lurtbancaster

> "Works on Windows 10 or later "

Why?

Firefox hasn't dropped support for Windows 7/8 yet.

If you are somebody using Windows 7/8 etc and want Tor Browser but without Tor, then add the following to your `user.js`

    user_pref("network.proxy.socks_remote_dns", false);
    user_pref("extensions.torlauncher.start_tor", false);
    user_pref("network.dns.disabled", false);
    user_pref("browser.aboutConfig.showWarning", false);
    user_pref("network.proxy.socks", " ");
That should give you all the anti-fingerprinting measures of Tor Browser but without Tor.
brewdad

If a user cares about privacy and security why would they be using an outdated, unsupported OS? That would be like double dead bolting the front door but leaving the window next to it wide open.

lurtbancaster
My point is that if it's just Tor Browser without Tor, then there's functionally no reason to have that build be incompatible with Windows 7.

Unless they deliberately coded it in like

    if OS=Win7/Win8 ; then Crash ; else Run
Which would be a dick move, especially because Firefox, on which Tor Browser and Mullvad Browser are based, still supports Windows 7.

---------

Now to your point.

It is absolutely possible to run Windows 7 reasonably securely.

Well..., depends on your usecase.

But the way in which I keep it secure might be a little cumbersome to some.

My router runs PFSense with Suricata, and I encrypt my DNS traffic.

I run a combination of Peerblock(while no longer maintained, it works splendidly in whitelist mode)[1], and Simplewall Firewall[2].

I run a combination of uMatrix(which again, while no longer maintained, it works great in whitelist mode)[3], and NoScript[4] on my Firefox web browser which I run inside Sandboxie[5].

There are also various services that are insecure and must be turned off - UPnP, Print Spooler, RDP etc.

I run mostly FOSS software. The few proprietary closed source software(Games, Sublime Text) that I do run, I run them in SandBoxie or QEMU.

Here are my reasons for not upgrading:

I've modified my `UXTheme.dll` to significantly change my "Desktop Environment" to suit my workflow, and I've heard from people I know to be credible, that latter Windows versions(8 onwards) break system UI modifications when they update, and they don't work quite as well afterward. My modified Win7 UI is way too important to my workflow.

Python have stopped releasing binaries for Win7 after 3.8.10[6] but I'm okay with it. If I do need the newer Python versions for something, I'll just use my Linux Desktop or run Linux in a virtual machine for a Python quickie.

Windows 7 is extremely stable. While not as stable as Linux, I often have uptimes of over 350 days, before a BSOD, by which point I can foresee a crash coming and reboot.

To lean into your metaphor, Microsoft is now shipping operating systems with "open windows" everywhere(way more open windows than my "insecure" Windows 7 has), and we, as users, are having to rebuild the ISOs they release, to make them more "privacy friendly"(yes I'm aware of the difference between privacy and security but they're really interchangeable here), and even then, we're having to use 3rd party "de-bloaters" and Batch/Powershell scripts off of Github, just so the majority of those proverbial windows are closed back up again. This really shouldn't have to be the case, but it is. Microsoft have decided that they would rather their bread be buttered by advertisers than by the actual users of their software.

With Windows 7, I know there's an open window that I can't shut, but I have an electrified fence surrounding my compound, with security cameras and loaded turrets pointed towards that open window and other open windows in my house. I know where Windows 7's security limitations are, and I can mitigate against that, elsewhere. But I will admit, I don't go around recommending laypeople to use Windows 7 though, as the barrier to securing it is high. Even after securing it, the user has to be careful.

In my humble opinion, Windows 7 was the last true Microsoft Operating System. It simply does what is asked of it, and moves out of the way. All Microsoft need have done was support Powershell, DirectX, give Win7 a "security updates as a service" business model(which I would've gladly paid for), and make WSL for it(Cygwin is excellent but WSL would be nicer). I know there is 0Patch, a 3rd party company who sell security updates for Windows 7, but I would've appreciated official Microsoft security updates. I would switch to Linux, if there was a robust equivalent to Autohotkey on Linux, and the games I want to run, worked on it.

So yeah, I still run Windows 7. I can't see myself ever upgrading to another Microsoft OS, ever again. And I am, and I cannot emphasize this enough, exceedingly happy with it.

[1] https://www.peerblock.com/

[2] https://github.com/henrypp/simplewall

[3] https://github.com/gorhill/uMatrix

[4] https://noscript.net

[5] https://github.com/sandboxie-plus/Sandboxie