Firefox browser and Thunderbird client
Moderators: XnTriq, helmut, xnview
Firefox browser and Thunderbird client
Firefox - web browser
https://www.mozilla.org/en-US/firefox/products
Thunderbird - email client
https://www.mozilla.org/en-US/thunderbird
https://www.mozilla.org/en-US/firefox/products
Thunderbird - email client
https://www.mozilla.org/en-US/thunderbird
Last edited by ckit on Wed Nov 16, 2016 12:21 am, edited 16 times in total.
If you were using "Jump Link 1.3.1" extension and are waiting for an Firefox 1.5.0.0 update, you could try "Redirect Remover" extension which does pretty much the same job and works with Firefox 1.5.0.0.
Firefox -> Tools -> Extensions -> Get More Extensions -> Search for Redirect Remover
Firefox -> Tools -> Extensions -> Get More Extensions -> Search for Redirect Remover
Last edited by ckit on Sun Feb 05, 2006 12:49 am, edited 1 time in total.
Yeah! As a note, most of the old extension don't work in 1.5 (was surprise for me )
XnView Tweak UI - Tool to customize your XnView beyond the regular XnView options.
UI-less Settings - Documentation of all the hidden settings in XnView.
XFAM - Tool to create and customize XnView file associations.
UI-less Settings - Documentation of all the hidden settings in XnView.
XFAM - Tool to create and customize XnView file associations.
To fix the security issue with Firefox 1.5.0.0 final set your History options to "0" days (Tools -> Options -> Privacy -> History) The developers at Mozilla refuse to fix this problem so this is the workaround for now.
Also, Jump Link 1.3.2 has been released and is Firefox 1.5.0.0 compatible.
Also, Jump Link 1.3.2 has been released and is Firefox 1.5.0.0 compatible.
Last edited by ckit on Sun Feb 05, 2006 12:50 am, edited 1 time in total.
SessionSaver extension is 1.5 compatible
The version in addons.mozilla.org is outdated. Get the latest version here.
http://adblock.ethereal.net/alchemy.cgi/SessionSaver/
I personally use SessionSaver only for crash backup. So if windows or firefox crashes I don't need to find all the pages again.
The version in addons.mozilla.org is outdated. Get the latest version here.
http://adblock.ethereal.net/alchemy.cgi/SessionSaver/
I personally use SessionSaver only for crash backup. So if windows or firefox crashes I don't need to find all the pages again.
XnView Tweak UI - Tool to customize your XnView beyond the regular XnView options.
UI-less Settings - Documentation of all the hidden settings in XnView.
XFAM - Tool to create and customize XnView file associations.
UI-less Settings - Documentation of all the hidden settings in XnView.
XFAM - Tool to create and customize XnView file associations.
NoScript 1.1.3.5 security extension for Firefox has been Released.
This new version addresses the security issue raised in my above post!!!!
I won't be making a habit of posting every single new extension but at the moment I'm bored and sober... so sue me
This new version addresses the security issue raised in my above post!!!!
I won't be making a habit of posting every single new extension but at the moment I'm bored and sober... so sue me
Last edited by ckit on Sun Feb 05, 2006 12:51 am, edited 1 time in total.
The setting history to 0 is only a partial solution. It prevents the crash, but doesn't prevent your history file from becoming massive (which may include hazardous code),
Use either prefs.js or user.js and add
user_pref("capability.policy.default.HTMLDocument.title.set","noAccess");
To block this issue completely. You can also use noscript and block javascript on all sites except those in the whitelist.
Edit: If you want to test your browser to see if it's vulnerable, you can use this page: http://www.findhard.com/firefox-1.5-buf ... rflow.html
WARNING! The above page is designed to trigger crash in gecko based browsers such as mozilla, firefox, k-meleon, etc. Going to the page is harmless, but clicking on "click me" on that page will attempt to trigger the vulnerability. If you use the user_pref trick, the browser will hang for a moment, then return to normal. If you use the history:0 trick, you will suddenly find that your history.dat file is massive.
Use either prefs.js or user.js and add
user_pref("capability.policy.default.HTMLDocument.title.set","noAccess");
To block this issue completely. You can also use noscript and block javascript on all sites except those in the whitelist.
Edit: If you want to test your browser to see if it's vulnerable, you can use this page: http://www.findhard.com/firefox-1.5-buf ... rflow.html
WARNING! The above page is designed to trigger crash in gecko based browsers such as mozilla, firefox, k-meleon, etc. Going to the page is harmless, but clicking on "click me" on that page will attempt to trigger the vulnerability. If you use the user_pref trick, the browser will hang for a moment, then return to normal. If you use the history:0 trick, you will suddenly find that your history.dat file is massive.
Cuite simple code in that page :/Drahken wrote:Edit: If you want to test your browser to see if it's vulnerable, you can use this page: http://www.findhard.com/firefox-1.5-buf ... rflow.html
Code: Select all
<script type="text/javascript">
function ex() {
var buffer = "";
for (var i = 0; i < 5000; i++) {
buffer += "A";
}
var buffer2 = buffer;
for (i = 0; i < 500; i++) {
buffer2 += buffer;
}
document.title = buffer2;
}
</script>
XnView Tweak UI - Tool to customize your XnView beyond the regular XnView options.
UI-less Settings - Documentation of all the hidden settings in XnView.
XFAM - Tool to create and customize XnView file associations.
UI-less Settings - Documentation of all the hidden settings in XnView.
XFAM - Tool to create and customize XnView file associations.
This might be of interest to Firefox users who are looking for a way to install the v1.5.0.1 update (en-US, 751K) offline:
Wiki's patch method failed for me. There has been a .MAR file at the FTP release location for several days. Oh well, another release should be available any moment now for those willing to wait and upgrade by easier ways.XnTriq wrote:This might be of interest to Firefox users who are looking for a way to install the v1.5.0.1 update (en-US, 751K) offline: