Jump to content

Search the Community

Showing results for tags 'Firefox'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


  • Site Related
    • News & Updates
    • Site / Forum Feedback
    • Member Introduction
  • News
    • General News
    • FileSharing News
    • Mobile News
    • Software News
    • Security & Privacy News
    • Technology News
  • Downloads
    • nsane.down
  • General Discussions & Support
    • Filesharing Chat
    • Security & Privacy Center
    • Software Chat
    • Mobile Mania
    • Technology Talk
    • Entertainment Exchange
    • Guides & Tutorials
  • Off-Topic Chat
    • The Chat Bar
    • Jokes & Funny Stuff
    • Polling Station


  • Drivers
  • Filesharing
    • BitTorrent
    • eDonkey & Direct Connect (DC)
    • NewsReaders (Usenet)
    • Other P2P Clients & Tools
  • Internet
    • Download Managers & FTP Clients
    • Messengers
    • Web Browsers
    • Other Internet Tools
  • Multimedia
    • Codecs & Converters
    • Image Viewers & Editors
    • Media Players
    • Other Multimedia Software
  • Security
    • Anti-Malware
    • Firewalls
    • Other Security Tools
  • System
    • Benchmarking & System Info
    • Customization
    • Defrag Tools
    • Disc & Registry Cleaners
    • Management Suites
    • Other System Tools
  • Other Apps
    • Burning & Imaging
    • Document Viewers & Editors
    • File Managers & Archivers
    • Miscellaneous Applications
  • Linux Distributions


  • General News
  • File Sharing News
  • Mobile News
  • Software News
  • Security & Privacy News
  • Technology News

Find results in...

Find results that contain...

Date Created

  • Start


Last Updated

  • Start


Filter by number of...

  1. By Casey Johnston - Jan 28 2014, 7:00am AUSEST Updates turned some Chrome add-ons maliciousnot all browsers allow that. Customers complain about activity tracking in CRXMouse on Chrome, a particularly invasive add-on. In a recent revelation by OMG Chrome and the developer of the Chrome extension Add to Feedly, it came to light that Chrome extensions are capable of changing service or ownership under a users nose without much notification. In the case of Add to Feedly, a buyout meant thousands of users were suddenly subjected to injected adware and redirected links. Chromes regulations for existing extensions are set to change in June 2014. The changes should prevent extensions from being anything but simple and single-purpose in nature, with a single visible UI surface in Chrome and a single browser action or page action button, like the extensions made by Pinterest or OneTab. This has always been the policy, per a post to the Chromium blog back in December. But going forward, it will be enforced for all new extensions immediately and for all existing extensions retroactively beginning in June. Given how Chromes system of updates, design restrictions, and ownership seemed to have gotten ahead of itself, we decided to take a look at the policies of other browsers to see if their extensions could be subjected to a similar fate. While Chrome isnt the only browser where an Add To Feedly tale could be spun, it seems to be the most likely place for such an outcome. Firefox Mozillas Firefox differs from Chrome in that it has an involved review system for all extensions that go from developers to the front-end store. Reviewers will reject an extension if it violates any of the rules in Firefoxs extension development documents. One of these rules is no surprisesan add-on cant do anything it doesnt disclose to users, and existing add-ons cant change their functionality without notifying the user and getting their permission. Firefox puts add-ons with unexpected features, like advertising that supports the add-on financially, into a separate category. Users have to explicitly opt-in to these features, says Jonathan Nightingale, vice president of Firefox. This means that in these cases, users will see a screen offering them the additional features, says Nightingale. One example is FastestFox, which pops a tab at first install asking the user to enable ad injection from Superfish. It's how developers implement these opt-in screens that could provide for a possible loophole; the addition of advertising might be obscurable by language, and data tracking could be, too (it's permitted under Firefoxs rules, but it must be disclosed in a privacy policy). Still, the review policy and need for opt-in for these more pernicious features both help prevent users from having new functionality sprung on them. Safari Safari has extensive design documents for its extensions but no central clearinghouse for them like other browsers. Apple keeps a gallery of a chosen few extensions that must meet certain regulations, but these represent a small fraction of the extensions available. Data tracking of an extensions users is possible, per the design docs, as is ad manipulation. Unlike Chrome, but like Firefox, the download and installation of Safari extension updates must be manually approved by the user. There are no regulations for disclosing functionality changes or changes of ownership, however. Internet Explorer Microsofts browser absolves itself of responsibility for add-ons on a support page where it states, "While add-ons can make your browsing experience better by giving you access to great Web content, some add-ons can pose security, privacy, or performance risks. Make sure any add-ons you install are from a trusted source." Add on at your own risk. Like Apple, Microsoft maintains an exclusive gallery of vetted add-ons. The company encourages extension makers to get user consent for unexpected add-on functionality, but it doesnt require it or block extensions that dont do it. Markup-based extensions can only be installed from within the browser, and therefore these must have the users explicit consent according to Microsoft. Other than this infrastructure, nothing prevents IE add-ons from doing things like injecting ads or redirecting a browsing experience (remember, this was the former home of the invasive toolbar add-on). IE10 does have an add-on management window, but some add-ons, like the ad-injecting Buzzdcock, have to be removed as if they are full-fledged applications. Uninstalling a particularly invasive IE add-on. Opera The latest versions of Opera are able to use Chromium extensions, but unlike Chrome ones, they get a review process thats similar to Firefoxs. Most importantly in Opera, there are restrictions on the types of scripts an extension can run and how they handle ads. Andreas Bovens, head of developer relations at Opera Software, told Ars in an e-mail that Opera doesnt allow extensions that include ads or tracking in content scripts, so extensions that, for example, inject ads inside webpages the user visits are not allowed. Extensions can, however, have ads in their options pages or in the pop-up that is triggered by their button in the browsers interface. Every extension gets a review, and the review team takes special care to suss out the nature of any obfuscated JavaScript code. If some of the code is obfuscated, reviewers ask the developers for the unobfuscated code to look at as well as a link to the obfuscation tool. That way we can check that the input and output indeed match, Bovens says. When an extensions ownership is transferred or the extension is updated, its subject to the same rigorous review process as an extension thats being submitted for the first time, according to Bovens. An extension that goes from having no ads to injecting ads, as some Chrome extensions do, simply would not pass [Operas] review process, Bovens says. Retiring to the not-so-Wild West? While Chrome extensions may have a better ideology than those of some other browsers, the breadth and depth of functionality that Chrome extensions can have without any kind of review process means that Chrome users trust can get taken for granted. Its similar to the Google Play app store, in that way: pretty much anything can make it to the market, but enough user complaints can get it taken down, as in the case of Add to Feedly and Tweet This Page. Based on policy and practice, users who heavily rely on extensions or have been made wary of them by developers recent transgressions may be safer on browsers like Firefox and Opera, where regulations are a bit stricter and there are people to police them. But there can be downsides to a vetting process, too, mainly in terms of rate-limiting iteration and improvements, so its a matter of weighing options. Former home? This is the current home for an awful lot of crapware add-ons, like Conduit's search hijacker, or the Ask.com toolbar that still hasn't died a thousand deaths, even though it should. http://arstechnica.com/business/2014/01/seeking-higher-ground-after-chrome-extension-adwaremalware-problems
  2. hitminion


