Firefox uses on-device downloaded-on-demand ML models for privacy-preserving translation.
-
@davidgerard @mdavis@mastodon.social @firefoxwebdevs “but wait just let me explain the AI kill switch”, Mozilla continues to insist, as they slowly expand and transform into an SBF
@zzt @davidgerard @firefoxwebdevs What Mozilla needs now is an "AI kill switch" that can actually kill.
-
@zzt @davidgerard @firefoxwebdevs Mozilla spent 25 years being unable to get the "don't use tabs" preference to work and I'm supposed to believe their "turn off AI" preference will work?
@jwz @zzt @davidgerard @firefoxwebdevs Isn't it Open Source?
-
@zzt @davidgerard @firefoxwebdevs What Mozilla needs now is an "AI kill switch" that can actually kill.
@jwz @zzt @firefoxwebdevs we added an extension to send 440 volts through the other guy's chair
1M+ installs first week, 0 users remaining second week
-
@jwz @zzt @davidgerard @firefoxwebdevs Isn't it Open Source?
@dejantesicnaarm *plonk*
-
@davidgerard @RAOF If your core belief is that Mozilla is failing to serve at the benefit of its members, then what are you even doing on this thread? You just hoping to harass the Dev account until they block you out of spite?
What evidence could any of us provide that would change your mind and cause you to become a Mozilla booster instead?
-
@firefoxwebdevs What do you mean "open data"? https://firefox-source-docs.mozilla.org/toolkit/components/translations/resources/01_overview.html points to https://browser.mt/ points to https://paracrawl.eu/index.php which says "We do not own any of the text from which these data has been extracted."
@twifkak @firefoxwebdevs +1, the definition of “open data” is extremely important.
It’s only okay if it was *consensually* trained.
-
Firefox uses on-device downloaded-on-demand ML models for privacy-preserving translation.
They're not LLMs. They're trained on open data.
Should translation be disabled if the AI 'kill switch' is active?
@firefoxwebdevs I want Firefox to be a great web browser. You'll notice that I didn't say LLM, ML, AI or anything like that. I don't want that stuff. I just want FF to be a good web browser without being infected by AI. Why is that difficult to understand?
-
@chillicampari @firefoxwebdevs @joepie91
️ But that alone won’t be enough to rebuild trust; I’d like to suggest something that would help with that, but unfortunately that’s far outside my wheelhouse
️@ShadSterling @chillicampari @firefoxwebdevs @joepie91 Rebuilding trust is exactly that - you can't restore or reset trust, you have to build it again, over time and multiple instances, just as you did the first time. Unlike your past self, you've already shown that you will violate trust, so it will take more time and more instances.
Anything less doesn't result in actual trust.
I agree that "AI" isn't going to work as a term to build trust.
-
@cassidy @firefoxwebdevs this is because it's an AI marketing lie. "ha, you say you hate slop, so does that mean you hate *xrays* now? Checkmate, AI hater!"
@davidgerard @cassidy @firefoxwebdevs Even the goalposts are slop now.
-
@firefoxwebdevs "Without the user's request" is quite ambiguous, though. I'm reminded here of Google, which put the AI tab before the Web/All tab, displacing it so that people would unintentionally hit the AI button and "request" it. It's a small and plausibly-deniable change that nevertheless violates the user's boundaries, and difficult to call out and stop even internally within a company or team. I've seen many companies and software do the same thing.
A genuine opt-in would, in my opinion, look something like a single "hey do you want such-and-such features? these are the implications" question, presented in a non-misleading way, and if that is not answered affirmatively then the various UI elements for "AI" features should not even appear in the UI unless the user goes and changes this setting. It's much harder for that to get modified in questionable ways down the line, and reduces the 'opportunities for misclick' to a single one instead of "every time someone wants to click a button". It also means users aren't constantly pestered with whatever that week's new "AI" thing is if they've shown no interest.
