Mozilla and Pocket
Starting in version 38.0.5, Firefox includes a built-in integration with the bookmarking service Pocket. Although the Pocket service has been available in Firefox through an extension for several years, the integrated feature sparked an outcry among some users. Critics raised a variety of perceived problems with the feature, but most of the backlash focused on the proprietary nature of the Pocket service or on the perception that the feature resulted from a secret deal between the company and Mozilla—a deal that, presumably, did not take the community's best interests into account.
Recent history teaches that Mozilla should probably expect blowback whenever it adds a Firefox feature that involves cooperation with a closed-source service or company—implementing the W3C Encrypted Media Extension (EME) API or H.264 support, for example. Though blowback should perhaps be expected for every new Firefox feature (see the controversy about signed extensions, for example). In any case, although the past week has seen a rise in public debate about the Pocket feature (with blog posts critical of Mozilla from Benjamin Kerensa and Julien Voisin, among others), the feature itself is more than a month old, which warrants examining it in its historical context.
The Firefox 38.0.5 release landed on June 2. Pocket integration adds a button to the toolbar; clicking on it essentially allows the user to store the URL in a per-user Pocket account, from which it can be looked up and read later. In that sense, Pocket is no different than a traditional bookmark, except that a user's Pocket list is accessible from non-Firefox browsers (unlike bookmarks synchronized with Firefox Sync).
The addition of the feature was mentioned in the release notes and accompanying blog post, but some users seemed to find that degree of communication insufficient. For one thing, the 38.0.5 release is a "point point" release, which is not the normal place one expects to find the introduction of a significant new feature. For another, the feature evidently landed for Firefox 38 without first spending the usual amount of time in the Nightly channel—which, again, is the expected behavior. Many users—including Nightly channel testers—were taken by surprise when the feature appeared.
Questions
The most detailed critique of the feature, though, took place on the Mozilla Governance mailing list. Tucker McKnight filed a bug report about the move, in which he listed several issues. Shortly thereafter, McKnight was told to take the topic to the mailing list instead—which he did, there reiterating his concerns. McKnight focused on implementation details, starting with the fact that the Pocket integration is not implemented as a Firefox extension, but as native code. This, he said, raises three concerns:
- Extensions can be removed entirely, but Pocket support can only be disabled.
- Pocket support can only be disabled through the
about:config page, which is not user friendly, "
and therefore not in line with Mozilla's mission. In the past, Mozilla has been very good about showing the user what new features have been added to the interface and explaining any privacy implications that may come with them.
" - Pocket support uses the user's existing Firefox Account to sign in to the
Pocket web site. "
It may also not be clear to some users that, even when signing in with your Firefox account, you are still giving your email address to a third party whose privacy policy is different than Mozilla's.
"
Adam Porter replied, raising the lack-of-public-discussion issue, and also pointed out that the move gives favored status to a proprietary service at the expense of similar free-software projects (like wallabag). A more appropriate approach, he said, would have been to define a "save for later" API that Pocket and other projects could hook into.
The ensuing back-and-forth was, at times, overly heated—in ways that will sound familiar to those experienced in Internet discourse. A number of community members chimed in just to express outrage and announce that they were switching to Chrome, and some Mozilla employees lashed out at the critics to accuse them of being uninformed.
If one takes away the emotion, though, a few key points remain.
Some critics objected
to the Pocket feature because Mozilla has historically resisted
adding functionality to the core Firefox code that could easily be
implemented in extensions (ad blocking, for example). That philosophy
was one of the original justifications for decoupling Firefox from
the Netscape suite, so changing it now seems like a policy shift.
Similarly, others pointed
out that "back in the day, Mozilla implemented Mozilla Weave
(now Firefox Sync) exactly because existing alternatives were
proprietary.
" Thus, partnering with a proprietary vendor is an
about-face, one that is particularly noticeable given that Mozilla dropped
its Pocket-like
"Reading
List" feature at the same time.
Finally, a few critics raised specific objections to the privacy policy and terms of service (TOS) for Pocket. At the very least, the language of both documents is written to apply to an installable software project (as the Pocket extension was), while the new Pocket-integration feature is implemented as a set of web API calls. Those API calls use a pocket namespace, which adds some additional fuel to the argument that the feature favors one vendor to the exclusion of all others.