    Your Firefox/Skype/Chrome/Thunderbird is working slowly? Boost them all in a single click with SpeedyFox absolutely for free! You get: - Boost Startup in up to 3 times! - Speed-up browsing history - Overall quicker operation - Smaller profile size Version history: 2.0.4 - SQLite engine updated to 3.7.17 version 2.0.3 - Added Epic Browser support. SQLite engine updated to 3.7.14 version 2.0.2 - Fixed incorrect drawing of profiles tree with Windows themes turned off 2.0.1 - SRWare Iron and Pale Moon browsers support 2.0 - New awesome user interface; support Skype, Chrome, Mozilla Thunderbird profiles; custom profiles: drag & drop support; remember custom profiles, detailed optimization log, latest SQLITE engine 3.7.11 1.6 - Added option to run Firefox after optimization (also when running using command line). SQLite engine is updated to 3.7.4 version. 1.5 - SpeedyFox for Mac! Latest SQLite engine (3.7.3) support 1.4.3 - Latest SQLite engine (3.7.1) support 1.4.2 - Unicode profile/path names support 1.4.1 - Windows 2000 support, main icon display is fixed, small bug fixes 1.4 - Command line support, see menu Help->Command line syntax for details 1.3 - Better optimization (all databases), fixed issue of detecting if Firefox is running 1.2 - Ability to select custom Firefox profiles 1.1 - Portable and 5 times smaller executable 1.0 - Initial release
  3. sujith

