they should be a non-profit - sot that they can work for the public good and not for the good of their corporate sponsor.

> 3. Currently, the donation figure is about $20mil.

Donation figure for what? Currently you CANNOT donate towards Firefox development.

> Donation figure for what? Currently you CANNOT donate towards Firefox development.

To Mozilla foundation. Most people I heard donating to them don't realize their money aren't and couldn't be put into Firefox development.

> 3. Fund #1 through all of us donating and encouraging our less tech savvy connections to use it and donate

They could also try to seek government funding. EU and other non-US countries should have an interest in there being a browser that is not beholden to a US for-profit corporation.

It'd be a nice start if they'd let me give them money for their product.
Indeed.

And something like apple's iCloud relay. I would pay for that.

I won't pay for a Mullvad subscription that's less useful than actual Mullvad because it just works in the browser and it doesn't fix all the issues iCloud relay solves.

If they'd sell actual privacy features I'd pay for it totally. Sync too.

I say this every time it comes up. I would happily pay $5/month for a “platinum” branded Firefox browser if that $5 would go to support development costs. I’d love to have other people see it when I share my screen both inside and outside my organization.
It would help if they didn't increase the board and leadership compensation and spend loads of money on social justice projects whilst at the same time cutting on development as their footprint on the browser market keeps shrinking.

Sure it's probably not going to make it but they're still not things they can sensibly afford to do.

This has been done to death in other threads.. mozilla's raison d'etre today is as a lighting rod to prevent real competition to google. Follow the money, and why the mozilla ceo gets big bucks for performance that's against mozilla's public goals - they are instead meeting mozilla's private goals.

Your raising a discussion about mozilla in a brave thread plays right into mozilla's purpose of muddying the waters for actual competition against google. Please don't derail brave discussions with off topic stuff.

You can use the same reasoning for why Google is happy with "competition" from Chromium based browsers.
Maybe it's because I use Brave (as a "Chrome with less Google" and with all the crypto stuff disabled), but when I look at the "shady things" they've done, it doesn't look that shady:

- The affiliate link "hijacking" was - if I remember correctly - to sites of crypto companies that partner with them. I'd prefer if this didn't happen, but most seem to be fine when other browsers (Safari, Firefox, etc) add something like "?client=safari" when searching or when their search engine (eg: DDG) use affiliate links to sites like Amazon or Ebay. It's not a new thing.

- The money collection (brave rewards)... if one doesn't understand how the system works, it looks like they are stealing money... but the money is returned to the sender after a while if the website/creator doesn't claim it. Is this that bad?

And then there's them not blocking some trackers (Google, Facebook, etc) by default, but if they did, they would break logins on many websites.

Maybe all this is bad, but I'm not sure if there's any browser out there without a history of shady behaviour. Even Mozilla has messed up a few times.

>The money collection (brave rewards)... if one doesn't understand how the system works, it looks like they are stealing money... but the money is returned to the sender after a while if the website/creator doesn't claim it. Is this that bad?

I don't think anyone ever accused them of stealing that money, but yes, hijacking people's personal brands to collect money without their explicit knowledge is a bad thing.

Imagine if I saw the icon and gave "them" money via Brave instead of joining their Patreon or some other official channel that they explicitly set up. If they don't collect, then yes, I might get my money back - nothing was "stolen". But that was money I wanted to send to the content creator in that particular moment, and that creator will probably never see it. The creator got screwed out of money that otherwise would have gone to them.

>hijacking people's personal brands to collect money without their explicit knowledge is a bad thing.

Brave gave users BAT to tip content creators. They tipped it, if it wasn't claimed in 90d, Brave returned the BAT to the pool. There was no collecting money. It was Brave's promotional BAT and it never actually left Brave's possession unless claimed.

The issue was that it wasn't clear if the creator had or hadn't signed up. Which was fixed within 48h.

Please see the second half of this response: https://news.ycombinator.com/item?id=31086397.

Imagine I presented you with $10 (from my own pocket), and asked you where it should be spent. You told me "Doc's Pub, over on 9th." So I walked over to Doc's Pub, but found them to be closed. So I waited outside for a few hours, just incase they opened up. I later went home and wrote down "try to spend $10 at Doc's tomorrow."

Brave staked users with BAT (from our token sale). Users could direct that BAT to the sites/properties of their choosing. The BAT then went into an omnibus settlement wallet (note: the BAT originated in one Brave wallet, and was sent to another Brave wallet).

There was no hijacking of brands, or anything of that nature. I would encourage you again to please visit the aforementioned link. In it I mention our blog post on the topic, which includes screenshots and more. I hope this helps!

Maybe the problem is the way it used to work and not so much how it works right now? Things seem to have changed a bit.

At least for websites I have to manually click the Brave Rewards icon (wasn't prompted to do it on a new profile) and it shows if the site is verified or not:

- My personal website (verified): https://i.imgur.com/WZykI2U.png

- Google[.]com (unverified): https://i.imgur.com/89XvzIz.png

And if we hover over the "unverified creator" text, this is displayed: https://i.imgur.com/IfKQUME.png

I guess the right way to do this is to only allow tips/donations for websites already verified... still, if you're going to use Brave Rewards, you probably have an idea of how it works.

Maybe things are different for creators on platforms like YouTube? I don't know how it works. I couldn't find a way to make a direct contribution with Brave Rewards.

> And then there's them not blocking some trackers (Google, Facebook, etc) by default, but if they did, they would break logins on many websites.

Then what should they do? It sounds like they're between a rock and a hard place

Since they want to be a mainstream browser, allowing those by default (that's what they do now) is the way to go in my opinion. The option to block them is available for more advanced users.

This is only a "problem" for some because they think Brave is actually siding with those services, when in reality there's a good reason to not block them by default.

This is the thing everyone always points to when they hand wave "a lot of other shady things" - not sure why folks generally like to FUD Brave. I was working there when this issue happened and it was a very big deal internally and was patched immediately. FWIW I got zero hint that this was some kind of shady thing someone would have been trying to sneak in.
Follow the money, there's serious money pitted against Brave.

Grassroots users should support it like the godsend it is.

There's an irony there somewhere. I can feel it.
I like having more than one browser engine in the world, but I do hope Brave pushes Mozilla to do more.
To be fair, Brave doesn’t really have their own browser engine (it’s Chromium), but it is good to have browser choice, so I agree with the sentiment. (I am a Brave user.)
Agree, but at least brave has the expertise and interests ($$) that if chromium goes off the rails, they could fork and maintain an alternative.
Except building the only modern alternative rendering engine on desktop, which is necessary to keep web standards serving the users instead of Google!
Everytime I read this kind of hyperbole, I install Brave and try to replicate my Firefox browsing experience and realize that Brave/Chrome extensions suck. Specifically none come close to replicating the functionality of:

Multi-Account Containers

Temporary Containers

Sidebery

The triple threat that keeps me on Firefox. Can’t live without Sidebery
Brave is a Chromium browser. Mozilla is still the only one fighting Google- and Apple with Safari I suppose.
I’m surprised that Apple doesn’t have a desire to play this role. They don’t sell ads so there’s no cannibalism and they have painted themselves (and advertised themselves) publicly as a company that cares about privacy and security. It seems like a natural avenue to win users in a world where the Windows alternative has more analytics and spyware than ever.

A man can dream.

Apple only nominally cares about the web. They would rather all interactions go through apps and the app store where they get their cut.
Glad you’ve talked with leadership there and can confirm what many suspect but can’t prove
Is it brown in there?
Fine, allow me to rephrase

Based upon their actions I don't believe that Apple cares about the web beyond the bare minimum they have to to provide a tolerable browser experience for their users until everything happens via Apps.

What have other browser makers done, beyond the status quo that has demonstrated a browser experience that is beyond tolerable, perhaps even good?
Understanding how a company makes money will tell you a lot more than talking with any leader

That's even more true for publicly traded companies

Apple makes money on games with in app purchases. Not random apps that don’t charge users on the phone.
It's funny because if you go watch the iPhone launch presentation, Jobs was all about the web, and having web apps on your phone. Fast forward and PWA are just recently possible, barely supported, and Apple would really prefer you not to use them. The incentives are clear, but it's still a sad story.
> Jobs was all about the web

That was just the best answer he had to questions about third-party apps until they had the infra in place for it.

Apple will never tell you ahead of time about changes like that. So, while I wouldn't exactly call it lying, you'll get answers like the above.

Why wouldn't you call it lying?
Because it was the truth at the time.
It's not so much that Jobs was "all about the web," it's just that he didn't want people writing bad software for the iPhone so he was against allowing third-party apps on it until after much convincing.
For news, the common AMP use case, Apple uses Apple News news.apple.com as their version of AMP hijacking websites.