Most critics seemed to feel that Pocket, as a commercial entity, should not be implicitly trusted with user data, and many worried that the privacy policy allows Pocket to change its mind and begin commercializing the submitted data—leaving little recourse to users. Others raised concerns about the US-centric language in the policies and about prohibitions on using the service commercially or with objectionable (to some) links.
Answers
For its part, Mozilla representatives have provided responses to most of the core criticisms. Gijs Kruitbosch, a Mozilla engineer who worked on Pocket feature, answered both the lack-of-discussion and "playing favorites" criticisms. The feature landed late in the development cycle, he said, so the API and preference names were written specific to Pocket for the sake of speed—but the plan is to generalize them in future releases. Furthermore, Mozilla is using the Pocket implementation to gather usage data that will lead to a more open API once the use patterns and requirements are better understood. Mozilla's Mike Connor added that the same approach was taken for the first versions of search-engine integration and Firefox's Social API.
As to the concern that Pocket is a closed-source service, Mozilla's Gervase Markham replied
Mozilla has partnered with closed-back-end services in the past
without raising ire—most notably "the bundled search engines, safe browsing
and (until recently) our location service
". He did, however, agree
that the UI's perceived ambiguity about the fact that user data is being sent to a third party is a
valid complaint.
Ultimately, though, Mozilla could not provide easy answers to every question—in particular, to the privacy and TOS concerns. Dan Stillman called the comparison to search-engine integration invalid, given that Firefox already had a bookmark-sync feature that did offer privacy safeguards:
Connor noted
that Mozilla's bookmark-saving web service, Firefox Sync, was designed with strong cryptography
and strong privacy protections in mind, and that it failed to catch
on. "The vast majority of users didn't understand
or care about the added security. It was more of a liability than an asset.
Firefox Accounts make a different tradeoff as a result, and it's
unsurprisingly more popular (and _useful_) as a result.
"
Meanwhile, he said, Pocket has already proven itself
popular—both as a browser
extension and on other platforms (such as e-readers and mobile OSes
without Firefox).
On June 10, Markham volunteered to get clarification on the Pocket TOS and privacy policy as they apply to the Firefox-integration feature. On July 14, Urmika Devi from the Mozilla legal team joined the discussion and gave a blanket answer to the policy questions:
It remains to be seen how Devi's response (which also addressed some of the specific, recurring concerns) will be interpreted, but the legal team has agreed to follow up on any additional questions.
Nevertheless, there remain other unanswered questions, too. For
example, Stillman, McKnight, and several others requested more
information (and even a
timeline) about when and how the "save for later" feature now
used only by Pocket would
be opened up to additional participants, as Kruitbosch suggested it
would. Others have asked whether or not the Pocket deal provides
revenue to Mozilla. There has not yet been a reply on either point.
Whatever else Mozilla may have in mind for the feature, this
debate indicates that one
thing it certainly needs is improved clarity and communication with
the community.
Posted Jul 16, 2015 1:05 UTC (Thu)
by liam (guest, #84133)
[Link] (2 responses)
Posted Jul 16, 2015 3:25 UTC (Thu)
by Fowl (subscriber, #65667)
[Link] (1 responses)
Posted Jul 23, 2015 19:02 UTC (Thu)
by ssokolow (guest, #94568)
[Link]
Posted Jul 16, 2015 3:30 UTC (Thu)
by Fowl (subscriber, #65667)
[Link] (6 responses)
I think the key take away here is that if you make a big deal about operating in the open, don't stop. I look forward to a recap later on when more issues have been resolved.
Posted Jul 16, 2015 5:40 UTC (Thu)
by bronson (subscriber, #4806)
[Link] (5 responses)
It's a baffling move by the Firefox team. Maybe their core values are shifting?
Posted Jul 16, 2015 8:15 UTC (Thu)
by ovitters (guest, #27950)
[Link] (4 responses)
Posted Jul 16, 2015 9:33 UTC (Thu)
by roc (subscriber, #30627)
[Link] (3 responses)
Posted Jul 16, 2015 16:37 UTC (Thu)
by ewan (guest, #5533)
[Link] (2 responses)
To take your examples, if someone simply doesn't like change, the answer is the benefits that come with the change, if someone thinks you should die in a ditch for their single issue, the answer is that you don't want to die, and have other things you have to care about. But when you're going to set up a system like releasing features to test in nightly builds before rolling them out to production releases, and then you ignore it, it's clearly reasonable for people to ask why, and it shouldn't be a difficult question.
