Slashdot Mirror
Mozilla 1.4b Loosed
An anonymous reader writes "The fine Mozilla folks have decided to bless us with the release of Mozilla 1.4b this weekend. Highlights include support for NTLM authentication, usability improvements, and lots of performance, stability, and site compatibility fixes. As always, the release notes have more detailed info on changes."
Mozilla 1.3.1 (bugfix update for 1.3) was released this week, too.
Google doesn't index user sigs, so stop trying to "Google Bomb" with them.
0.5 came out... long, long, long ago. 0.6 is the long awaited release with the new name.
ftp://ftp.mozilla.org/pub/phoenix/nightly/latest-t runk
Also check out all of the extensions, most of which still work on the latest nightly build.
1.4 beta came out on Wednesday, Slashdot is just late.
More specifically, you wanted to get fp AND (+4,informative).
Mozilla 1.4a is "alpha" (hence the "a"). Likewise, Mozilla 1.4b, the version being mentioned in this article, is "beta" (hence the "b"). Once Mozilla 1.4 is finished, it will be released as simply "Mozilla 1.4" and that'll mean it's stable.
Then a few months later some minor bugs will be ironed out (or in a few minutes some major bug will be) and that'll be Mozilla 1.4.1. By that time, Mozilla 1.5 may very well be starting its own release cycle.
Yep. As a matter of fact, there has yet to be a 1.4 release. That little b on the end of the version number (1.4b) stands for beta. 1.4a, by the same token, was (at least nominally) an alpha. The actual release is still a ways off.
Definitely! I love tabbed browsing, and the popup and cookie features are far superior to IE. Mozilla has become my primary browser. I've been investigating the calendar feature too. I plan on proposing that we implement it company-wide at my work. Mozilla has matured greatly and it's only getting better. You should check it out again.
The NTLM authentication feature is Windows only because it uses Window's own SSPI API. See this MozillaZine article for more details. Bug 23679 (http://bugzilla.mozilla.org/show_bug.cgi?id=23679 - you'll have to type it yourself, they don't allow links from Slashdot) deals with NTLM on other platforms.
Check out the NTLM authorization proxy server here.
That's what I use.
Is this what you're looking for?
Shameless plug: if you run Squid, here's mine.
$x='S24;r)>63/* h@<5+oZ)32"5cz';$me='phroggy'x$];
$x=~y+ -xz+\0-Tx+;print$_^chop$me for split'',$x;
Why not?
v. loosed, loosing, looses
v. tr.
1. To let loose; release: loosed the dogs.
2. To make loose; undo: loosed his belt.
3. To cast loose; detach: hikers loosing their packs at camp.
4. To let fly; discharge: loosed an arrow.
5. To release pressure or obligation from; absolve: loosed her from the responsibility.
6. To make less strict; relax: a leader's strong authority that was loosed by easy times.
timothy
jrnl: http://tinyurl.com/c2l8yr / foes: http://tinyurl.com/ckjno5
I wish they could make Mozilla a little faster and lighter, than add features to it.
They're working on this. Mozilla is currently one big app that does everything (browser, mail and news client, HTML editor, IRC client, etc. etc.). It's being split into 1) the Gecko rendering engine, 2) a browser code-named Firebird, 3) a mail client code-named Thunderbird, etc. Each application will be able to be installed separately. Once this is done, it should be easier to optimize each component for speed.
$x='S24;r)>63/* h@<5+oZ)32"5cz';$me='phroggy'x$];
$x=~y+ -xz+\0-Tx+;print$_^chop$me for split'',$x;
From my squid.conf:
/etc/squid_block.conf:
.doubleclick.com
.doubleclick.net
.doubleclick.org
.ivw.de
.ivwbox.de
/etc/hosts ...
acl block_hosts dstdomain "/etc/squid_block.conf"
http_access deny block_hosts
From my
Others just add the banner-spitters to their
I may be mistaken, but I'm pretty sure that to use NTLM authentication (over http) you have to implement the challenge response algorithm over special http headers (in addition to "NTLM" being specified as the authentication method). So I don't know what you mean by 'you could always do this.'
why run from Vincenzo?
This has been around since Netscape Navigator 2.0 at least.. probably was in 1.0 as well.
You can configure the "Type Ahead Find" to search plain text, too. Got to like that.
No, firebird will package with minotaur to provide e-mail.
Look at the roadmap for more information.
Ryan
bah.. I was almost excited.. until I noticed that NTLM was only for windows.
NTLM in linux.. now that would be sweet... esp for those sites which refuse to write web front-end systems that are actually cross platform.
You are incorrect. Prior to this release of Mozilla you could NOT authenticate against an NTLM service w/Mozilla. If you were doing any authentication at all against IIS it would have been basic authentication.
Add a link to firebird in your start-up folder, with "-turbo". It will then rest in your toolbar. When you go to launce firebird for real, the window will come up much quicker.
Ryan
No, domain\username only worked for standard 'clear text' http authentication, which on IIS servers maps domain usernames like that. Actual NTLM authentication is a different protocol altogether. If a server enabled NTLM authentication but not clear-text, you were out of luck. Also, I believe that NTLM allows for transparent authentication, where your current user/domain login to Windows is used (without having to type anything), though that may just be an implementation detail of IE.
Careful if you work a lot with bookmarks, you might hit a bug where you can't delete or move bookmarks (in Linux) or the new bookmark folder setting doesn't work.
I'm looking forward to getting my bookmark functionality back in the next release...
Someone is wrong on the Internet!
Thanks, Mozilla installer team! You have successfully produced an installer that prevents me from ircing while Mozilla installs!
