Slashdot Mirror
Security-Updated Versions Of Mozilla Released
petabyte writes "As mentioned in this Mozillazine article, there are new versions of the Mozilla Suite (1.7.2), Mozilla Firefox (0.9.3) and Mozilla Thunderbird (0.7.3) available. They address 4 security bugs (linked from the Mozillazine article). Unlike Firefox 0.9.2, these can't be fixed with just a XPI upgrade, so you'll have to download a new binary and install."
Due to Microsofts previous wealth of experience in fixing security problems, can it be true that their patching process is more effiecient than the Mozilla's?
Why otherwise would it be required to download an entirely new browser to fix a few problems?
I'm getting tired of the whole uninstall, delete, re-install, get plugins, import bookmars, set settings, get skins (optional) routine. I wish they would hurry up and fix the installer so that I could simply update the browser and save all my stuff.
"I can not bring myself to believe that if knowledge presents danger, the solution is ignorance" - Isaac Asimov
Any idea where to get RPM's ?
If things keep going this way we end up with 0.9.55 or seomething. They should think about some patching systems..
The vast majority of IE updates have been = 250 kb.
According to the forum, a libpng vulnerability also just happens to crash IE.
There are a huge number of yeast infections in this county. Probably because we're downriver from the bread factory.
Yes
I suggest we tell the Mozilla Foundation guys to buy some OReilly security titles and read up, and come back with something that's actually not buggy
Hi, welcome to Firefox beta .93
Anyway, do you think that FF/Moz should take the Windows route and refuse to acknowledge vulnerabilities, and simply hope they pass by with no one else noticing? Please, think a little bit before posting a comment.
Sorry people, it was just an urge and I feel really stupid now, so I'm sorry!
Anyway, I am really glad to see this. I work at an ISP, and deal with a lot of these ad/mal/viral-ware that gets onto IE despite our best efforts. So, we have been deploying Mozilla Fire(something) and Thunderbird programs - and PEOPLE LOVE IT!
What makes them happy - makes me very happy!
'/dev/wit' is not available.
Well I don't know about you, but the 503 errors are gone for me.
"Sockets are the standard networking API, also useful for stopping your eyes from falling onto your cheeks" zeromq.org
...they make an installer that will upgrade the older versions and keep all your plugins/settings? I've got a multiple list of Mozilla versions in my Add/Remove Programs box...very annoying...
"Anyone that has ever gotten an idea based on any of my work and done something better with it-good for you."--J.Carmack
However, those 3 Firefox holes were fixed faster than the 1 IE hole. Mozilla releases patches as soon as they've fixed the problem. Microsoft? They wait until Wednesday night. If a problem is fixed on a Thursday, and it's something already exploited, then most people affected (the clueless windows users) are basically screwed.
ROMANES EUNT DOMUS
i know it'll be an unpopular one about these parts, but: yeah, i'm with you bro. i should only have to click "Upgrade" on the Moz page to get the newest browser. Bitch and moan all you like, that's the way it should be: an icon in the corner: "upgrade now"...you can ignore if you like, you can build from source if you like, but me? Hell, just get me a new browser now....when i click. Yeah, yeah, save me all the "but, if it's just click and go and the security and the users and malware pages"...save it. Code against that, let me upgrade on the fly (restart okay...reboot not-okay) with a click. Tough to do? Hell, look about at the OS that this browser runs on (for the most part at this time): click and do for 'em eh? Not that much to ask. Give 'em a, 'no thanks, i'll do it the hard, trusted, but sure way' button. i'm not banging that in any way...hell, with some packages that's the only way i'll trust 'em. Moz is a safe bet: give us s 'click an' go to the newest version' button k? Yep.
I might be dafter than a regular brick, but I can't see that the FireFox Release Notes mentiones what is actually new in this release?
Oh well... perhaps I'm just weird for wanting to know what's new in this sub-release.
You miss the point.
It's still a buggy, insecure application written by the same people who have a rep for writing buggy, insecure applications before.