Posted Jul 23, 2015 10:50 UTC (Thu)
by Wol (subscriber, #4433)
[Link] (1 responses)
Unfortunately, if the questioner doesn't like the answer, the discourse often becomes unreasonable. That's an unfortunate fact of life - in ALL walks thereof.
That is the problem, and that is what the grandparent was alluding to. And just because you might be reasonable when some software developer says to you "sorry, I don't agree, I don't have time to talk about it", doesn't mean everybody else is (and no, he is not lying when he says he doesn't have time, he needs to work, and sleep, and have a private life, and can't afford 36 hours a day just to discuss with J Random Punter who doesn't contribute to his paycheck).
Cheers,
Posted Jul 23, 2015 17:12 UTC (Thu)
by ksandstr (guest, #60862)
[Link]
They won't answer because they don't know. They won't engage in an attempt to find out because proper answers would make Mozilla look bad -- which to adults is only a consequence of fucking up, itself following from inevitable imperfection. They'd rather non-answer to a choir of their faithful and be assured of a supportive, cheering, back-patting, "we're convinced that you did your best" response. From what's been reported of Mozilla and its innards, I'd go as far as to suggest that they're unable to think in ways that'd even remotely contradict Mozilla consensus and thus erode Mozilla's Open Source halo.
They could answer by simply following the steps that username `ewan' outlined in the grandparent comment. Instead they have excuses. Unfortunately this is not in any way equivalent to not having fucked up at all, to having made the mistake and then learned from it so as to not make it again, or even to saying that what was done wasn't a mistake at all: rather, it's at most a glib apology for having been caught.
Posted Jul 16, 2015 10:45 UTC (Thu)
by dps (guest, #5725)
[Link] (2 responses)
This presumably means pocket won't actually work but will mozilla attempt to use it anyway? I personally don't consider my email address to be private because there are already too many places that know at least one of them. This does not mean I intend to distribute this information to spammers or some other people that may wish to identify me. Let it be sufficient to say that I want some people to be charged with fraud but can't do that myself.
Posted Jul 18, 2015 20:35 UTC (Sat)
by KaiRo (subscriber, #1987)
[Link] (1 responses)
Otherwise, nothing is sent to them (you can verify that by reading the code, of course).
Posted Jul 23, 2015 7:09 UTC (Thu)
by sitaram (guest, #5959)
[Link]
I started looking for alternatives when this news first hit the wires. At the moment, Qupzilla looks decent enough to be a winner. There are a lot of vimperator/pentadactyl features I will miss, but there's nothing in core firefox that appears to be missing, for my (probably somewhat limited) needs.
If push comes to shove and it really misbehaves, there's always GNU icecat. Hopefully those guys won't hold with these shenanigans, even if it takes them some time to get there.
I won't use Chromium anyway; it's too closely tied to another proprietary product, and we all saw what that results in, recently.
Posted Jul 23, 2015 19:06 UTC (Thu)
by ssokolow (guest, #94568)
[Link]
I believe our admin is also investigating pushing updates to the admin-deployed Firefox installs which set the about:config keys for Pocket API URLs to empty strings.
Posted Jul 26, 2015 19:20 UTC (Sun)
by Lorenzo (guest, #260)
[Link]
Whether there is anything there or not, I haven't a clue. However, it does smell fishy to me.
Mozilla and Pocket
Why was that feature disabled?
Mozilla and Pocket
Mozilla and Pocket
Mozilla and Pocket
Mozilla and Pocket
Mozilla and Pocket
Mozilla and Pocket
Mozilla and Pocket
Mozilla and Pocket
Wol
Mozilla and Pocket
Mozilla and Pocket
Mozilla and Pocket
And the right way to fully disable the functionality is to right-click the button and remove it from the toolbar from there. The about:config option disables it incompletely.
Mozilla and Pocket
Mozilla and Pocket
Mozilla and Pocket