It's not a paid app, just part of the walled garden experience.

Apple “cares about the web” and wants people to use the web because Google pays them $12 billion+ a year to be the default search engine.

Most of the money Apple gets from the App Store is from pay to win games - north of 80%. It came out in the Epic Trial.

Apple doesn’t really care if your banking app is a website or an app. They don’t make money either way.

Most apps on the App Store that could be a web app don’t charge users.

Apple gets at least $99 per year plus device sales and usage data if it's an app. They also get to sell App Store ads to competing banks.
$99 a year is a nothingburger. It wouldn’t even move the needle enough to motivate them. That’s not even pure profit.

But the money they make on ads in the App Store has to pale in comparison to how much they get from Google

Apple said there are 20 million registered developers in 2018.

Now there must be more but $99 * 20 million is not nothing in annual revenue which is mostly profit.

App review, XCode, each app gets a certain amount of iCloud storage outside of what the user pays, bandwidth, etc.

A “registered developer” is not necessarily a “paying developer”, you can register as a developer to get documentation etc.

If you are working for a company creating an app, not all developers need to pay to publish an app. Also Mac developers don’t pay to distribute an app.

When their annual revenue is $368 billion and their net income is $95 billion (in 2021), a couple hundred million dollars doesn’t really move the needle.
(comment deleted)
(comment deleted)
off by an order of magnitude. 20 million by $99 is 2 billion, which is >4% of the net income.
Which is still not accurate, most “registered developers” aren’t “paying developers”.

If you have a company with 100 iOS developers, you only need to pay for one account that has permission to submit an app.

If you are exclusively a Mac developer, you don’t have to pay anything unless you are submitting to the Mac App Store.

> nothingburger

What the heck is a nothingburger?

(comment deleted)
(comment deleted)
The more native apps you use, the stickier the ios platform is. To the extent that they don't care whether you use the web or not, it's only because they've already won in the markets that they care about and don't really view Android as a serious threat anymore.
Every single app on my phone besides Overcast (the podcast player) has an Android version. Hardly any non game app developer creates apps for iOS only.

Not only that, the data for those apps are on a remote server that is accessible via any other platform. Even when an app uses the standard file picker, you can choose any installed cloud storage device to save and load files - ie iCloud, Dropbox, Google Drive etc.

Apple does not offer an equivalent tool, however as of iOS 13, the system hooks exist for one to be implemented. In particular, there is Christian Selig's Amplosion (same author as the Apollo Reddit client)[1], which works quite well. Costs a few dollars up front, but well worth it.

There is sadly not a version or equivalent on macOS, but Christian has confirmed it is in-development.

[1] https://apps.apple.com/us/app/amplosion-redirect-amp-links/i...

P.S. Pairs well with PiPifier to bypass YouTube not allowing picture-in-picture or playing in the background without a subscription, and a good ad blocker.

Why don't people just use a redirect extension and redirect ^https?:\/\/(.)(\/amp\/|\?amp|\?amp=.)$ to https://$1
Because that only works in browsers with extensions, and extensions are yet another third party to trust.
Who doesn't use a browser with extensions? And it's open source. It's not phoning home.
Apple is disincentivized to take this on.

Apple sells ads on search indirectly via Google. (Google pays Apple to be the default search engine.)

Google’s payment to Apple is bigger than the revenue Apple makes from the Apple Watch.

> I’m surprised that Apple doesn’t have a desire to play this role.

They're being paid handsomely, by Google:

> In 2020, The New York Times reported that Apple receives an estimated $8-12 billion per year in exchange for making Google the default search on its devices. According to one analyst, Google's payment to Apple in 2021 to maintain this status quo may have reached up to $15 billion.

1. https://www.macrumors.com/2022/01/05/google-pays-apple-stay-...

> They don’t sell ads so there’s no cannibalism

Apple sells huge amounts of ads, I believe it's the fastest growing part of the business right now. Estimates are $5 billion in advertising revenue in 2021, with one projection of $20 billion annually within 3 years. In addition to this, Google pays them $15 billion to be the default search engine and sell ads.

https://www.ft.com/content/074b881f-a931-4986-888e-2ac53e286...