    Firefox Problems

    I recently updated to version 25. I installed an addon successfully and restarted firefox. problem is that when i click on "options" of that addon,firefox freezes. I tried many other addons and was having the same problem. also firefox is showing its default theme to be outdated. :wtf: . Please help!
  4. Firefox Metro Mozilla is finally getting close to releasing a Metro version of its Firefox browser that will run on Windows RT as well as the tablet-side of Windows 8. The touch flavor of the app will arrive on December 10 along with Firefox 26. Firefox 23 was released on August 6. Firefox 24 is slated for a September release and Firefox 25, which will come with a major design overhaul, is expected in October. As first noted by Computerworld, Mozilla’s planning documents show the first Metro release still has to go through the following steps: Merge to Aurora 26 on September 16, 2013 during Iteration #15.Iterations #15 and #16 will be completed on mozilla-aurora, concluding all Preview Release work.Iteration #17, still on Aurora, will be used to clean up any remaining carry-over and polish work.Merge to Beta at the conclusion of Iteration #17 on October 28, 2013, making Metro Firefox available to our Beta audience.Push to Release on December 10 with Firefox 26 at the conclusion of Iteration #20.Mozilla first noted a Metro version of Firefox was coming back in February 2012 and then revealed a prototype in April 2012. The company then showed off a pre-release of Firefox for Windows 8 in October 2012 and offered a Nightly build in February 2013. Since Nightly builds graduate to Firefox’s Aurora channel after six weeks or so, we calculated at the time that the Metro version would go through the beta and release channels by May or June. We noted the process could take longer if testing pushed things back, and clearly that’s what happened. It’s frankly ridiculous that Firefox Metro will be available more than a year after Windows 8 is ready, and even after Windows 8.1 is out. That’s assuming, of course, that there won’t be more delays. Given what we’ve seen so far, we wouldn’t be surprised to see a final Metro version arrive in 2014. :view: Source: The Next Web
  5. Olexijl

    Mozilla Firefox Australis

    Hello, I personally find Australis awful. Maybe i am a little bit too conservative in this case but Australis is based on simplification which is not always as advantage to see. I have many addons which are placed in addon-bar, which is lost. You find yourself in the UI, where addons are in the same place as navigation icons. Is it useful? Is it useful to change the Menu and move it to the place Bookmarks-Icon belong? And this one is lost as well. Rounded tabs are not bad idea - they should have made it w/o changing too much. Any thoughts? Download UX: http://ftp.mozilla.org/pub/mozilla.org/firefox/nightly/latest-ux/firefox-26.0a1.en-US.win32.installer.exe
  6. calguyhunk

    Greasemonkey 1.11

    Greased LightboxLinkify PlusTinyURL DecoderGoogleMonkeyRFacebook Ad RemoverDownload YouTube Videos as MP4NoDelayVideoEmbedProfanity Filter
  7. smallhagrid

    They're just BOXES, dammit !

    This posting is motivated by another I saw about the Firefox UI soon changing radically. I am sure to wander in a few different directions in my tirade here - but at it's heart that is what it is about. Seriously. I am really not kidding here. I know this may be hard to follow=> my apologies for that. OK, here I go now: My monitor is a box-shaped thing; TVs are also box-shaped; where I live the walls are box-shaped too. So - this square screen that I'm using right now is not very big, and from what I can tell squarish things fit best on a square screen, usually, right ?? (With me so far here ?!?) So here's another thing=> we have bodies that are usually NOT square (at least most of us ??), and most of nature also avoids squareness too...so we tend to REALLY LIKE rounded stuff - OK, I get that, no trouble here, it makes perfect sense. BUT: Until the day when my screen is either like 6 x 9 FEET square and is a thing that is like part of the wall, OR until it is big like that and also round=> I expect for stuff inside programs to be kind of SQUARISH and that's OK with me. It's just plain sensible & normal, I think. SO WHAT'S THE DEAL WITH FOLKS MAKING ALL THIS KRAPPY LOBOTOMIZED ROUNDED STUFF IN PROGRAMS LATELY ?!? BIG, rounded folder tabs, 'pearls' instead of menus, 'ribbons', and all sorts of other visual (non-verbal) stuff that just numbs the brain. OK, so I'm an old fart who really does PREFER the plain, boring, un-stimulating classic windows style. (It's squarish and that's as it should be.) So what will I do with the latest Firefox V 258.3456789 ?!? I will give it the 3 for 4 theme when that is possible - to make it plain and squarish, and install add-ons that add functionality while keeping it as boring as possible to look at. It's like this IMO: I don't want my browser to compete for my attention - it's just a thing used for showing other stuff. And=> It's the same IMO regarding the OS that I use; I want it to shaddup and leave me alone - to just put what I need on the screen and otherwise stay the hell out of my face and out of my way, OK ?!?!? All this fancy, cutesy, cartoony, brainless stuff just makes me want to puke. And finally - yes - I'll keep my ancient, plain browser until such time as it ceases to work at all anymore. Sure, I've got Firefox 20-whatever, but do I use it everyday ?? Hell no.
  8. AdyTChabadi

