193 comments

[ 3.3 ms ] story [ 249 ms ] thread
Kagi is in the “this is fucking awesome” part of a tech company lifecycle.
It really is. I switched to them a while ago and I've used Google maybe 4-5 times since, in over a year.

Never looked back.

Yup. Search results are as good in Kagi as Google used to be 10yrs ago, before it became an SEO-tuned, malware-infested garbage pile. Worth $5/month.
I would pay $1 or $2 a month, not $5.
If the switched to 2$ a month, they might double their customer base.

And still earn less money (not even counting the costs).

So, sadly, it is sometimes smart to be expensive.

People say this, but it's rarely true. Anybody running a subscription service quickly learns that it's not worth bothering with customers who won't pay at least $5 per month. They're the most trouble for the least income.
I highly disagree, google 10 year ago had nsfw content, it had a great long tail. I signed up and found it to have little depth and it skips most of the web. It does a great job of filtering out spam but it equally good at filtering out everything else. Tech related it's great. For shopping not so great. For local not so great. For science, education it's pretty decent. For anything like torrents or coupon sites or sites in other languages it's not the best.
If I load reddit.com on the iOS Orion browser the page is completely unresponsive. Anyone else experience this? Not a great first impression sadly.
Yes. But maybe Reddit is not the best benchmarck due to their user-hostile behaviour anyway (well, maybe it is "best" because of this). The only purpose of mobile website is to make the user to download their app.
This is due to built in content blockers. You can disable them on reddit and it will load fine.
I've been using it for a while as my main browser and it suffers from all of the usual issues that early development stage browsers have: bugs, memory leaks. The bugs are nasty as well, I'm sometimes forced to switch back to Firefox: one example is once there was a build that crashed my browser when I opened a new tab in tree view.

The extension support is in progress as well. UBlock Origin and BitWarden work, but YNAB Toolkit doesn't work too well.

Overall if you are okay with alpha/beta testing a browser it's fine, but if not, stick with Firefox.

I had the same experience. Even if uBlock Origin kind of works, somehow it doesn't block the same number of ads as it does with other browsers, I wonder why. Same uBlock Origin version, same filters enabled, fewer ads blocked on Orion. I used this site for example to test: https://d3ward.github.io/toolz/adblock.html - scores 65% on orion and 99% on other browsers
I'm getting 99% on Orion with their content blockers and uBlock Origin (default lists only).
I get 100% with orion, ublock origin and nextdns combo. It's the only browser along with Firefox where I am able to get 100%.
99% of what? of ads not served? You are mixing ads and tracking and in the end, you can be tracked because you are still unique:

With my heavily, via plug-ins, privacy focused firefox I get 99%.

With https://www.amiunique.org/fingerprint I get:

Yes! You are unique among the 2206539 fingerprints in our entire dataset.

PS: with my vanilla Chrome - I use several browsers, for banking and buying plane tickets I always recommend a vanilla one - I get 47% with many things blocked. Is this thing working correclty? I just checked my hosts file and it is vanilla too. I used to have a large hosts file but this is just inconvenient since it breaks sites. I don't understand why so many things may be blocked in my chrome browser.

PPS: I wanted to give it a try in https://browsershots.org/ Is this site defunct? Whata pity.

> in the end, you can be tracked because you are still unique

Unique isn't a bad thing really. The trick is to regularly be unique in a different way. I'd rather each tab have a unique fingerprint than simply trust that there's nothing about my browser/device that could identify me. There is an ever growing list of data points your browser makes available and a lot of time, money, and research that goes into finding fingerprinting techniques.

I agree it's good to have a locked down browser for most things and other browsers for websites that you can't get working with everything blocked. Brave is worth a try before you hand your browsing history over directly to Google with chrome or to MS with edge.

> Unique isn't a bad thing really. The trick is to regularly be unique in a different way.

This perspective is new to me, and very interesting. If it's intractable to know which parts of the finger could change, the fingerprinting becomes useless.