"You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
I've never really used NTLM but from what I understand it's extremely convenient. Does anybody know if there's an open equivalent for this?
Yes. Kerberos.
SVG support is still very much incomplete; the browser won't recognise SVG that is embedded into pages using the embed tag (which is pretty much all SVG on the net, since that's what the Adobe plugin supports best). It also doesn't have support for the entire spec, although for basic static graphics, it is pretty much there. The libart licensing issue to which you allude is a simple incompatibility between the MPL/LGPL/GPL trilicense that Mozilla is released under and the LGPL of the libart library. That pretty much prevents mozilla including SVG by default at the moment. In addition, a lot of the SVG had a rewrite quite recently and, because no one has had time to review thousands of lines of new code, it's still living on a branch. That's important if you decide to compile Mozilla with --enable-svg set - to get the new code you need to pull the branch from CVS, otherwise you'll get the older, somewhat buggier code. For more details, including quite detailed build instructions, see http://www.mozilla.org/projects/svg/ If you think that duplicating cpu effort by compiling everything yourself is a waste of time, then there are regular svg-enabled builds contributed to ftp://ftp.mozilla.org/pub/mozilla/nightly/latest These come in two flavors, GDI+ (windows only) and Libart (Linux and windows). All svg builds have mathml-svg in the filename. If you're not on one of those platforms or want something cool like Xft and SVG, you'll need to complie yourself, I'm afraid. For more information, see the netscape.public.mozilla.svg newsgroup.
If you're running a 2.3 servlet container, drop in the jCIFS NTLM HTTP Authentication Filter. It's available here:
http://jcifs.samba.org/
but the latest jar is here (website a little broken):
http://users.erols.com/mballen/jcifs/
All you need to set is the domainController init parameter. There's also a base servlet for pre 2.3 containers that don't support filters.
Also take a look at the Davenport project which permits IE users (and I suspect Mozilla users now) the ability to browse the entire WAN using the negotiated NTLM pawssword hashes as a WebDAV folder or using plain HTML. Again, uses jCIFS.
It should be "released". The verb associated with "loose" is "loosened".
Comment removed based on user account deletion
If anyone has any problems with NTLM proxies, I can highly recommend this little app.
Yes, it's a hosts file which redirects any lookups to that domain to 127.0.0.1 where your local web server will pick it up and throw back a 404 error. It doesn't need any software support to work.
I am TheRaven on Soylent News
Mozilla 1.4 beta includes a security fix to prevent web pages from loading XBL from file: URLs (bug 200691, fixed). Unfortunately, the fix also prevents user style sheets from making web pages load XBL files from file: URLs (bug 204140), which affects some users of my XBL Flash blocker (blocks Flash using a placeholder that you can click to play a particular Flash animation).
If you saved flash.xml to disk and used a file: URL for flash.xml in userContent.css, you need to change userContent.css to load flash.xml from a local web server or from the original location on www.cs.hmc.edu instead. Otherwise, Flash won't appear at all (not even a click-to-play placeholder), and you'll see this if you open the JavaScript Console:
"Security Error: Content at http://www.shockwave.com/sw/home/ [or another URL with Flash] may not load or link to file:///C:/.../flash.xml#obj."
The shareholder is always right.
Oh, I thought you were talking about a replacement for NTLM in general, not specifically for web browsers. I've never heard of a modern way to use kerberos for http authentication either, unfortunately.
however, if you do that, firebird will always suck up memory, wether you use it or not
You can see the about:* pages for MSIE and edit them in the registry at Hkey_Local_Machine/Software/Microsoft/Internet Explorer/AboutURLs.
Joe Llywelyn Griffith Blakesley
[This post is in the public domain (copyright-free) unless otherwise stated]
The so-called "webpage" is totally blank unless JS is enabled. I then enabled JS. Frankly, I prefered the version without JS enabled. Initial observations: some characters are replaced by question marks (as they do not exist in the default character encoding), the page has no useful content and the layout sucks.
No character encoding is sent with the page or included in the page and it has no doctype.
After working out the character encoding and putting in the doctype of HTML Transitional (as that is the most lax one and any old crap passes), I validated it. Enjoy! 621 errors including non-SGML characters (they exist?)
Now look at the CSS - yes all of the plethora of CSS - argghhh.
That is not a webpage. It is crap.
BTW, it looks like a bug has been filed. In fact there are hundreds of tech evangilism bugs for ESPN.
Joe Llywelyn Griffith Blakesley
[This post is in the public domain (copyright-free) unless otherwise stated]
Unless, of course, you're talking about the verb 'to loose'... in which case the verb is quite obviously loose and the past participle is loosed.
I'm not sure about your experience (or query techniques), but I submit bugs to several projects, Mozilla included, and have never had this happen to me.
You might want to consider that it may just be something you're (not) doing that's causing these results before you give such sweeping advice in future.
BD Phone Home!
Shameless plug. Like you weren't expecting it.
Mozilla uses arena allocation in almost all allocation-heavy parts of the code, as a matter of fact.
> Standard HTTP authentication is hideously broken. It's plain text. Period. That's all there is to it. It's goddamn plain text.
Bogus. See RFC 2617 section #3, which outlines Digest (MD5) authentication. Digest auth is far superior to NTLM auth because it uses stronger crypto. The only reason to support NTLM is for compatibility with older microsoft products.
Darin
No, loosed is correct if a little archaic. Loosed is to release of let go, as in "Loosed an arrow".
You can't win Darth. If you mod me down, I shall become more powerful than you could possibly imagine