    Firefox 24 Beta 1

  9. Prashant Prabhu On 7th February, 2014 Tired of animated GIF images that take forever to load? Check out these Firefox addons, which make the wait bearable. Or, if you’ve spotted a video that could be the next viral GIF on the Web, read on for an addon that lets you convert HTML5 videos to GIFs. We’ve got alternatives for Google Chrome, too GIF Delayer A GIF that hasn’t finished downloading often starts from the beginning and keeps playing in loop. GIF Delayer helps you avoid these headache-inducing short loops by hiding the image until it has been downloaded completely. Once you install the addon, there will be blank spaces where GIFs be – until they load. The extension isn’t perfect: a frame or a “loading” symbol would improve things, because you’d know where the GIFs are going to be. It also may not work well if you have a slow Internet connection (less than 1 Mbps). When I opened multiple GIF images on a slow connection, a couple failed to download outright. I did not face this issue when I opened one GIF at a time, or when I switched to a faster connection. The extension also doesn’t work in private browsing mode. Still, if unfinished GIFs really bother you, this extension is great. You can also get GIF Delayer for Chrome. Toggle Animated GIFs If GIF Delayer’s limitations are a deal-breaker for you, Toggle Animated GIFs is a simple, yet effective, alternative. Just press ctrl+M (or shift+M) to pause all GIFs on any webpage. When the page has finished loading, hit the same keys again to play the GIFs. The above is enabled by default – the addon also allows you to pause all GIFs by default, then toggle play/pause with just a click. An alternative to this is ESCapeFromThemGIFs, which lets you pause or resume GIFs by hitting the Esc key. However, the Esc key also stops pages from loading in Firefox, so it might cause problems. Chrome users can instead check out Stop Animations. MakeGIF Video Capture This addon converts HTML5 videos from any website to GIF images. All you have to do is right-click on the background (any blank space will do) and click “Convert To GIF”. A prompt will appear on the top-right of the browser to let you select the quality of the GIF, number of frames, etc. Once that is done, hit start. I created a 200-frame GIF from a YouTube video in 15 seconds. You can save the GIF to your computer or upload it to MakeGIF.com (4 MB upload limit) if you want to share it. Non-Firefox fans should check out MakeGIF Video Capture for Chrome. Or, if you don’t mind leaving the browser window to create GIF images, check out this Photoshop CS5 tutorial to make animated GIFs, or use GifCam, the easiest way to create animated GIFs. Which addons or apps do you use to create or manage GIF images? Leave a comment so others can find out. Source Title has been modified as Chrome is also covered in.
  10. First announced in early 2012, the Modern UI based Firefox web browser is ready for download (if only in beta form). The browser is optimized for touchscreen interaction and makes use of Windows 8 features like swipe gestures, the Share charm and, of course, tiles. Traditional Firefox features like the Awesome bar and Firefox Sync are available too. However, the browser interface has been redesigned from the ground up to match Windows 8 and 8.1. The new start screen uses tiles to show the most accessed sites, bookmarks and simplify autocompletion. Firefox for Windows 8 Touch beta also supports the Windows 8 split-screen multitasking feature as either the big or the small app. You can take the new Firefox with Modern UI for a spin by downloading it from here. Remember that it’s a beta, so it might have some bugs (if you find one, report it). Source
  11. Today Mozilla unveiled its new launcher aimed at helping you find new apps, as well as those you may have downloaded but forgotten about. Aptly named Firefox Launcher after the company’s popular web browser, the new homescreen replacement designed in conjunction with contextual computing startup EverythingMe highlights apps you may want based on your usage. The launcher will also automatically create smart folders that group similar types of apps, besides recommending apps you might download or web apps based on what you search for. Both Mozilla and EverythingMe will get revenue based on referring apps, providing ecommerce purchases or showing sponsored content. The launcher’s homescreen shows you different apps during different parts of the day. In the morning it will show you alarm and weather apps, while the “Good Afternoon” homescreen (above) will display things like your calendar, News apps and nearby POI apps so you can plan out your evening. When searching, it brings up relevant apps based on your search queries. A search for Katy Perry brings up a Spotify shortcut to her artist page rather than the standard Spotify screen. There are also Google Now-like context cards that also show relevant results from your searches. Firefox Launcher for Android is expected to be available for download in the coming weeks. We can’t wait to see how well it works in action. Source
  12. geeteam