Such a dialog could still specify something like "if you choose Yes, Firefox will still only download models once you try to use a feature", to make it clear to users that it's not an all-or-nothing, and they can still pick-and-choose after selecting 'Yes'.
@joepie91 @firefoxwebdevs Mozilla's tortured definition of opt-in seems to predict that Mozilla will invent features to nag you into enabling AI, as they have already done with Link Previews: https://www.quippd.com/writing/2026/01/06/architecting-consent-for-ai-deceptive-patterns-in-firefox-link-previews.html
-
@jwz @zzt @firefoxwebdevs we added an extension to send 440 volts through the other guy's chair
1M+ installs first week, 0 users remaining second week
@davidgerard @jwz @zzt @firefoxwebdevs
Finally, someone is getting rich and/or famous by stabbing people over the internet. -
@joepie91 @firefoxwebdevs Mozilla's tortured definition of opt-in seems to predict that Mozilla will invent features to nag you into enabling AI, as they have already done with Link Previews: https://www.quippd.com/writing/2026/01/06/architecting-consent-for-ai-deceptive-patterns-in-firefox-link-previews.html
-
"Meanwhile, Red Hat is quietly undermining any legal basis for copyleft and leaning into the idea that gratis products (Fedora) shouldn't have robust & transparent system update tools."
it's a bit off topic, but would you mind elaborating more about the system update tools? i'm out of the loop on that, and it sounds concerning
@memoria The quick version: Fedora doesn't sign their repository metadata while everyone else (incl. sister RHEL) does. There was an outcry, and their response was to invent a new scheme that requests hashes of the metadata from a special server (not local mirror) for each update session over https.
-
@firefoxwebdevs @zzt You ignored the firefox userbase's voice when it came to adding AI in the first place, don't pretend you're listening now when you're really just trying to get the users to come up with justifications for what you have already decided to do. Firefox users have repeatedly said we do not want AI features imstalled by default, you chose not to listen and now you're trying to find ways you can feel less bad about that by pretending you gave people options when it comes to AI usage, rather than taking one away.
If you cared about what 'the community' wants, you would have asked people when the AI notion was first pitched and taken no for an answer, but yet again, AI enthusiasts have acted without consent.
@Rycochet @firefoxwebdevs @zzt I did not follow all what happened around Firefox and the community. Did Mozilla made a public consultation regarding AI integration in Firefox ?
Do we have some reliable datas about the opinion of the Firefox's users ?I would be interested to know if the critical views (that I mostly share) expressed here are largely shared or not.
-
@memoria The quick version: Fedora doesn't sign their repository metadata while everyone else (incl. sister RHEL) does. There was an outcry, and their response was to invent a new scheme that requests hashes of the metadata from a special server (not local mirror) for each update session over https.
What the heck are you talking about? That is not even close to true. Firstly, Red Hat Enterprise Linux doesn't have signed repository metadata. There, they have a special scheme involving pinned TLS certs generated by subscription-manager.
Fedora doesn't have signed repository metadata because the tooling doesn't support it. That's it. There have been requests to do it, but the signing infra is old and needs revamping (which is in progress for other reasons).
-
@xela @firefoxwebdevs For on-device, the power usage is on the end-user, and the text in the viewport range is translated. It's heavy CPU work that is quickly finished. So you get short bursts of heavy CPU usage while actively interacting with a translated page. All the page content is private and stays on your machine.
@gregtatum many thanks for the insights. Very helpful.
@firefoxwebdevs -
What the heck are you talking about? That is not even close to true. Firstly, Red Hat Enterprise Linux doesn't have signed repository metadata. There, they have a special scheme involving pinned TLS certs generated by subscription-manager.
Fedora doesn't have signed repository metadata because the tooling doesn't support it. That's it. There have been requests to do it, but the signing infra is old and needs revamping (which is in progress for other reasons).
The Metalink system is a public standard! There's an IETF RFC for it even! The MirrorManager system is an implementation of that specification and it is used to offer secure and trustworthy mirror redirection.