99% as a score of this reproducible ad blocker test. You can see the individual tests on the site. I'm not saying it's a gold standard or anything, just a tool I happen to use. And you're right, passive tracking is a b.tch :)
I use it as my daily driver every day and I have very few issues with it.

That said I'm a pretty frugal user, I get anxiety if I have more than 15 tabs open, and I shut down every night.

Some websites downright don't work with it, but then you try Safari and it's either the ad blocker or Webkit, rarely Orion itself.

I'm in the camp that likes Webkit rendering the best. I think it's the most appealing font and content rendering out there, even though it feels understaffed/underfunded. I prefer Webkit overall.

Does if have a mobile version or can you sync with a mobile browser of another vendor?

If not then it's not for me at this stage

It does have a mobile version for iOS, which is notable on its own because is supports (some) Chrome and Firefox extensions on mobile. It suffers similar beta-y bugs as the desktop version though. Personally I find it worth it to have uBO on my iPhone.
Yes, there's a mobile app for iOS (on the app store), and iCloud based sync between desktop and mobile.
Orion has actually triggered two kernel panics for me in the past week. It's easy on battery life though, so I've been using it still when I'm on the go.
What is a kernel panic?
A kernel panic is, when your computer presses the panic button and stops to work.
It’s when the kernel (or drivers) run into a bug. Also known as blue screen of death on the windows side.
I never seen that on a Mac though.
Ok. Well, it does happen. Happened a lot more in the past vs now.
They are more rare one current versions of macOS. I’ve been using Mac’s for about 20 years and got them a lot a lot in the early days.
They used to happen all the time with Mac OS 9 and earlier, but I don’t think I’ve ever seen them with OSX/macOS.
I definitely had a corrupted CD-R backup that would kernel panic OS X, Windows 2000, and Linux, circa 2003.

Though, most of my OS X kernel panics were due to a GPU slowly going bad and randomly corrupting memory (both under OS X and Linux, when in a particular graphics mode).

QNX is the only OS that I've pushed hard and never seen a kernel panic. BeOS was nice in that my (userspace) ethernet driver would crash overnight most nights, and I'd wake up to a prompt saying "I'm going to restart the crashed driver? Okay?", but I could reliably kernel panic BeOS with some dodgy semaphore code in userspace.

(comment deleted)
It happens on Mac. It's when you get an infinite spinning beachball. Sometimes called beachball of death, but generally called kernel panic on Unix systems.

Most of the time with Macs it starts happening when you have hardware failure. It happens way more on Windows and Linux because of the much larger range of supported devices and drivers and the varying quality of the drivers for them. Most drivers running in Darwin as made by Apple. It's also the reason Microsoft created a certification program for device drivers for Windows.

Then userland programs triggering kernel panics are good, since they make your kernels more bugfree and secure, aren't they?
They are good when you are stress testing your setup. They are bad if you are just trying to browse the damned website
How often you find kernel bugs that make your setup actually safer while browsing, and while stress testing?
How do you know Orion is causing it? Typically this indicates a kernel bug.
Last time I had kernel panics was because I had hardware issues. I doubt Orion is causing this.
I actually think it has something to do with webkit and the fact that I use Quartz Debug to disable vsync at all times. I'll try to repro, but anecdotally speaking, my M1 MacBook Pro restarted when I was doing something in the Orion browser and spit out the typical kernel panic "Send to Apple" dialog upon reboot.
That is not kernel panic, just an app crash that was caught and handled by OS.
TIL, I actually didn't realize that. I stand corrected.
I'm not very familiar with this space, so perhaps someone could explain this to me. I was under the impression that a kernel panic indicates a problem at the kernel level, not in userland. Is it not the goal of most/all kernels to insulate themselves from userland mistakes?
How is it actually working now? The last time I tried it I felt it was pretty buggy -- but in an ideal world I'd love to switch.
It's essentially Safari with ad blocking built in. Certain website I notice crap out, but it's pretty rare.