    [Infographic] Browser Wars

    According to New Relic’s data, which analyzed more than 16.8 million page loads from early October through early November last year, BlackBerry 10 devices loaded web pages in 1.55 seconds on average. The second-fastest web browser, Opera Mini 4.2, wasn’t even close, with page load times that averaged 4.78 seconds. In other words, the BlackBerry 10 browser is more than three times faster than its next-closest competitor. Apple’s Safari browser on the iPad came in at No. 3 with an average page load time of 4.91 seconds, and no other native web browser was even included in New Relic’s top-9 rankings. An infographic showcasing the company’s test results follows below. Source
  13. There are a number of different ways to do this, but when you get down to it all they all do the same thing, which is change your IP address so it looks like you’re in another country. Some use proxy servers, others use VPNs, and there are hundreds of different options in each category. But arguably the easiest way to unblock movies on Netflix and take a peek at what’s available in other regions is to install a browser extension called Hola. Here’s a quick rundown of how to do it: Download and install Hola for your browser of choice and complete the free sign up process if you’re prompted to. Head over to Netflix. (Everything should look the same). Click on the Hola icon (looks like a flaming smiley face) and change your location to a different country of your choice. Refresh and the selection should include a bunch of new movies and TV shows you didn’t previously have access to.Enjoy...
  14. If things go as planned, HTTP 2.0, the next version of the HTTP network protocol, will be submitted for consideration as a proposed standard in late 2014. Intended not to replace the current standard, HTTP 1.1, but to improve it, it is the first new version of the HTTP protocol ever since HTTP 1.1 was described back in 1999. The main goals of HTTP 2.0 are to improve the performance of the network protocol, including connection latency as well as resource usage on the network and server side. Features that HTTP 2.0 will support include header compression, request-response pipelining or multiplexing across asynchronous connections. The basis of HTTP 2.0 is SPDY, a technology that gained popularity in recent years and is now supported by the majority of modern web browsers. HTTP 2.0 has not been finalized, but browser makers such as Mozilla are already working on implementations. As far as Firefox is concerned, Mozilla added support for the protocol back in January. The feature is disabled by default currently, but can be enabled manually in Firefox. At the time of writing, Mozilla's implementation is based on draft-09 and compression-05. To enable HTTP 2.0 in Firefox Nightly, you need to do the following: Type about:config into the browser's address bar and hit the enter key.Confirm you will be careful if the warning message appears.Search for network.http.spdy.enabled.http2draft and double-click the preference.Search for security.ssl.enable_alpn and double-click the preference.This changes the values of both preferences to true, which means that they are enabled.You can undo the changes at any time by repeating the steps outlined above. When you double-click the preferences when they are set to true, they will be set to false so that the feature is no longer enabled in the browser. Mozilla has added the following notes that explain what the current implementation supports: Unless you plan to test the HTTP 2.0 implementation on your network or the Firefox web browser, there is little reason to enable the feature right now. If you do not use Nightly but want to test the implementation, you can download special builds that have been created for just that purposes. Credits goes to Ghacks and Martin Brinkmann
  15. jasonliul