Time of fix does not matter if you have thousands of errors, and fix them asap, but the competitor (IE) has one error and it takes a week to fix.
That, and incorrect rendering of Slashdot. And fake GUIs with Firefox.
I would imagine people like it because they can customize it to however they like.
Thats why i switched... Plus Tabbed browsing.
Yeah, Firefox beta, right up there next to Mozilla 1.7.2. Just keep talking about how it's all 'unfinalized, buggy beta software' and I'm sure you'll convince a lot of people to stop using Internet Explorer.
That being said, I'm glad to see the bugs being acknowledged and fixed, even if I don't personally agree with the way some of these bugs have been handled.
Schlock Mercenary
I still have Firebird 0.7 (I'm lazy)
I would've upgraded by now, but I don't want to have to redo all my settings and junk.
The timestamps in the 0.9.3 release directory show that the Windows binary has been updated.
Got the supposed 0.9.3 for Windows earlier today, which didn't work. Process appeared in task list, but no window came up. Also, any place the version number appeared, it was still listed as 0.9.2. With the caveat that I don't know how those folks do their releases, I'll say that with the proper automation, that oops-i-forgot-to-increase-the-version-number snafu should never happen.
http://bugzilla.mozilla.org/buglist.cgi?bug_id=25
IE catches shit for 2 out of the 4 bugs.
libpng buffer overflow - a lot of bitching goes on around here with regards to "OH M$ EVEN HAD AN OVERFLOW IN BMP HANDLING IN IE!!!"
null (%00) in filename fakes extension (ftp, file) - Variation of this got IE in trouble...
While this is not a showstopper, can somebody explain me why Firefox for mac ever since 0.7 has a problem with Expose feature? IE one can se a small window attached to the main window?
Also, why is it we cannot search the bookmarks in the sidebar wihtout crashinf the whole application?
Small annoyances but we are getting awfully close to 1.0 and still no sign of improvement.
Safari is catching up in terms of speed and is looking ever more appealing!
Artificial intelligence is no match for natural stupidity
Huh? This isn't very off-topic. One of the vulnerabilities that this version of Mozilla fixes is related to libpng
I did the uninstall install routine and everything was borged: I couldn't close tabs, was unable to go back one page and the context menu was gone. Took me really, really long to fix this manually.
I just installed 0.9.3, its listing inside the installer as 0.9.2 still.
Your right about automation, even InstallShield can do it!
liqbase
After all, this security flaw was announced to the public hours ago! Next thing you know it, they'll say that the patch doesn't support Win/386, or something. :-(
Help! I'm a slashdot refugee.
249004 Importing false CA certificate leading to error -8182 (pe...
# False certificates aren't really an exploit
250906 null (%00) in filename fakes extension (ftp, file)
# fake extense aren't exploits
251381 new libpng buffer overflow vulnerabilities
# okay that is an exploit
253121 lock icon and certificates spoofable with onunload docume...
# that is not an exploit either
I think they should be more like bugs. I think Mozilla is just trying to play it safe. Ironically by them "being up front" they may end up driving people away from the browser...
--Joey
Firefox, thousands of errors. IE, one error. Do you still have some of whatever you were smoking?
You miss my point. I'm basically saying that when there's a Mozilla/FF bug, you get your update, and most Mozilla/Firefox users are smart enough to update it. With IE/Windows, it may be a very long time before a user applies the patch, if they ever do. And then they complain when "windows doesn't work right."
ROMANES EUNT DOMUS
http://slashdot.org/comments.pl?sid=116638&cid=987 7985
This would appear to clear up after removing the old cookie slashdot sets.
>>What the initial poster was talking about was a motherfucking update, NOT a service pack.
Since when is a service pack not an update?
Update:
1. Information that updates something.
2. The act or an instance of bringing something up to date.
3. An updated version of something.
Now. Please. Tell me how a Service pack doesn't count as an update?
NeoThermic
Use my link above, or to view my server, NeoThermic.com
That was a lame troll.
