Firefox browser and Thunderbird client

All non-XnView related: softwares, formats, imaging, photography...

Moderators: XnTriq, helmut, xnview

ckit
XnThusiast
Posts: 2557
Joined: Tue Feb 17, 2004 1:11 am
Location: Cabarlah, Australia

Firefox browser and Thunderbird client

Post by ckit »

Last edited by ckit on Wed Nov 16, 2016 12:21 am, edited 16 times in total.
ckit
XnThusiast
Posts: 2557
Joined: Tue Feb 17, 2004 1:11 am
Location: Cabarlah, Australia

Post by ckit »

If you were using "Jump Link 1.3.1" extension and are waiting for an Firefox 1.5.0.0 update, you could try "Redirect Remover" extension which does pretty much the same job and works with Firefox 1.5.0.0.

Firefox -> Tools -> Extensions -> Get More Extensions -> Search for Redirect Remover
Last edited by ckit on Sun Feb 05, 2006 12:49 am, edited 1 time in total.
User avatar
ckv
Posts: 786
Joined: Wed Feb 02, 2005 2:30 pm
Location: Glow
Contact:

Post by ckv »

Yeah! As a note, most of the old extension don't work in 1.5 (was surprise for me :? )
XnView Tweak UI - Tool to customize your XnView beyond the regular XnView options.
UI-less Settings - Documentation of all the hidden settings in XnView.
XFAM - Tool to create and customize XnView file associations.
VuDu
Posts: 179
Joined: Sat Mar 20, 2004 8:27 pm
Location: Estarreja, Portugal

Post by VuDu »

"don't work"


...yet ;)
Image
Ad decus et ad libertatem nati sumus
Aut haec teneamus aut cum dignitate moriamur
User avatar
Drahken
Posts: 884
Joined: Sun Apr 10, 2005 4:29 pm

Post by Drahken »

The old extension probably do work, they just think that they don't because the maxversion was set too low in the installer. You can try downloading the XPI, unzipping it (it's just a zip archive), and changing the file to make it install on a higher version of FF.
VuDu
Posts: 179
Joined: Sat Mar 20, 2004 8:27 pm
Location: Estarreja, Portugal

Post by VuDu »

all the extensions i use are working with this version. :)
Image
Ad decus et ad libertatem nati sumus
Aut haec teneamus aut cum dignitate moriamur
ckit
XnThusiast
Posts: 2557
Joined: Tue Feb 17, 2004 1:11 am
Location: Cabarlah, Australia

Post by ckit »

To fix the security issue with Firefox 1.5.0.0 final set your History options to "0" days (Tools -> Options -> Privacy -> History) The developers at Mozilla refuse to fix this problem so this is the workaround for now.

Also, Jump Link 1.3.2 has been released and is Firefox 1.5.0.0 compatible.
Last edited by ckit on Sun Feb 05, 2006 12:50 am, edited 1 time in total.
User avatar
ckv
Posts: 786
Joined: Wed Feb 02, 2005 2:30 pm
Location: Glow
Contact:

Post by ckv »

SessionSaver extension is 1.5 compatible

The version in addons.mozilla.org is outdated. Get the latest version here.
http://adblock.ethereal.net/alchemy.cgi/SessionSaver/

I personally use SessionSaver only for crash backup. So if windows or firefox crashes I don't need to find all the pages again. :)
XnView Tweak UI - Tool to customize your XnView beyond the regular XnView options.
UI-less Settings - Documentation of all the hidden settings in XnView.
XFAM - Tool to create and customize XnView file associations.
ckit
XnThusiast
Posts: 2557
Joined: Tue Feb 17, 2004 1:11 am
Location: Cabarlah, Australia

Post by ckit »

NoScript 1.1.3.5 security extension for Firefox has been Released.
This new version addresses the security issue raised in my above post!!!!

I won't be making a habit of posting every single new extension but at the moment I'm bored and sober... so sue me :)
Last edited by ckit on Sun Feb 05, 2006 12:51 am, edited 1 time in total.
User avatar
Drahken
Posts: 884
Joined: Sun Apr 10, 2005 4:29 pm

Post by Drahken »

The setting history to 0 is only a partial solution. It prevents the crash, but doesn't prevent your history file from becoming massive (which may include hazardous code),
Use either prefs.js or user.js and add
user_pref("capability.policy.default.HTMLDocument.title.set","noAccess");
To block this issue completely. You can also use noscript and block javascript on all sites except those in the whitelist.

Edit: If you want to test your browser to see if it's vulnerable, you can use this page: http://www.findhard.com/firefox-1.5-buf ... rflow.html
WARNING! The above page is designed to trigger crash in gecko based browsers such as mozilla, firefox, k-meleon, etc. Going to the page is harmless, but clicking on "click me" on that page will attempt to trigger the vulnerability. If you use the user_pref trick, the browser will hang for a moment, then return to normal. If you use the history:0 trick, you will suddenly find that your history.dat file is massive.
User avatar
ckv
Posts: 786
Joined: Wed Feb 02, 2005 2:30 pm
Location: Glow
Contact:

Post by ckv »

Drahken wrote:Edit: If you want to test your browser to see if it's vulnerable, you can use this page: http://www.findhard.com/firefox-1.5-buf ... rflow.html
Cuite simple code in that page :/

Code: Select all

<script type="text/javascript">
function ex() {
	var buffer = "";
	for (var i = 0; i < 5000; i++) {
		buffer += "A";
	}
	var buffer2 = buffer;
	for (i = 0; i < 500; i++) {
		buffer2 += buffer;
	}
	document.title = buffer2;
}
</script>
But I still don't see any reason to take any extra caution because of this. My mind might change after I hit on page what will actually exploit this. ;)
XnView Tweak UI - Tool to customize your XnView beyond the regular XnView options.
UI-less Settings - Documentation of all the hidden settings in XnView.
XFAM - Tool to create and customize XnView file associations.
ckit
XnThusiast
Posts: 2557
Joined: Tue Feb 17, 2004 1:11 am
Location: Cabarlah, Australia

Post by ckit »

...
Last edited by ckit on Sun Feb 05, 2006 12:47 am, edited 1 time in total.
Dreamer
XnThusiast
Posts: 4608
Joined: Sun Jul 25, 2004 9:08 pm

Post by Dreamer »

ckit wrote:Helmut,
Could you please delete this entire thread.
Really? I can do it too now, but why not delete the other 'firefox' topic with just 3 posts and just 1 not yours? You could copy that posts here, you can even edit your posts, it would be better IMO...
User avatar
XnTriq
Moderator & Librarian
Posts: 6336
Joined: Sun Sep 25, 2005 3:00 am
Location: Ref Desk

Post by XnTriq »

This might be of interest to Firefox users who are looking for a way to install the v1.5.0.1 update (en-US, 751K) offline:
marsh
XnThusiast
Posts: 2443
Joined: Sun May 15, 2005 6:31 am

Post by marsh »

XnTriq wrote:This might be of interest to Firefox users who are looking for a way to install the v1.5.0.1 update (en-US, 751K) offline:
Wiki's patch method failed for me. There has been a .MAR file at the FTP release location for several days. Oh well, another release should be available any moment now for those willing to wait and upgrade by easier ways.
Post Reply