    SpeedyFox 2.0.6 Build 68

    SpeedyFox 2.0.6 Build 68 http://crystalidea.com/downloads/speedyfox.exe SeaMonkey browser support. SQlite 3.8.1 update
  16. Mozilla Firefox 26 Beta 6 is now available. :) ftp://ftp.mozilla.org/pub/mozilla.org/firefox/releases/26.0b6/win32/
  17. When Mozilla announced in February that it would add so-called Directory Tiles to new versions of Firefox, it was criticized for it. The organizations main idea was to populate the new tab page with contents so that first time users of the browser would not see a blank space on the page when they opened it for the first time. Of the nine tiles, six would be selected based on popularity in the user's region, and three sponsored tiles. Companies and organizations pay Mozilla for inclusion on the tab page. Horror scenarios about blinking ads or Flash ads made the round quickly, but were quickly refuted by specifications for sponsored partner tiles that Mozilla released. All tiles share the same layout and style guide, regardless of whether they are sponsored or not. All use a single static 180x150 pixel image that may consists of a centered logo, wordmark, or both, on solid color background. Tiles may not be used for sales pitches and other sales related information such as price information or discounts. This is how it looks like The first tiles have just been picked by Mozilla. It needs to be noted that this is just for Firefox Nightly as a test run, and that the selection may change before it lands on the stable branch of the browser. Also note that this is the US-EN selection. If you run a different locale, you may not get these tiles right now if you are running Nightly. Mozilla divides the tiles into different groups such as organic, affiliate and (trial) sponsored. Facebook : https://www.facebook.com/YouTube : http://www.youtube.com/Wired : http://www.wired.com/Lightbeam: https://www.mozilla.org/en-US/lightbeam/MoFo : http://www.mozilla.org/en-US/about/Wikipedia: http://en.wikipedia.org/wiki/Main_PageTrulia : http://www.trulia.com/?ecampaign=tilesAmazon : http://www.amazon.com/gp/bit/amazonbookmark.html?tag=mozilla-directory-tiles-20&partner=MozillaWebmaker : https://webmaker.org/ I could not find information about the distinction between affiliate and sponsored tiles. For now it seems that affiliate tiles are links to Mozilla products, pages or services, while sponsored are those that Mozilla is paid for. It is interesting to note that Amazon is not listed as a sponsor even though it has a tag associated with it if you check out the link. It is not clear what the tag is being used for at the time of writing. If you follow the bug listing over at Mozilla, you notice that other companies and sites are mentioned on that page again. Here you find listed Reddit and weather.com for example, Twitter, and a couple of "not ready yet" alternatives such as wordpress.com, lonelyplanet.com, nytimes.com and npr.org. Closing Words The new Directory Tiles feature that auto-populates the new tab page of Firefox is as unobtrusive as it gets. While I would like to know more about the tracking involved, especially the kind of information such as impressions that advertisers receive from Mozilla, it is not something that I'm too worried about considering Mozilla's track record when it comes to user privacy. If the organization manages to make extra revenue from it, then I'm all for it considering that it will reduce the dependency on Google. It is not clear by how much though, but every bit counts I guess. What's your take on this first layout and the selection of sites? (via Sören) Source
  18. Mozilla will set all Firefox plugins except whitelisted ones to click to play by default from Firefox 30 on. Mozilla and Google are moving towards a plugin-free web experience. Google announced last year that it will block all classic plugins -- s0 called NPAPI plugins -- from the Chrome browser in 2014. While Google's move is rather radical, considering that the browser wont support plugins at all anymore when the company implements the change, Mozilla's approach is slightly different even though it may have the same result at a later point in time. The organization will set all Firefox browser plugins except those on a whitelist that it maintains to click to play. This means that plugins won't start automatically anymore if they are not the on the whitelist, but that users won't lose any functionality as they can still enable the plugin on a site that requests it. Mozilla announced the creation of a whitelist back in March 2014. It added Adobe Flash to that whitelist automatically and asked plugin developers to submit plugins for whitelist inclusion. Plugins had to adhere to the Firefox Plugin Whitelist Policy if they wanted to be included on the whitelist. One of the requirements was a credible plan to move away from NPAPI. Accepted plugins are added to the whitelist so that they are still activated by default in Firefox for the next four releases cycles.All other plugins are set to click to play. Companies can apply for a second inclusion on the whitelist after the first period. Mozilla reserves the right however to exclude any plugin, even those it accepted beforehand, from the whitelist at any time. This can happen for instance when plugins cause critical security issues in the browser. The whitelisted plugins All whitelisted plugins have been listed now on Bugzilla. It is still possible that additional plugins will get added in the future, but it is very likely that Firefox 30 will ship with this whitelist. bug 979849 - Unitybug 980133 - Cisco Jabber SDKbug 980772 - McAfee Security Scannerbug 981403 - Cisco VGConnect for directv.combug 981905 - Cisco Jabber Guestbug 982045 - Estonian ID cardbug 984441 - coupons.combug 987056 - Nexus Personal BankIDbug 988119 - gradecambug 988781 - Smart Card Pluginbug 989096 - Cisco WebExbug 990067 - Skypebug 990068 - Facebook video callingbug 990069 - MS Office Lync pluginbug 990286 - VidyoWeb pluginAdobe Flash Every other browser plugin will be set to click to play by default when Firefox 30 is released. Note: You can set any plugin to click to play in Firefox, and change the state of plugins at any time as well. While it is too early to tell, it seems likely that you can set plugins to always activate manually in Firefox. One interesting bit that you can take away from the whitelisted plugin listing is that it is very likely that all of them will be made available in a different form in the future (with the exception of Flash). Unity for instance is working on a WebGL version of the engine in cooperation with Mozilla. Mozilla is also working on Shumway, a Flash replacement. (Thanks Soeren) Source