Where do they sell ads outside of the App Store?
Off the top of my head there are ads for third-party apps in the Apple Health app, ads for subscriptions and whatever in the Music app, ads for the Apple credit card in the Wallet app, ads for completely irrelevant crap via "curated" lists in the Maps app (no way the SF Chronicle is getting free placement in Apple Maps).
I mean for first-party ads that makes sense
AMP pages consume less power (thus battery life) on Apple's mobile devices.
I generally trust the Brave folks, but have reservations about rewriting URLs becoming a new tool in their toolbox.

DDG sounds like a promising alternative.

I'm sure it just changes the URL bar so you can see what happens.

Regardless, it's already in their tool box because they make the browser.

They could be re-writing urls and not showing you, if they wanted to. And as long as no one notices, you can keep doing it.

Good point. It also sounds better to build it in than having a browser extension for it.
> DDG sounds like a promising alternative

Unfortunately, switching to a different search engine does not prevent you from ever stepping onto AMP again. For example all links in the mobile version of Twitter used to be AMP until recently: https://www.theverge.com/2021/11/19/22791002/twitter-amp-ios...

I suspect go_prodev is referring to the DDG app ( https://duckduckgo.com/app ) and not just the search engine.

I only recently became aware that the app existed, so I don't know how/if it deals with all things AMP-based.

AMP sometimes helps me get past paywalls though.
> Getting AMP results from Google search has been one of the drivers leading me to switch to DDG, so congrats Google, one less customer.

It is a cliche but you are not Google’s customer. You are their product. If you don’t find AMP compelling they don’t want to serve you ads anyway.

Yes, but less product is less profit, and they do want to sell you ads, AMP or not!

So yes, it is a loss for Google.

> but less product is less profit

Not all products are profitable.

> sometimes weird actor

Like that time Brave replaced links to a site with their own affiliate links? Yeah, I no longer trust them.

That never happened. We never "replaced links".

The issue was about address bar input autocomplete for two domains, binance.us and binance.com, along with keywords which all browsers offer several possible autocompletions for, we autocompleted by default not just via dropdown suggestion, with referral code attribute identifying us (not the user) to Binance at end of domain name. We fixed this right away and made nothing off of it. But it was a blunder for sure.

I didn't experience anything you described with AMP pages. Generally, I find AMP pages to be among the best by news site standards, which I agree are pretty low.

I never understood why AMP gets so much hatred from end-users. I understand why publisher hate it (it takes away control), and I understand the monopoly concerns, but for me, as an end-user, 99% of the times, the AMP version is better: faster, with less of the annoyances you described. As for privacy, these 99% are loaded with Google ads and analytics anyways, so not much of a win there. I don't know what your configuration is, what kind of ad-blockers you are using, but I never met the horrors people make AMP to be.

And sure enough, there are sites that are better than any AMP sites, but these almost never have an AMP version. So for me, AMP makes terrible sites a little less terrible, and good sites unchanged.

> I understand why publisher hate it (it takes away control), and I understand the monopoly concerns

And here lies the problem. Eventually, these two 'annoyances' will become much bigger than that. The biggest threat, imo, is that these will lead to news organization, journalists, and credible publishers to eventually close up shop as they receive less of the share of revenues.

I do agree with your point about AMP sites generally being a much smoother experience. But at what cost?

I do not like AMP sites because it hijacks my back button in the browser and I have to hit back several times to maybe make it back to the page I was on before clicking the link to an AMP site.

If it did not do that I could care less.

The problem I have is that I've never found AMP pages to be any better or particularly faster (I guess the news sites I use were already fairly well optimised, but also I always use ad and tracker blocking so I'm not slowed down by any of that crap).

But AMP pages are often worse - things like getting cut-down pages with the normal navigation missing or stuff like that. And it breaks URL sharing - if I want to share a link, I just want the regular link, not one with AMP crap in it, but often cutting out the AMP part to try and reconstruct the original URL just doesn't work...

So I've never found it better but only worse, so understandably it just annoys me. If it is just that my tracking and ad blocking is making all the difference, then AMP clearly isn't actually solving the actual issue...

Mozilla's biggest source of revenue? Google. By about a factor of 5.
Mozillas real competitive threat to google - 0.

Mozillas effectiveness at diverting/absorbing/stopping other community initiatives that could actually impact google - worth the dollars from google's point of view.