I downloaded the linux installer version (firefox-0.9.3-i686-linux-gtk2+xft-installer.tar.g z)ked from the Firefox page and itself seems to have a little bug:
** (firefox-installer-bin:3120): WARNING **: Invalid UTF8 string passed to pango_layout_set_text()
It winds up with an incomplete installation. However, if you just download the gzipped tarball without the installer from here and untar it over your old firefox directory you should be just fine.
Use this link instead: http://ftp.mozilla.org/pub/mozilla.org/firefox/rel eases/0.9.3/
tasks(723) drafts(105) languages(484) examples(29106)
Mainly because a service pack is not the norm, it rolls all previous updates into one package. A more useful comparison in this case would have been a TYPICAL download for a security update i.e. in the 250kB range.
When I looked at the link on FireFox's home page a few minutes ago, it was still pointing at 0.9.2. Thus my post above about an incorrect link.
I hope they don't mod you down as redundant.
tasks(723) drafts(105) languages(484) examples(29106)
yes and firefox is a sub 1.0 "technology preview" while IE is version 6 and still buggy and insecure.
Snowden and Manning are heroes.
i wonder if the people who uncovered these bugs qualified for the $500 payment or if it contributed to them being found.
So what are you getting sick of? None of the posts made before you are making these statements that you are supposedly seeing so many of that you are getting outraged over it.
Come on guys, the cert. problems were legacy Netscape 4.x problems. This goes way back. Programmers in the ninetys created bugs too.
It's only the 5th, I'm sure IE will have caught up and overtaken Mozilla by the end of the month.
Touche'. Although I've never thought of Moz at V1.0 to be usable enough to make into my main browser anyway. Hopefully FF1.0 will be really really redicuosly good working.
However, it's my opinion that FF >> IE, in so many respects as to be overwhelming. I was having a conversation with someone the other day about FF extensions, and how they do so many cool things so easily. How will IE ever be able to catch up? It seems like anything for IE with the usefullness of the FF/Moz extensions (10k - 100k), requires a 20x larger download and another program that needs to run constantly (i.e, pardon the pun, a program that uses more resources and is a pain in the arse.) Even if IE makes tabbed browsing possible, and blocks pop-ups as they claim, it will never ever catch back up.
looks like the mozilla binary builds for x86_64 havent been updated yet.
Slashdot not rendering properly is not a problem with Firefox, rather a problem with the non-standard codebase of Slashdot.
What is your penile percentile?
I use an invisible root window in my application as well. Many applictions use invisible windows, and they do not foul Exposé at all. Exposé will not show an invisible window, nor will it show an offscreen window (which is frustrating to me, as I have several tools that try to remember where windows were last displayed even on smaller monitors).
I really do not know what Mozilla is doing, but it is not that simple.
Bít, zabít, jen proto, ze su liska!
When I goto 'Help' -> 'Release Notes' on Thunderbird's text menu bar, IE opens... why is that? This occurs even though I've disabled access to IE in the WinXP 'Set Program Access and Defaults' section.
Yeah, i see a lot of people on this list complaining about Mozilla having so many patches... dang, at least they put them out there... also im sure the opensource nature of mozilla/firefox lets many eyes see the bugs... while in IE there could be millions of little goodies that could be exploited and we would never know. I'm just impressed that the coding team has fixed the bugs so quickly. Yes.. they do need to build in a better patching mechanism.. but every project has a few growing pains.
I grabbed the 1.7.2 source tarball and configured as usual (Linux/gtk2, disabled everything but the browser), but there appear to be some files missing. The build first bombs when trying to create nsBuildID.h (missing the Perl module Moz/Milestone.pm, which I assume is part of the developers' environment). If I hand-copy nsBuildID.h.in to nsBuildID.h, it then bombs later because a variety of the needed Makefile.in files are missing (there are a bunch of warnings about this during configure).
I tried grabbing the 1.7.2 release directly from CVS, but the same problems occur. Anyone have any better luck? Was there an FM that I forgot to R? I had no problems building 1.7 from source by the same procedure.