  19. If you like the new Firefox Australis theme that Mozilla will roll out next Tuesday to all users of the stable version of the browser, or do not like it but have installed an extension such as Classic Theme Restorer to return to the old layout and design of Firefox, then you may like what The Fox, Only Better extension has to offer. It changes some interface elements of the browser but stays true to the general look and feel of Australis, unlike other extensions that try to restore the old Firefox interface as best as they can. That does not mean that it won't work if you have modified the interface, for instance with Classic Theme Restorer or another extension working similar to it. As you can see on the screenshot below, it works just fine with squared tabs and other interface modifications, and is only compatible with Firefox 29 or newer. The extensions main feature is the new compact address toolbar that is hidden by default. Once you have installed the extension in Firefox, only the tab bar is displayed by default while all other toolbars -- remember there are only two by default in Australis -- are not visible. When you hover the mouse cursor over the original toolbar location, it is displayed to you. It features some curved styles that match the curved tabs style of Australis well, and will display all icons and elements of Firefox's address bar. And if you have enabled the bookmarks bar as well, it too is displayed here attached to the address bar so that you do not miss out on any of the elements and links that you have placed in either toolbar. The bar is displayed automatically however when you enter usernames or passwords on websites. This is done to provide you with information about the site you are currently on for security purposes. It is interesting to note that the add-on works well with lightweight themes that you may have installed in the browser. Closing Words The add-on hides the majority of interface elements from Firefox to free up screen space for the website you are viewing in Firefox. It is not the first extension to make available that functionality, but it appears to be the first optimized for the new Australis interface. Since it does work well with other extensions that modify the interface as well as themes, it will certainly be an interesting option for some Firefox users. SummaryAuthor RatingSoftware NameThe Fox, Only BetterLanding Pagehttps://addons.mozilla.org/en-US/firefox/addon/the-fox-only-better/?src=cb-dl-updated Source
  20. Mozilla, which is absolutely not shy of widespread changes to its browser, will be removing the popup Options window from version 32 onwards in favor of an inline tab instead. As you can see above this is already possible, it was added two months ago as an option beginning with the Nightly version. Firefox 29 users are in luck too, as well as those in the beta channel who can also view the above. To enable it as default follow the steps below: Type about:config in the browser's address bar and hit enter. Confirm you will be careful. Search for browser.preferences.inContent and double-click it to set it to true.How it looks like in FF 29- Once enabled, the option displays all menu items on the left in a sidebar and the settings for the selected item on the right. To not have it as default, but check it out anyway, simply navigate to about:preferences. ​What will be from Firefox 32 onward by default.- Above you can see that the option has since seen a bit of an overhaul, aligning with the style of the extensions and plugin pages, to check this out you'll need to install the nightly version of Firefox, which has the updated setting page by default. Some changes include, ability to zoom settings pages, and fonts also change up or down accordingly, this most likely due to the fact that the settings pages also take up much more room on the screen which also makes scrolling possible in that scenario. Of course, this isn't going to be everyones cup of tea, some people may prefer the old fashioned way of a popup, which is also still possible. To revert to the old style options window, follow the steps below: Type about:config into the address bar and hit enter. Confirm you will be careful. Search for browser.preferences.inContent Double-click the entry.​ This is just one of many sweeping changes to Firefox in recent months. Hopefully they will also get around to synchronizing the name for Options, which presently has three different ones, depending on where you look; in the Firefox 'Start Page' it's called Settings, in the drop down menu it's called Options and to get it through a tab, it's about:preferences. Yep! Source
  21. When it comes to adding userscript support to Firefox, Greasemonkey is still the number one extension trusted by the majority of users. While there are alternatives such as Scriptish, they pale in terms of raw user numbers when compared to Greasemonkey. The development team behind Greasemonkey has just released version 2.0 of the extension. As always, it takes time before the new version is made available to all existing users and users who visit the Greasemonkey page on the website. Interested users can install the new version of the extension on the "versions" page of it on the website where it is already made available. The new version introduces several changes that may make some scripts incompatible with version 2.0 of Greasemonkey. One of the changes affects the @grant mode that scripts use. It allows scripts to specify which API methods they want to have access to. Up until now, Greasemonkey tried to auto-detect the right settings when grant was not used by a script. The new version changes this by assigning @grant none mode to any script that does not specifically request API methods using the feature. It is interesting to note that the change affects only scripts that you install new, update, edit or reinstall. Existing scripts that you leave untouched are not affected by the change according to the announcement. The second change that may break compatibility with some scripts is that Greasemonkey's privileged sandbox has been updated to match changes made to unsafeWindow in Mozilla's Add-on SDK. What this means is that scripts need to use the new methods cloneInto(), exportFunction() and createObjectIn() to write values to unsafeWindow. According to the developers, this improves the extension's stability, reliability and security. The consequence is that the changes may break some scripts unless they are updated by their authors to correct the issues. It is unclear how many scripts will be affected by this but the team believes that the benefits outweigh compatibility issues. A couple of additional changes and fixes are introduced in Greasemonkey 2.0. Firefox Sync support is turned on by default for instance which means that it is enabled by default now. If a user has activated Firefox Sync, userscripts will be synchronized automatically once Greasemonkey 2.0 has been installed. You can change that behavior in the extension's options where you need to uncheck the "Enable Firefox Sync for User Scripts" box. Another interesting change is that all references to userscripts.org have been removed from the extension. The repository has been down for some time now and while there is an option to access it, as outlined here, it is unclear if it will return fully or vanish into oblivion. You can read up on the remaining changes and fixes -- mostly coding related -- on the official Greasepot website. Source: ghacks.net