For some reason, I got this idea at some point that brave has a built in crypto miner as its form of monetization. Can anyone confirm if that's true or not? A browser cutting out amp sounds like exactly the kind of browser I want

Edit: not sure why I got downvoted. I'm asking a genuine question because I'm always looking for google alternatives, and firefox has been disappointing lately.

They do have a weird crypto thing (not a miner, as far as I know) but it's easy to disable and forget about.
They’re monetized by selling ads in exchange for BAT, plus they probably hold plenty of BAT which they can sell over time as they continue to increase its value.
No miner; in fact we were the first browser (to my knowledge) to block crypto-miners back in 2017/18 when they began appearing on the Web (and being delivered via third-party ad networks).

Brave does come with Brave Rewards, and optional component which enables users to participate in privacy-preserving advertising (ads are matched locally, on your device). Users who opt-in receive 70% of the associated revenue for ads they see. Rewards are delivered in the form of BAT (and ERC-20 token), which can be kept, or gifted to content creators across the Web as a means of support.

> Users who opt-in receive 70% of the associated revenue for ads they see.

The other 30 percent goes right to Brave's pockets. In other words, they directly profit off of showing you advertisements.

> Rewards are delivered in the form of BAT (and ERC-20 token), which can be kept, or gifted to content creators across the Web as a means of support.

*only if those creators have an ERC-20 wallet. Many creators (like Tom Scott) have had their likeness appropriated without their consent to advertise this monetization scheme, despite the fact that they have no intention of ever using the service. As such, Brave dangles their ad revenue over their head, refusing to pay out in anything other than their own altcoin. It's a scummy design, arguably many times worse than the act of advertising in the first place.

I hate ads, and I go to extreme lengths to stop them and the scummy behavior they inspire. That's why I can't support Brave in good conscience.

> The other 30 percent goes right to Brave's pockets. In other words, they directly profit off of showing you advertisements.

Correct. We are able to continue developing Brave with the remaining 30%. In this arrangement, the user chooses whether or not to opt-in, governs the degree to which they will participate, receives more than 2x what Brave gets, and never has their data harvested in the process. Win-win, no?

Regarding the Tom Scott topic, you're quite mistaken there as well. Please see this response (to another user in this thread) for context: https://news.ycombinator.com/item?id=31086397.

Brave offers auto-conversion of received BAT into various other types of assets and currencies. If you prefer Bitcoin, for example, you can choose to have your BAT automatically converted into that asset. No requirement to hold BAT.

My only problem is the KYC. I'm happy people are making money with ads. The KYC stuff is contrary to the privacy narrative. Fix that and I'm sold as a user, publisher and ad buyer.
KYC isn't required for users. You can download Brave, opt-in to Rewards, earn BAT, and support content creators across the Web, and all without KYC. But if you wish to deposit/withdraw, then KYC is required (by relevant AML laws/regulations). Brave can't break the law if we wish to reform the Web into a privacy-preserving medium for communication and more. It's not up to us whether KYC is part of the equation; we have to follow the law.
Move to a different country that respects freedom. There are full exchanges with no KYC.
> Correct. We are able to continue developing Brave with the remaining 30%. In this arrangement, the user chooses whether or not to opt-in, governs the degree to which they will participate, receives more than 2x what Brave gets, and never has their data harvested in the process. Win-win, no?

Not really? There's no reason you should be entitled to that money. You're effectively doing nothing in this scenario: at least traditional ads actually support the content that is delivered on the site you access. Blocking ads isn't morally objectionable, but playing the role of the middleman and the tax collector certainly is. You can pretend like you deserve the compensation all you want, but from a technical level it's a pretty petty move that's ultimately designed to take advantage of the end-user and turn them into revenue-generating cattle. Yes, they get more money per ad, but they also don't have the benefit of scale. Individually, these users make what, no more than $3 a month from opting-in to ads? Meanwhile, Brave pockets hundreds of thousands. It doesn't add up.

> Regarding the Tom Scott topic, you're quite mistaken there as well. Please see this response (to another user in this thread) for context

So, I wasn't mistaken. Reading through that comment, you're basically admitting that you made a mistake, and had to rush out an update as damage control for a pretty obviously dark pattern. Case closed, don't treat me like a moron.

> Brave offers auto-conversion of received BAT into various other types of assets and currencies. If you prefer Bitcoin, for example, you can choose to have your BAT automatically converted into that asset. No requirement to hold BAT.

But you still need to hold crypto. That's not a refutation for the ERC-20 wallet point.

Ultimately, I think the Brave team is falling into the self-righteous Apple trap. Pretending like you always know what's best for your users and hiding behind a guise of privacy is pretty laughable, and it certainly doesn't make for good optics in the eyes of the greater FOSS and privacy community.

Thanks for squashing that rumor. I'll definitely give brave a try with that crypto rumor resolved and the news that brave cuts out amp
I'm a joe blow. Average user. I've been using brave for 3+ years. I try the other browsers fairly regularly. Always come back to brave. Check the brave:// flags (?), and go through every option under settings.

I have the crypto off, but - looking more at the brave site (including the many problems), I'm beginning to err.... be convinced(!?).

I fucking hate APM. As firefox iOS user I can't seem to get rid of it.
thankfully it was replaced by ACPI
Imagine working at Google on AMP

The banality of evil

Join Google to change the world as a top tier software engineer, then spend all your time updating protobuf definitions to keep internal tools glued together as Yet Another Widely Used Internal API implements breaking changes.

Such a lot of wasted talent.

Recently I came across the AMP website at https://amp.dev/ (after some years since first seeing it). It’s really remarkable how much Google wants to pretend this is an industry standard and not their own little fiefdom. I don’t see the word Google anywhere, not even on the About page.
It kind of reminds me of the OOXML thing where Microsoft hijacked the standards process for its own benefit.
OOXML was a standard-after-the-fact, because Microsoft couldn't respond to some Government tenders that required that all data be stored in standardised formats.

So... they "standardised" it.

Hilariously, OOXML as generated by MS Office is not the standard version by default. The standard version has different XML namespaces and even slightly different capabilities. You can choose this format in Save As, but nobody does.

The.dev gTLD is Google's; it exists for Google projects to hide their Google relationships.

amp.dev does make a tiny out of context mention at the bottom of the page, that Google runs the AMP CDN.

But overall it's obvious that the AMP Project trying to hide it's Googleyness by being "Open JS Foundation", which itself is a corporate trade group hijacking the word "Open".

Google administers .dev, but it's open. You or I could get a .dev domain and use it for a project that has nothing to do with Google.
TIL what really happened to godoc.org!
AMP is probably the single worst thing Google has produced. But as a Pixel 6 user, I think the real solution to bypassing AMP would have to live at the VPN level. Using Firefox Nightly as my primary browser, I don't really get AMP search results. The place I see it is in Google's news feed on the right side of the home screen. Brave wouldn't solve my problem there, and I already trust Firefox more.
It is not the worst. It is just "one of them", how to get the monopoly over web content.
It is the worst. It offers nothing to anyone, it has a terrible user interface, and it breaks basic features of the world wide web.

If AMP is genuinely a way to enhance online user experiences, then make it opt-in, instead of the current no-way-to-opt-out.

Ok there's a lot of amp hate here, and a lot of it justified, but when amp first picked up steam as just a regular mobile user it was amazing. I basically filtered searches to only look at those with the amp icon because in the real world in real conditions on mobile connections they legitimately & consistently loaded 10x faster than non-amp pages. And basically never had the dreaded random scroll jumps during loading.

Since then networks & phones got faster, a lot faster, and the difference maybe isn't worth the cost anymore. Also I think the amp restrictions have greatly relaxed, making amp just as slow? But "single worst thing"? Hardly. At launch it delivered and big time, the UX experience was night & day.

The main trick behind AMP is simply the ability to load third party content in a hidden IFRAME on the google.com origin securely. Your clicks were instant because they were literally pre-rendered client-side before you clicked, and that's why custom JS is prohibited.

SXG and WebBundle basically help map that trick out into the browser's domain, rather than some nasty restrictive JS library. It allows eliminating the whole megabyte-sized supersystem of JS nonsense that makes up the AMP library and having just plain ol' regular HTML/JS, while still netting most of the performance benefits of the old approach.

Mobile networks may have improved but the speed of light has not, and so these techniques still have a place in contemporary networking.

> Your clicks were instant because they were literally pre-rendered client-side before you clicked, and that's why custom JS is prohibited.

All the wasted rendering for all the amp links not clicked sounds like a really great way to churn through mobile battery life unnecessarily. Glad I don't use Google.

