Berkeley CSUA MOTD:Entry 37254
Berkeley CSUA MOTD
 
WIKI | FAQ | Tech FAQ
http://csua.com/feed/
2025/04/05 [General] UID:1000 Activity:popular
4/5     

2005/4/19 [Computer/SW/WWW/Browsers] UID:37254 Activity:nil
4/19    Firefox 1.0.3 released. Fixes security vulnerabilities.
        http://www.mozilla.org/projects/security/known-vulnerabilities.html
2025/04/05 [General] UID:1000 Activity:popular
4/5     

You may also be interested in these entries...
2012/5/18-7/20 [Computer/SW/WWW/Browsers] UID:54392 Activity:nil
5/18    On my Win7 machine, I've been using a PuTTY ssh session to soda as a
        proxy for my FireFox to bypass my company's OpenDNS when I visit
        http://tv.yahoo.com and so on.  It has been working fine for a long while.
        However, in the past couple weeks or so, my FireFox would either take
        several minutes to load the page, or failes to load it after several
        minutes.  I haven't changed any settings on my Win7 machine.  Rebooting
	...
2012/4/23-6/1 [Computer/SW/WWW/Browsers] UID:54360 Activity:nil
4/19    My Firefox 3.6.28 pops up a Software Update box that reads "Your
        version of Firefox will soon be vulnerable to online attacks."  Are
        they planning to turn off some security feature in my version of
        Firefox?
        \_ Not as such, no, but they're no longer developing this version,
           so if a 3.6.x-targeted hack shows up, you're not going to get
	...
2012/2/5-3/26 [Computer/SW/WWW/Browsers] UID:54300 Activity:nil
2/5     How is Firefox on version 10, while I still have 3.6 installed.
        I wait for the X.1 versions and they never come out.
        \_ I'm also on 3.6.26.  It claims that versions 4 - 10 are all faster
           than 3.6.x, but do they use more memory?  Thx.
           \_ Newer Firefox versions use less memory too:
              http://www.maximumpc.com/article/news/mozillas_memshrink_program_brings_big_memory_savings_firefox_7
	...
2010/9/13-30 [Computer/SW/WWW/Browsers] UID:53956 Activity:nil
9/13    Blah blah android blah, ok other than the bootjack stomp of the
        phone marketing crap of this, does anyone know where to find the old
        Android TCL scripting framework that was used for automating
        and controlling desktop apps (like mozilla for example). Thx.
	...
2010/2/18-3/9 [Computer/SW/WWW/Browsers] UID:53713 Activity:nil
2/18    Why is there now Firefox 3.5.8 when there was already 3.6 a month ago?
        \_ Why is there Windows XP SP3 when there was already Vista?
           Generally companies manage patches for at least two levels of
           product.  -tom
           \_ I see.  So Fx 3.6 is more like a new version than an update to
              3.5.x.  --- OP
	...
2010/2/8-18 [Computer/SW/Apps/Media, Computer/SW/Apps] UID:53695 Activity:kinda low
2/5     I like Adobe Flash. When written correctly, it scales along
        with your browser size. It looks consistent on every single
        browser. It is predictable. On the other hand, I'm not a big
        fan of CSS/HTML, which for the most part, look wildly different
        between browsers, and don't even work consistently or
        correctly at times. So why do so many people (like Steve Jobs)
	...
2010/1/11-25 [Computer/SW/WWW/Browsers] UID:53625 Activity:nil
12/9    Does anyone know when Firefox will support Win7?  I can't find a
        roadmap page on http://mozilla.org.  Thx.
	...
2009/12/13-2010/1/13 [Computer/SW/WWW/Browsers] UID:53593 Activity:nil
12/12   http://www.axiis.org/examples/BrowserMarketShare.html#
        An unusual visualization of browser market share from 2002-now
        \_ 1. Is it coincidence that it looks so much like the Firefox logo?
           2. Is Chrome eating away Firefox's share?
           \_ Chrome's user base is pretty much the same user base
              as Firefox user base, and to some extent, Safari. The
	...
2009/12/2-9 [Computer/SW/WWW/Browsers] UID:53556 Activity:nil
12/2    IE usage down but still kicking the majority ass. Chrome is also
        rising up high, almost at the Safari level. Firefox isn't
        doing badly either. Sorry Opera, you had your chance.
        http://arstechnica.com/microsoft/news/2009/12/november-2009-browser-stats-ie8-passes-ie7.ars
        \_ As long  as Opera is the only browser you can use on your Wii,
           I see a fine long life ahead of it.
	...
2009/11/27-12/6 [Computer/SW/OS/OsX] UID:53546 Activity:low
11/27   What did you guys buy on Black Friday?
        \_ cold medicine
           \_ me too!
        \_ Nothing.
        \_ I bought a Mac Air for my wife when Mac Mall announced their
           "Black Friday sale" on Wednesday. But that was technically not
	...
2009/10/1-21 [Computer/SW/WWW/Browsers] UID:53417 Activity:moderate
10/1    I am thinking of installing firefox on soda under my home directory.
        Will this make me a hozer?
        \_ Possibly. I wonder if we should have another VM for that...btw,
           I remember someone saying they're glad we're not on FreeBSD
           anymore, but last I checked, a bunch of our stuff is on FreeBSD,
           but our login server is not.
	...
Cache (2016 bytes)
www.mozilla.org/projects/security/known-vulnerabilities.html
Products search mozilla: Go Known Vulnerabilities in Mozilla This page will contain a list of the security vulnerabilities known to af fect particular versions of Mozilla, and instructions on what users can do to protect themselves. The list will be added to when new security pr oblems are found. This page lists security vulnerabilities with direct impact on users. A ll of these vulnerabilities have been fixed prior to the most recent Moz illa milestone release. A specific link format triggers a bug in this feature an d can cause the deletion of files in the download directory. An attacker would need to convince a victim to click the "Save" button to download a file from their site. Workaround: Cancel unexpected file save prompts and any from untrusted si tes. When saving files, right-click on the link and select "Save link as " from the context menu. With compelling content that people will want to forward to all their fr iends and the right link this could be used to execute arbitrary code. The user could be convinced to drag obscurred links in the context of a game or even a fake scrollbar. If the user co uld be convinced to drag two links in sequence into a separate window (n ot frame) the attacker would be able to run arbitrary programs. If unpacked with an option to ignore the user's um ask setting (or with a permissive umask) the resulting files could be se cretly replaced with malicious versions by any other user on the system. Once imported anything s igned by the masked CA would not validate, which could be used to perman ently block all SSL (https:) sites with certs issued by that CA. An att acker who could spoof your DNS could wait until you authenticate to a se cure site then redirect a later connection to that site and port during that session to a non-SSL machine under their control, thus stealing the secure password. This could be used to further phishing scams in mail where Javascript is disabled a nd the status bar might be trusted more than in normal web content.