Fedora's system was created by a community contributor 20 years ago. Red Hat wasn't even involved.
-
What the heck are you talking about? That is not even close to true. Firstly, Red Hat Enterprise Linux doesn't have signed repository metadata. There, they have a special scheme involving pinned TLS certs generated by subscription-manager.
Fedora doesn't have signed repository metadata because the tooling doesn't support it. That's it. There have been requests to do it, but the signing infra is old and needs revamping (which is in progress for other reasons).
@neal @memoria "Firstly, Red Hat Enterprise Linux doesn't have signed repository metadata"
OK, well they changed it after many years of signing (and Fedora having no metadata protection at all).
"they have a special scheme involving pinned TLS certs generated by subscription-manager."
Interesting.... subscription control.
"Fedora doesn't have signed repository metadata because the tooling doesn't support it. That's it."
Very special. Gold star! I won't inquire about their motivations any further while their parent eviscerates the GPL.
-
The Metalink system is a public standard! There's an IETF RFC for it even! The MirrorManager system is an implementation of that specification and it is used to offer secure and trustworthy mirror redirection.
Fedora's system was created by a community contributor 20 years ago. Red Hat wasn't even involved.
Signed repository metadata isn't the norm in the Red Hat family. It exists in CentOS because of community efforts (that admittedly I was involved in), and basically nowhere else.
I would like that to change, but saying that Red Hat is secretly undermining the world because of this is somewhere between laughable and insane.
Someday, we'll get there. Conspiracy theories are not required to fix it, though.
-
The Firefox AI "kill switch" is not "complicated" except insofar as it's incoherent. it's not "undisclosed nuance" except insofar as it's incoherent.
the "kill switch" doesn't exist.
this is important to keep in mind. once you remember that NONE OF THIS EXISTS, you will realise that every one of the dilemmas you posit is an imaginary problem that follows from incoherent postulates.
e.g. "AI kill switch purists" is not a coherent postulation because the "kill switch" does not exist.
the "kill switch" is a hypothetical proposed in this post:
https://mastodon.social/@firefoxwebdevs/115740500373677782
the "kill switch" is a proposal to satisfy the demand for an opt-in by providing an opt-out. you might think that's a failure to respect the question, and you might even begin to suspect the proposal was in bad faith.
note that Jake, in presenting the kill switch and calling it a kill switch and getting it into all the papers as a kill switch, says he's uncomfortable with the name he's publicised it as. you might think that's oddly incompetent for literally a PR (devrel) person.
the concept as presented imposes multiple false dilemmas.
the LLM stuff should *incredibly obviously* be an extension. this is the purest possible opt-in, despite jake's past attempts to muddy the meaning of "opt-in".
making it an extension is also eminently feasible. There is literally no technical reason it needs to be a browser built-in.
this suggests the reasons are not in any way technical. some person with a name, who has yet to be named, dictated that it would be a built-in. so that's what Mozilla is going with.
why Mozilla went hard AI is entirely unclear. this would have been late 2024? we have no idea who was inspired with this bad idea nor why they were so incredibly keen to force it into the browser.
nor is it clear what Mozilla will do for external LLM services when the AI bubble runs out of venture capital and pops in a year or so, most of the chatbot APIs shut down and whatever remains is 10x the cost at least. but that's a problem for 2027's bonus, not 2026's.
note how the poll provides no option for "no LLM functions built-in to Firefox", in a pathetically transparent attempt to synthesize consent. jake wants to use this poll as evidence of what the user base wants, deliberately leaving out the option he knows directly a lot of them want.
and in conclusion:
1. solve the "kill switch" naming problem by branding it the "brutal and bloody robot murder switch with an option on the executives responsible".
2. make all this shit an extension like they should have a year ago.
3. and your little translator too.@davidgerard @mdavis @firefoxwebdevs where did I say I'm uncomfortable with the name "kill switch"?