I made the switch approx 6 months ago.

Some bugs still. Mostly if I run into a bug, and I try to open the same site in Safari, I experience the same bug.

Occasionally it'll do something stupid and hang completely, but I'd say maybe that happens once or twice a week, not enough to stop me using it (and I live in it most of the day).

Interesting. I’m thinking of giving it another shot. In theory it sounds like the perfect browser for me. The only extension I use is uBlock and BitWarden so I don’t really care much for widespread support of extensions and it sounds like that’s the last really buggy part.
Looks of the browser are pretty great and it has built-in most the features you would need.

Some extensions do not work. E.g. BitWarden autofill does not work either as Chrome or Firefox extension. Some websites get laggy. Sometimes ChatGPT page lags so much that is unusable. Also if you browse GitHub, some views will lag very much, and make it unusable. Maybe some day it will be competitive also in compatibility.

But since it is MacOS only, I always will need to use many browsers...

Are there any plans for Windows and Android releases?
Forgot about Linux
They are currently working on a linux beta/alpha version.
From their docs: “One day, we hope everyone will say Orion is the best browser for all Apple devices.”

So I wouldn’t hold my breath.

From the website:

> 1. Orion is currently available for Apple macOS, iPadOS and iOS. We are planning support for other platforms in the future.

Zilch on timelines though, so don't know how much of a priority it is for them?

Developing a complex product like a browser without telemetry will be hard. Especially if they are trying to commit to objectives like using minimal battery or memory. There are many many different websites so its hard to predict what your users are using the browser for.
I'm glad someone is trying to doing something hard that will benefit people. We need more companies that want to do the hard thing, not the easy profitable thing.
Telemetry would allow them to make their product better for more people and know where to invest to benefit their users more. In this case proitability is proxy for how much value people get from the proxy. The thought that something is bad because it is profitable is misguided.
Is all telemetry good in your eyes?

Telemetry is a cheaper solution to hiring quality assurance. Many will feel sharing their usage details to increase profits is acceptance and others might feel this free product isn't so free anymore.

>Is all telemetry good in your eyes?

No, collecting information on how many times someone types the sequence "abcd" is a waste of resources. Figuring out what telemetry will be useful and understanding the privacy implications is important.

>Telemetry is a cheaper solution to hiring quality assurance.

These are not comparable. Telemetry is about understanding how the product is operating. QA is about testing the product.

From your point of view, does using telemetry have downsides? No concept of misleading info or bad product development direction from using it?
>does using telemetry have downsides?

The main downside is the extra work and cost of getting it all set up, properly cleaning up unneeded telemetry, and making sure telemetry itself doesn't cause performance issues.

>No concept of misleading info or bad product development direction from using it?

Telemetry doesn't replace a strong protect sense, but without telemetry you are flying blind.

Do you work in game development? I've heard similar things before in that area, and it kind of makes sense for that specific use case.
Respecting user privacy begins with browser being zero telemetry. If it is not, it can not claim to be privacy-respecting.
Telemetry can be privacy respecting. For example it may be useful to know the average page load time. The browser could record 100 different page loads and then send the median time.
It almost can not by definition, as every telemetry will include user IP address which is considered PII. Regardless what the stated purpose of that telemetry was, private information will leak and that browser can not be calling itself privacy respecting. Zero telemetry by default is the only way a browser respects user privacy.

If the user opts-in into telemetry then obviously it is user's choice, but usually browsers with telemetry do not make this an opt-in choice.

Every single site you visit will get your IP. That is now the web works. Most sites will be logging your IP.
They very explicitly do not want to know what their users are using the browser for.
Is it ever gonna be possible to support Safari Extensions and Time reporting/blocks via iOS?

I can set time limit for HN if i use an app, or if I use Safari. Switching to Firefox (with the same WebKit backend) means no screen time limits apply.