Not on Gentoo, you insensitive clod!
I noticed 0.9.3 doesn't fix the UI Spoof using XUL mentioned a few days ago... Could this mean what I think it means....
Not really, the Mozilla update only fixes four problems
Does the "Periodically check for updates" feature work in Firefox? It has never in the past informed me of an update, and even now when I manually check by selecting "Check Now" it currently tells me no updates are available.
An extension is available for Firefox that I'm desperately wanting in Mozilla. It allows you to set the default Text Zoom for all new windows and tabs.
Does anyone know if this is possible in Mozilla?
The only ways I can see to accomplish a silent install are either:
- rewrite the installer so it actually does work (pain in the ass)
- or use the
.zip version and completely re-implement the install process in a batch script (even more annoying)
This is another one of those "enterprise" necessities that the developers seem not to have figured out.I have never uninstalled Mozilla to run an update. Why waste the time? It overwrites and updates any setting changes while keeping your preferences and profile saved up very nicely.
Again, why waste the time in uninstalling just to move up to a newer release of Mozilla?
If you ignore the other uses of a tool, does that make the tool less useful, or you less useful?
The new Mozilla Firefox release fixes four security problems and all the other bugs that have been fixed in the aviary branch. Microsoft, on the other hand, hasn't published fixes to IE's layout engine since 2001.
I have never uninstalled Mozilla to run an update. Why waste the time?
I'm in the habit of uninstalling the previous Mozilla suite because I remember when Mozilla changed profile formats from nightly build to nightly build, and anybody who submitted a bug report had to delete the profile first.
A few random security flaws found. Imagine if it was worth thousands of dollars to you to find and exploit these flaws so you searched and found them months ago as part of your full-time work...
I didn't know RealNetworks invented Red Hat's package format.
No you idiot. Firefox has a Gecko engine, which has been around from the days of Netscape.
So a sub 1.0 technology preview is using rock-solid technology tested and maintained over the last decade.
Version numbers don't mean shit.
Yea. I know.
How come it is when as a Linux user I visit the Firefox, Thunderbird or Mozilla distribution top pages the web developers were smart enough to test for my OS via the HTTP headers but not smart enough to at the very least put a Linux friendly, scaled-down screenshot of these applications on the front page along-side the Download for Linux and Tux Penguin icon?
Instead I get to see that butt-ugly XP look for screen shots to the right of Firefox the browser reloaded.
That was what an update should be!
.mozilla directory. The only nit to pick was that search plugins aren't stored in userspace, but copying them over is trivial.
Upgraded from 0.9.1 to 0.9.3. Didn't have to fiddle with turning off extentions or re-downloading them and reconfiguring them this time. Continues to use the same
To-do List: Receive telemarketing call during a tornado warning. Check.
Where are the Changelog? From the website, you only know there is a new version for these three apps, but there is not description of what has been changed since the last version?
I remember that for every release there used to be a link to the Changelog with details on all the new changes since the last minor update (eg v1.6.1 to v1.6.2). Is the new site/design just too "user friendly"?
(After some browsing I did find a link to an *external* website with change details, but can't find it again now... @_@)
Codeala - Just another mindless drone
Prior to 0.9, Firefox was only being updated ever few weeks, with each release holding many fixes since the last release. I think the increase in releases has mainly been due to the fact that in the last month or so the user base of Firefox has gone up dramatically.
I am sure this has put a lot more stress on the Firefox dev team because now people are starting to rely on their browser to be as good as IE and with whole organisations now looking at using Firefox over IE, the pressure must really be on to make sure it lives up to expectations.
Once Firefox hits version 1.0, people will get real shitty if it has bugs and security flaws, so the more they fix during 0.9.+ the better. Until then, I am happy to keep downloading it, daily if needed.
Keeping in mind that today is 2004/08/04...