No it wasn't. The main trick of AMP was getting things like news sites to cut out dozens of JS libraries. The main trick was to get page load speed onto PM radars as a priority, so they got that little lightning bolt icon. You can make a regular page as fast as an amp one, absolutely. But the trick of AMP was getting major sites to actually do it.

Preferching/prerendering existed long, long before AMP did. That wasn't a new AMP technology, although it does communicate that there's going to be less to preferch than other links.

I de-AMP'd by switching my default mobile search to DDG.
I felt literally forced to leave Google on mobile by AMP. DDG's results are often worse and I end up having to !g, and it's always a punch in the stomach having to see two screens worth of poorly marked ad-results, SEO spam and AMP - all of those getting worse every month. And even then, their indexing of sites like Stack Overflow, Reddit, and other major players with good content is still miles ahead than DDG when I'm trying to find the solution to a problem.
But AMP can pop up in unexpected places, for example Twitter links on mobile used to be AMP until recently. Just changing search engine will not prevent AMP completely
If you run Pi-Hole here's the RegEx to add to your blacklist

^(.+\.)?amp\..+\.com$

^(.+\.)?ampproject\.org$

(comment deleted)
Thank you for this. Added to my pi hole. Seems to be working great so far for the occasional AMP links my coworkers send.
I don't remember coming across many AMP pages recently. Since Google stopped favoring AMP in the search results the other year, it seemed like AMP was dying off. Is this feature even still relevant in 2022?
Everything you need to know about AMP is in one very specific section of the spec:

"AMP HTML documents MUST...contain a <script async src="https://cdn.ampproject.org/v0.js"></script> tag inside their head tag" [1]

Meaning, "Your content must load and run some Google controlled javascript, that does who-knows-what to your content and end users".

In the past, that's included injecting a big header that pushes your content down, hijacking swipe events on your page, an [X] button that looked like it would delete the AMP banner header, but instead navigated away from your page back to google, etc.

[1] https://amp.dev/documentation/guides-and-tutorials/learn/spe...

The Amp javascript can be self-hosted [1] away from Amp's servers, there's even a framework demonstrating how to do it [2].

The only difference is that it doesn't pass Amp validator, which is necessary for the Bing search result icon. Developers have requested the feature for the Amp validator to include self hosting but it hasn't been added yet (or have any plans to AFAIK).

[1] https://gist.github.com/mdmower/b56e94f0dc36beafb825b0c5e31f...

[2] https://github.com/mdmower/amp-self-host-demo

Interesting, though I am citing the AMP spec, and it does say MUST. I'm curious if Google would put a self-hosted AMP page, for example, in their carousel. I think it probably can't.
It's been exactly a year since Google announced they are no longer prioritizing AMP content in the carousel, or as SEO in general, so they probably would put self-hosted AMP there (if it passed the SEO bar):

>Besides algorithm changes, there will be several user-facing changes. For starters, the Top Stories carousel in Search will no longer be limited to AMP content. The Google News website and mobile apps will similarly surface more non-AMP content. Lastly, the AMP lightning bolt icon will no longer be used to badge eligible content:

https://9to5google.com/2021/04/19/google-search-page-experie...

As someone who myself relies on Google's SEO traffic I'm a bit hesitant to say this (but luckily I'm small enough that Google doesn't care about me at all): AMP is terrible for everyone except Google themselves. It's a plain abuse of their quasi monopoly and I support everything that fights AMP.

Another reason why I'm happy to use Brave both on desktop and especially on mobile.

It's easy to slag AMP because it's Google, and privacy-aware people really don't like Google and denounce all their actions without even thinking. But on the other hand: what if AMP is actually a good thing? Like if it speeds up the web and addresses web obesity, why not embrace it?
So what if it saves me a few milliseconds of load time and megabyte or two of RAM? Maybe that has some value a shitty mobile connection, but such marginal gains are not worth conceding even more control of the web to Google. I'd rather websites take 10 minutes to load than have Google MITM my life.
Yes, that's the carrot. Now look for the stick.

>what if AMP is actually a good thing?

People said this when AMP was first announced too.

Good for people with lives comfortable enough to be so off-guard that this didn't set off any alarm bells; but businesses are not your friends.

Thankfully with the benefit of time and hindsight the Texas Attorney General has documented some of the catches for us: https://www.texasattorneygeneral.gov/sites/default/files/ima...

Right on. Hopefully this feature is added to Vivaldi Mobile, too.