As far as I know, Orion is the only iOS compatible browser that lets you load extensions from the Chrome store and possibly Firefox as well although I'm not sure about that.
Yes it also supports Firefox extensions. Bypass Paywall Clean is a great one.
By what mechanism is it possible for this to be true when Firefox doesn't even support Firefox extensions?
Orion has a port of the web extensions API (used by Chrome and Firefox extensions) on top of WebKit.
That's super interesting. I wonder why Mozilla didn't bother to do this for their own browser.
Mozilla’s priorities are messed up instead of doubling down on browser they are getting into a lot of half assed side projects.
It’s quite difficult to do and the solution is necessarily limited by the inability to modify WebKit.
Is this a joke I'm not getting? Currently using FF on every device I use, with 3+ extensions.
Parent is probably referring to the saga of extension support in FF for Android (it used to support all extensions until around 2019, then it didn't [0], then it did again but only a small number of extensions [1], they only recently got back to supporting a large number, but not all extensions [2])

[0] https://www.ghacks.net/2021/01/21/firefox-for-android-is-sti...

[1] https://blog.mozilla.org/addons/2022/12/15/new-extensions-av...

[2] https://blog.mozilla.org/addons/2023/08/10/prepare-your-fire...

Ah I see, thanks. I only use Privacy Badger and uBlock Origin on my Android's Firefox, so I never noticed this problem.
On IOS firefox doesn't support any extensions
Seems like plugin support is not fully implemented, I added the 1Password extension, but can’t get the button to work in login forms.
I use it as my daily driver, highly recommended.
(comment deleted)
For me it's been more performant than safari esp on google based sites (google meet)
Since it supports iOS and iPadOS, does it use a fork of WebKit, or is it embedded Safari? What manifest API is it going to support going forward?
https://kagi.com/orion/faq.html

> How will manifest v2 extensions work with Orion after manifest v3 roll out in Chrome?

> Same as before! Orion has its own implementation of the entire web extensions API and different "manifests" are just numbers. We support web extensions APIs regardless of how Google decided to call them or change them. Manifest change impacts mostly Chromium clones, and Orion will support both "manifest v2" and manifest v3" extensions in the future.

--

> Will Orion for iOS also support web extensions?

> Yes, we have preliminary support for some web extensions on iOS.

> Wait, are you sure? No browser on iOS can use Chrome/Firefox extensions!

> Orion makes it possible! We ported hundreds of web extension APIs to run on top of WebKit, which also runs on iOS.

--

See also https://help.kagi.com/orion/privacy-and-security/ad-tracking...

Thanks, not having an iOS device or Mac I didn't check that far into their site. I'm not willing to invest into that ecosystem until Apple allows some freedom.
I'd love to see a browser natively and deeply integrate a 3rd party password manager like bitwarden or 1password, instead of just supporting Keychain.
Interesting! My thought was more that it was just dragging some heavy line kind of keeping things straight and boring. I'll correct.
I think that your usage was actually correct- if I understand correctly, choosing to use Mac's native keychain is kind of "going along with" what Apple prefers- is that the sense of what you were saying? If so then you could definitely say apps "toe the line" when they do this.

It was just the spelling I was pedant-ing about!

macOS has native password autofill which opens the Keychain experience to 3rd party password managers. Unfortunately browser support is limited to Safari (even though the API itself is open), while Strongbox [1] seems to be the only option on password manager side.

Maybe this will improve with the adoption of passkeys, where browsers are actually trying to integrate with the system passkeys API (a neighbor to autofill).

[1]: https://strongboxsafe.com/updates/macos-big-sur-autofill/

I 100% switched from 3rd party password managers to keychain and never looked back. It does everything natively, including 2-factor auth.
As much as I generally love Apple products, I'm good with keeping my passwords in a system not 100% controlled by Apple. Thanks though!
I'm the opposite, while I don't trust any company, there are levels of trust I give. I trust Apple over a 3rd party. I remember when LastPass was touted by everyone as safe and secure...now look what's happened to them several times.