Critical Bugs fixed in Mozilla 1.7.2/Firefox 0.9.3/Thunderbird 0.7.3
Bugzilla Bug 249004: Importing false CA certificate leading to error -8182 (perm DoS), especially exploitable by email
Patch v7, adjusted for OS/2: patch, 2004-07-27 16:44 PDT
Bugzilla Bug 250906: null (%00) in filename fakes extension (ftp, file)
Prevent creation of ftp: URI's with nulls in them: patch, 2004-07-29 11:19 PDT
Bugzilla Bug 253121: lock icon and certificates spoofable with onunload document.write
Final patch for checkin (trunk): patch, 2004-07-27 17:25 PDT
Major Bug Bugzilla Bug 251381: new libpng buffer overflow vulnerabilities
combined set of fixes: patch, 2004-08-03 14:09 PDT
Now, read those dates again for the critical bugs. Then note the day of the week. 3 Critical bugs were fixed on Friday, but not rolled out until... here's the real kicker... the next Wednesday.
GLaDOS for President 2016! "Well here we are again. It's always such a pleasure." -- GLaDOS, 2011
Hmmm..
Keeping in mind that today is 2004/08/04...
IE 6 still had a major exploit in it for months and M$ sat on it and did nothing. Only last week, the update came out to patch it. And I shouldn't use the term patch, since it was more or less a bandaid.
(http://www.securityfocus.com/bid/10473/info/)
Lets check the dates (keeping in mind, the date was when it went public). The exploit was issued on June 6 and the rollout was July 31. WOW.. Nearly 2 months till that was patched.
So before trying to accusing Mozilla of sitting on some know problems.. Why don't you look to your friends over at Redmond. They really take the cake when it comes to sitting on known problems.
Actually, it was a bug in Firefox. Search for bugs with Slashdot in the summary and at least 5 votes.
On a lot of stock systems the offending line in mime.types is: .rpm extension in the wild.
audio/x-pn-realaudio-plugin rpm
and should be:
application/x-rpm rpm
I have not come across any realmedia files with the
.
Anyway, do you think that FF/Moz should take the Windows route and refuse to acknowledge vulnerabilities, and simply hope they pass by with no one else noticing?
0 03 7210&tid=154&tid=128&tid=172
Ahh, you mean like this?
http://it.slashdot.org/article.pl?sid=04/07/31/
I'm sorry I dont know why I brought it up actually, I mean the guys at Mozilla only knew about it for 5 years.
One way to keep updated about Mozilla releases and developments in many different areas is by subscribing to one of the developer mailing lists:. html
... I wrote a note this morning but I imagine they are submerged.
http://www.mozilla.org/community/developer-forums
MozillaZine.org also does a good job of summarizing the development, but it's almost always 2-3 days late.
For the true cutting-edge lizard in you, there's always the feedhouse:
http://feedhouse.mozillazine.org/
And of course it has RSS feeds.
For those of you wanting to know when specific bugs have been fixed, I find the "edge" websites to be most simple to read (although not thorough):
The Rumbling Edge (for Thunderbird):
http://weblogs.mozillazine.org/rumblingedge/
The Burning Edge:
http://www.squarefree.com/burningedge/
Saddly, there is no information about the releases almost a day after they have been out on http://mozillaeurope.org/en/
Enjoy!
Notepad specialist & FAT administrator, group training available
This version broke something related to the proxy configuration. I can no longer authenticate myself at any website using saved passwords if I use my university proxy server. :(
What? Version numbers don't mean anything. Closed source version numbers seem to be based on a marketting department and open source version numbers seem to be based on some geeky lingo. Firefox may be at 0.93, but the underlying technologies have been in development for years.
It's a great browser and I use it on windows at work and linux at home, but just because it's version 0.93 doesn't mean I can bitch at microsoft and appologize for mozilla.
You thought wrong, pal. Programs bigger than Hello World that are also bug-free are rare, if they ever exist. The advantage of FOSS is the development model that allows peer review, so bugs are quickly fixed. The FOSS model may be not perfect, but can generally attain a better security record than proprietary solutions.
What I find odd is that despite this release being focused on patching security vulnerabilities there's no noticable mention on the web site of the importance of this update. I leave my home page set to the FireFox page in hopes that there will be a clear message saying if there's a need to upgrade, but the page itself only says 0.9 -- and I'm fairly confident that the average user isn't going to figure out the difference from the front page (which now says 0.9.3, but how many users are aware of what version they're using?) It wasn't until I read slashdot that I was made aware of the release of this security update, and who knows if something could have happened since then?
While I don't expect a windowsupdate.com for Mozilla, being that a main criticism of users is their failure to keep software updated why don't the developers make it more clear that an update is even present?
i closed my eyes and prayed for one. then i blew out the candles. get ready to do some terminal hopping :(
You need people like me so you can point your fuckin fingers and say, "That's the bad guy." So what that make you? Good?
Just tried Moz 1.7.2 and the anti-aliased fonts were gone (maybe build options?). Furthermore, I've faced some segfaults when browsing Slashdot. Reverted to Slack 10's original Moz 1.7.
My 2 cents.
But I use Gentoo you insensitive clod!
See its home page.
Ant(Dude) @ Quality Foraged Links (AQFL.net) & The Ant Farm (antfarm.ma.cx / antfarm.home.dhs.org).
The windows version listed for download at the FireFox product page is not the same as the windows version listed on the main download page.
Just a heads-up to everyone rushing to download without checking. The mozilla.org web guys might want to fix that too.
Cheers.
user@host$ diff
At least one of your numbers is off.
6 8739/2004 -07-11/2004-07-17/2
Bug 250906 has was reported to the Mozilla foundation on 11 Jun 04.
link:
http://www.securityfocus.com/archive/1/3
problems that Firefox .9.x has had with slashdot. It seems that the side menu bars randomly overlap the main page content. It really looks ugly.
Well whatta ya know. Non IE browsers aren't infallible.
On top of that, IE updates don't require an uninstall. It would be a waste of the millions of dollars and the years of court battles to have IE uninstall just to have for an update?
Granted, I'd like to see a patcher/updater that works, but this is still sub 1.0 software.
Rename current firefox directory.
Install firefox.
Copy plugins folder to new install.
Load firefox.
That's it. Your bookmarks and settings are in your profile, NOT in the install directory.
Some plug-ins will need to be reinstalled.
1: Control Panel -> Folder settings
:)
2: File Types tab
3: Find (NONE) URL:HyperText Transfer Protocol
4: Click Advanced
5: Select the open action, and hit Edit
6: In the application used field, it should say something like "C:\Mozilla Firefox\firefox.exe" %1, or whatever your FF directory is.
7: Make sure Use DDE is checked, but clear the DDE Message field (it might have a %1 or something in it).
8: Hit OK twice.
9: Repeat steps for (NONE) URL:HyperText Transfer Protocol with Security
10: Give it a whirl, Thunderbird should now launch Firefox instead of IE.
It WFM anyways.
The main executable for firefox is ~6MB... It would seem to me that this is not a very efficient method for updating the program. Perhaps they'll design the next version with modules that can be updated more efficiently by smaller downloads?
Anyone know why the version information for the file for 0.9.3 lists 0.9.0.0? Right click firefox.exe and then properties then version tab.
IE has an executable of a few KB (WinXP).
So what's the big deal? Oh, and BTW mozilla.org have some fairly kickass servers, well able to stand up to a slashdotting.
Err that's what I get for not using preview.. Better:
That's what I said.. "The only addition of permissions in moz is being able to link to other file: locations." By link I don't just mean <a href>. <iframe> can link too, and since they're the same "zone", you can read their innerHtml, which usually contains the contents of the file.
"Local Zone" in IE means you get access to a lot of ActiveX objects that aren't allowed in web objects, like ADODB.Stream, which can actually *write* files to your hard drive.
bananas like monkeys.
Dubya is an ignorant, arrogant, insenstive, war-monger. Anybody But Bush!