  22. When Mozilla announced that it was experimenting with a new design for Firefox's default New Tab Page, it received lots of criticism for it. The New Tab Page is displayed to users when a new tab is opened in the browser. Since the sites it displays depends on the user's usage of the browser, it is not displaying useful content on a new installation. The idea was to populate the new tab page with a selection of popular sites. And since popularity may depend on the user's location in the world, it too became a factor. The criticism came down to the fact that Mozilla thought about adding sponsored tiles to Firefox's New Tab Page as well. The first announcement did not go into many details and some users already saw blinking Flash ads on the New Tab Page. A specification was published shortly thereafter which outlined that sponsored tiles had to adhere to the same rules as regular tiles. This meant that they could only use a single static image, and that the image could not be sales related. The most recent design of the page looked like this. While that put some users at ease, it was not clear which metrics would be made available to third-party advertisers. Jonathan Nightingale, Vice President of Firefox announced today that Mozilla has canceled the experiment. This means that there won't be sponsored tiles in future versions of the Firefox web browser. User feedback on the matter seems to have been the main reason behind the decision to stop the experiment. The plan to make the New Tab Page more useful to first time users of the Firefox browser still stands though, but advertisement is out of the picture. It is very likely that Mozilla will use ideas from the failed experiment, especially in regards to design of the images on the new tab page and the sites displayed on it. The easiest option for the organization would be to remove the sponsored tiles from the page and replace them with three tiles pointing to websites that are popular in a particular region of the world. Jonathan Nightingale mentioned that Mozilla will test a mix of first and third-party sites, and also test various layouts, but that all of the tests won't be about revenue and that none will be collected in the process. Mozilla's stance on privacy and user rights does not work well together with advertisement, and while the organization has to generate revenue to diversify income streams and reduce its dependency on Google, advertisements in the browser are not the way to do so. Source
  23. Contestants at this year’s Pwn2Own contest made no bones about it: they were going after browsers and as it turned out, Firefox had the biggest target on its back. Mozilla’s popular browser was popped four times during the Canadian hacker festival accounting for a quarter of the $800,000-plus in prize money handed out over the course of two days. Controversial vulnerability and exploit vendors VUPEN won six Pwn2Own cash prizes, including a zero-day in Firefox, details of which it shared yesterday. Founder Chaouki Bekrar told Threatpost in March that VUPEN researchers ran more than 60 million test cases through a fuzzer before they were able to find a memory corruption issue leading to an exploitable use-after-free condition in Firefox. “This flaw was not easy to find and exploit because it required the browser to be in a specific memory state to reach the vulnerable code branch, this state is called by Mozilla: ‘memory-pressure,” VUPEN said in a statement yesterday. Mozilla patched the four Firefox zero-day vulnerabilities within a week of their disclosure to the vendor during Pwn2Own. The VUPEN zero day was found in Firefox 27 running on a fully patched Windows 8.1 computer. VUPEN’s exploit code triggering the use-after-free condition first attacks the Spray function in order to consume memory resources, which triggers the Pressure function, consume additional resources. “As the ‘Pressure()’ function is recursive, the‘spray()’ function will be called many times. Each heap spray operation performed by this function is saved into the tab array,” VUPEN researchers said. “After a few seconds, Firefox will run out of memory and enters into a specific state named‘memory pressure’ or ‘low memory’ which is automatically activated to protect the browser from intensive memory use.” Once activated, VUPEN said it was able to delete a freed “BumpChunk” object which eventually leads to an exploitable crash of the browser. “In order to exploit this vulnerability an attacker needs first to take control of the freed object,” VUPEN said. “To replace the content of the freed object with attacker-controlled data, multiple elements having the same size as the vulnerable object must be created. This can be achieved by spraying ArrayBuffers of 0×2000 bytes.” From there, they were able to cause a memory leak and a buffer overflow of the EIP register, and ultimately bypass Address Space Layout Randomization and Data Execution Protection memory safeguards native to Windows in order to execute code on the underlying system. Details on the remaining Firefox zero-days brought to Pwn2Own have yet to be released. Notable iPhone and PlayStation jailbreak hacker George “geohot” Hotz scored $50,000 for his hack of Firefox in which he also found a memory issue causing an exploitable crash and code execution. Researcher Juri Aedla, a frequent Google bug-hunter, also found a zero-day code execution bug in the browser. Mozilla said in its advisory at the time that: “TypedArrayObject does not handle the case where ArrayBuffer objects are neutered, setting their length to zero while still in use. This leads to out-of-bounds reads and writes into the JavaScript heap, allowing for arbitrary code execution.” Polish researcher Mariusz Mlynski was the fourth Pwn2Own contestant to topple Firefox. He combined two vulnerabilities to gain privilege escalation. “Combined these two bugs allow an attacker to load a JavaScript URL that is executed with the full privileges of the browser, which allows arbitrary code execution,” Mozilla said in its advisory. Source
  • Create New...