I mean, we'll see people NOW saying "oh, I never trusted LastPass", but that's BS.

Unlike LastPass, Bitwarden has the advantage of being open source and self hostable.
What if you want to use a Windows or Linux machine?
I do all the time, everyday. Is it an automatic paste? No. But then again, I don't want that on other computers.
I've been using Firefox's built-in password manager before moving to Bitwarden, and I don't think Firefox's isn't all that bad.

All passwords are E2EE, and the sync server is open source and you can theoretically self host it.

I recently read about how Bitwarden adds Passkeys to Firefox, and was left sour there is no universal API for it. Bitwarden just overrides it as JS level, and hands it over to the browser if there are no passkeys selected/available.

I imagine Safari + keychain is coupled in a more secure and well-defined way.

I've been using this as a daily driver on iOS for about a month now and it's been great. A few random teething issues but no crashes or real bugs. Supports extensions well.
EDIT: Nevermind, I somehow totally missed the "beta" plastered all over the place.

I just gave Orion a try because of this HackerNews post --- what a buggy mess.

I've already seen three crashes using it, mostly by bookmarking things or deleting old bookmarks.

I'm very grateful that there are good players entering the space (from what I hear Kagi is amazing), but Orion just is not ready to be a daily driver.

Depends on what platform you use - iOS is quite buggy whereas I have close to zero issues on Mac. Turn on compatability mode (left button next to address bar) if a site does not work properly which turns of ad blocker etc.
Open Source would be MUCH better, but I'm seeing you're working on it, will wait till then I guess.
I never understood the delays before open sourcing a product. Unless they are using third party proprietary code, what do they have to work on?
I would guess security passes that they should be doing anyway. If they open source and there are enough sec issues it might kill good will.
Anything proprietary or specific to Kagi needs to be sanitized / made a Plugin. E.g. an error message might say "please contact support at X." It's non-trivial to make all errors generic and pluggable. It's a lot of work to keep the business separate from the OSS part.
Wait for what?
Wait for the browser to become open source I assume, which is supposed to happen sometime in the future.

> Is Orion open-source?

> We’re working on it! We’ve begun with some of our components and intend to open more in the future.

https://kagi.com/orion/faq.html#oss

> Wait for the browser to become open source I assume

Yes, but what then?

I'd contribute to Bookmarks and History features if Orion.app was open source.
Is there an argument to be made for a lighter browser such as this being more secure than Safari or Firefox on macOS?
One neat feature is that it has native ad and tracking blockers, which can be more powerful than ad-blocking extensions.
Not sure what you mean with "lighter", but the reason some browsers feel heavier is the security features that introduce a performance penalty or take up more resources, like jitless mode and process isolation for example. Firefox is not a secure web browser.
Firefox supports process isolation. Why do you not think it’s secure?
No. This is done by a company without a real security team. Compare that to Google, with one of the best security teams in the world.
It’s WebKit-based, so it’s not really particularly lighter.
I use it on an old macbook-pro-2012 (stuck on Catalina and on an old version of Safari). Thank you Kagi for providing a build with a recent version of WebKit. On the iPad I use it just for youtube, sometimes. It is still pretty rough around the edges compared to current Safari.
At this time, this is not for me unfortunately as I use 4 different OSes (Mac/Linux/iOS/Windows) but looking forward to checking it out again down the line.
I am hopeful for its development but it’s not a daily driver for me. Too many bugs, not a large enough team to support it. When I have looked at the support forum the developer is sometimes a little hostile about bugs/issues, enough so that I don’t care to report my own issues. This is a subjective statement your experience may differ.
For me the highest stopper is that it does not really work with Google Meet and it is not clear if it is a Webkit bug or not. Apart from that, I could probably use it as a daily driver.
> that it does not really work with Google Meet

It does sound like a feature, not a bug though...

