Mozilla today released updated versions of the Firefox browser, v1.5.0.10 and v2.0.0.2, for Windows, Mac, and Linux, which close a major security flaw called the ‘location.hostname vulnerability’. The fix stops hackers from being able to tamper with how websites are displayed.
already downloaded and installed the update,and all of my add-ons still work fine, wish Microsoft updates were this great.
I bet you were waiting all day to find some way to drag Microsoft in to this for the sole purpose of slamming them.
Thanks for news. I was about to go and update it through the program but seems like it’s automatically updated and asked me to restart Firefox
Running as Administrator ey?
No i am not. I run linux and have installed firefox in my home directory so it can do automatic updates
“I run linux and have installed firefox in my home directory so it can do automatic updates”
albeit unlikely, any process running in your user account can modify the binary? kinda defeats the purpose of the security model. not a good solution.
it would be nice if firefox notified regular users (windows or linux) of updates too so you could switch to admin or root respectively… or maybe even allow you to click update, and prompt for credentials to runnas/sudo.
That’s the purpose of your distro’s update software… it would be a bit redundant to have two alerts.
Very true.
Firefox shouldn’t inform people of updates at all.
The only reason it does is for windows users who don’t have a proper package management system.
because this comment was got voted down, apparently some have a problem it.
already downloaded and installed the update,and all of my add-ons still work fine, wish Microsoft updates were this great.
so for political, religious, or moral reasons i will censor it, so it can suit all.
already downloaded and installed the update,and all of my add-ons still work fine.
happy?
Edited 2007-02-23 23:49
I feel much more secure with Opera, besides the software being superior and faster as a whole.
Who asked?
Oh. and more buggy. But hey.
Gotta wonder .. is Firefox really anymore secure these days than IE7 running on WinXP SP2? I’m not saying it is or isn’t, but seems like security vunerabilities are popping up more and more for Firefox. In regard to what another poster said, I’ve tried setting up Opera for friends and family, but newbies generally don’t seem to dig it as much as Firefox.
Edited 2007-02-24 01:39
Why not? It’s much better in all aspects…
is Firefox really anymore secure these days than IE7 running on WinXP SP2?
It depends on the user. If you know what you’re doing, they’re both pretty secure. If you don’t know what you’re doing, they’re both pretty insecure. Reverse that if you’re a cracker.
Edited 2007-02-24 02:40
Maybe it is just me but IE 7 UI feels sluggish on my machine compared to Firefox. For example when I open a new tab theres a slight pause before the new tab opens up. In Firefox its always instant.
I’d like to think I have a fairly modern machine and this slowdown shouldn’t be there. (A64 3800+ 1GB Memory with Win XP Pro)
Maybe it is just me but IE 7 UI feels sluggish on my machine compared to Firefox.
For me it’s rather the other way around. While I don’t have speed issues with FF, I find IE7 a little faster. It loads pages instantly.
Just don’t have scripting on by default for websites. Then you are pretty safe with most browsers.
Ah, nice! You don’t need Javascript to inoculate a virus into the temp directory of a computer. A JPEG image will do the trick. It’s very unlikely to get a virus browsing the web. Do you remember visiting the web and your antivirus triggering alerts? Very unlikely. And when you have an updated antivirus, you’re safe. Now, if you disable Javascript, most web sites will be unusable. Try it yourself to see. Most web sites nowadays use Javascript for everything, especially all Web 2.0 sites, e-commerce sites, etc…
secure software does not exist. you would evaluate how fast and willing are ms or mozilla in applying the correct patches.
mozilla makes me feel more secure than ms. firefox bugs could even be more than ie’s, nonetheless they are patched faster.
I’ll use Opera when it gets a decent advertising blocker like “Ad Blocker”. Until then, it’s useless to me.
It already has one called built in. I just downloaded a filter list for it which I found over here:
http://www.fanboy.co.nz/adblock/
See here for more information:
http://operawiki.info/OperaAdblock
Edited 2007-02-24 03:32
Thank you for this, it worked a treat on my Opera install…
Hmm…. now I’ve just got to consider if I can find a plugin replacement for my spell checker and my media downloaders and I’ll have Opera on par with my Firefox installation…
–bornagainpenguin
EDIT- fixed yo => you
Edited 2007-02-24 23:08
Use Netscape on Windows.
It has its own Security Center and uses either Gecko or Trident engines for complete compatability.
You dare to come to a site like this and say the N word?
I switched from Firefox to Konqueror (for those who don’t know, it comes with KDE) a long time ago because Konq to me feels much faster; Maybe due to it using the same libraries as KDE (like IE <> explorer?) or how simple/small it is.
But anyway, my question, I wonder how secure it really is.. If it would have the same situations as firefox did when it hit fame and propper use..
Which also makes me wonder if Opera is that famous for all the bugs and security flaws to be discovered..
While i’m at it, what about the command line links/lynx ?
Anyway, I guess my point is, every software, open or closed, has its bugs, flaws, and security issues.. What makes one distinguished is not the number of flaws discovered in a day, but how many of them are fixed and how quickly.
Cheers for Firefox.
Just don’t have scripting on by default for websites. Then you are pretty safe with most browsers.
It depends on what you use the internet for, but in most cases, this makes browsing the internet pretty ugly.
Plus, in osnews v4, some features will not be available to non-js brosers (aparrently).
Downloaded and installed the patch, and was warned that it’s incompatible with the Java 6 plugin, which was promptly disabled. Not a huge deal for me, but that seems to be a pretty large break in compatibility for such a small point release.
I got the same warning – something about the java console? Everything seems to be working fine though. I went to a page with a java applet and the about:plugins page shows java6 is enabled, so I’m not sure what happened.
Edited 2007-02-24 07:25
Today I think we all find ourselfs in the realm of complex software with bugs but instead of the code actually being re-written it is patched.
Type this in the address URL…
about:Mozilla
Those not caring one way or another about non-OS-news should be able to vote such articles with a thumbs down.