This. Meet works better with Chrome, so I used to have chrome for Meet only, and Firefox for everything else.
It has become better in the last year or so. I used to have the same setup but currently Meet on FF works without issues for me.
Yes, it's better, but you cannot share a browser tab, only a window or the full desktop.

Edit to add that the suggestion of using Orion for everyday browsing and FF or Chrome/EDge for Google Meet is totally reasonable, but somehow I find quite a lot of friction doing that.

I have chromium on my computer for meet and microsoft teams. The rest I do with firefox.
I’ve so consistently had issues with Google products on Firefox, that I can’t help but feel it’s intentional.

At this point I keep a chromium based browser around as my google apps portal, and nothing else.

Change your user agent so it looks like chrome, life is better then.
My "favourite" feature about Meet is that it takes me through all these self-satisfied feature announcement popups to explain to me how all these different things work. every. single. call.

I use meet as seldom as possible (basically just when a client, partner org etc sets up a call) but it still adds up to at least 2 or 3 a week at minimum. I wasn't interested in those feature popups the first time I'm definitely not interested now after you've been showing them to me 2 or 3 times a week for the last year or so. There doesn't seem any way to make it stop though.

Careful, someone at Google reading this will green light a new version. Google has gone from talk to hangouts to meet and gotten even more proprietary with each iteration. I’m sure there is someone itching to create yet a new name/version that would have new draconian DRM. Heck, they might even try and bring something like ActiveX back if they knew it would make a users experience worse.
Just to add, the main complaint I have had with it is the memory leaks/bloat. For example, I sometimes listen to music via youtube while working and after a couple hours the video player interface will become unresponsive, you click pause and it takes 5 seconds for the video to pause. This problem has been around for over a year, I remember seeing some similar posts on the support forum but it was kind of dismissive. This kind of bug is a deal breaker for me.
This is also a problem with Safari. Leaving websites with a ton of dynamic content leads to the whole browser becoming unresponsive.
Never experienced it with Youtube in Safari but it happens 100% of the time in Orion.
Yeah. What a waste of time for Kagi. Isn’t search hard enough? Wouldn’t that dev time be better spent on their main product?
I agree. I love Kagi search but this seems to have no unique features over other browsers. You are better off using your otherwise favourite browser and changing the default search engine as far as I can tell.
It has many unique features over other browsers. To begin with, it is zero telemetry by default. It is also the fastest browser on Mac as measured by Speedometer. And it supports both Chrome and Firefox extensions, in a WebKit based browser. This should be a good start.
Zero telemetry and fastest aren't unique features (assuming that fastest is not notably true, since every browser seems to be the fastest in some benchmark or another). Supporting both Chrome and Firefox extensions may be, but that seems like a very small niche?
Perhaps, but it is the only browser in the known universe that runs Chrome and Firefox web extensions on iOS, which is on billion devices.

Zero telemetry may not be a unique feature to you, but if you care about having a privacy respecting browser it certainly is. If a browser has telemetry, which almost every other browser has, it is not privacy respecting by definition.

Ok, now that is a unique feature! Bringing that large library of extensions to a pretty locked down platform is definitely a selling point.

> Zero telemetry may not be a unique feature to you

Unique does not mean important. It means hard to find elsewhere. There are lots of browsers that have zero telemetry. Adding another one doesn't stand out. It can be an important feature of a browser but it alone won't bring many people to a new browser when they can get it elsewhere in a more established product.

Fair but there aren’t many really, certainly no mainstream/established ones.
> Unique does not mean important.

Thank you. This seems to have elicited a clarification from the other user, which I appreciate.

> It means hard to find elsewhere.

Well…"not found elsewhere". It's "the only instance within a given set".

You'll sometimes (perhaps increasingly?) encounter "more unique", "most unique", or similar. These usages dilute the meaning of 'unique' and make it more like 'unusal' or 'rare'. People who use 'unique' this way tend to resort to longer phrases to express 'unique'. Perhaps somebody knows a newer word for expressing 'unique'?

(comment deleted)