Scott
©20014 angrykeyboarder & Elmer Fudd. All Wights Wesewved
Did you even try Mozilla 1.0 etc at all?
Mozilla on Windows (since the then called Milestone releases) and for more than 18 months on Linux has been my main browser over all for years. It was "usable enough" since the beginning - otherwise I wouldn't have used it.
During the recent Ject issue, I looked into trying to rip out IE. I have like 120 machines to look after, I don't have the money to active directory, and I have certain limits. I'll use psexec but even so, its a long tedius job maintaining 120 machines.
:shell: made me rather glad I had'nt committed a massive workload in the name of switching to a new bugwridden, secuirty glitched browser.
Now, getting back to IE, yes, I did look at ripping it out. Not so easy on XP Pro as any user who signs in gets linked to the program in default. I could banjax the progam directory, and stop it being used that way, but if I do that, I believe I can still call windowsupdate.com via an explorer window. I presume however, that anyone using the same method uses the same cuplable browsing that impairs IE. Thus I'm not really solving the problem, just fending it off until the users get smart.
In terms of Mozilla and Firefox, sadly I have to say the security failure regarding
Today, I'm told if I had rolled Mozilla, someone's just committed me to a whole sale re-roll out just because they can't patch, they have to fix it in a new install.
I've said it before, I'll say it again, doing this to me just puts me right off even contemplating it. Next week, watch out, the next Mozilla issue will rear its ugly head.
I sadly have to put aside the OSS/MS stuff, because whatever I put out there has to work, and its not about Ideaology, I do not care about Ideaology. Mozilla is a fine effort, but the security side leaves much to be desired. One is hard pushed to claim that its a quantum leap in browser security.
AdmV
We`re all equal
Hi, welcome to Firefox beta .93
As if the term "beta" really means something to an open source project. Netscape released beta-quality software and gave it a new version number. I guess what you're saying is that Firefox should take the opposite approach... just remain at beta forever and you can lower people's expectations.
-a
Now if only they'd fix the tremendous slowdown on big pages I'd be a happy camper.
> Since when is a service pack not an update?
Since it includes the ENTIRE browser and doesn't update anything perhaps?
"Internet Explorer 6 Service Pack 1" is NOT a service pack - it's the ENTIRE of IE 6 PLUS service pack 1 and doesn't require IE 6 to install. It's not an update because it doesn't update anything - it's the whole installation of IE6.
Perhaps you should have read the VERY FIRST line of the linked page before posting.
While you all complain about installers:l ?it=4273&cid= 1
i d= 1
http://www.auscert.org.au/render.htm
and
http://www.auscert.org.au/render.html?it=4273&c
are the actual problems.
Will someone please point out that Firefox 0.9.3 DOES NOT SOLVE all of these problems!!
Looks like one up for IE6, today....
Yes, and not a single one of these bugs are Gecko bugs. What was your point?
Well I guess there's no chance of Bush being an admitted War Criminal during Vietnam, what with him being too busy going AWOL from the National Guard.
I can't fathom how you Bush fanboys can possibly consider Kerry's war record as a negative point when Bush The Deserter doesn't even have one, the fucking pussy ass mommas boy!
Yep, sounds easy. I'll bet it wouldn't be too hard to CODE then.
I never understood why some coders will not take these "simple" things and just put them into the damn installer.
My beliefs do not require that you agree with them.
IE is just so much more than the base FireFox. For example vb scripting, ActiveX controls and support. And not to forget... the ms java stuff.
Yes, but the problem is IE is already installed into Windows. Therefore, it's technically an update.
"Well, I am mad, and I'm a crazy fucka when it comes to tea"
Installing over a previous version can cause problems. Delete the installation directory before you install the new version and it should work fine. Bookmarks, Themes, and Extensions should all be stored in your profile directory and won't be touched. You'll probably have to reinstall plugins, however.
My username does not make me Apathetic. It's irony, get it?
Have they fixed the bug that repeatedly asks me to upgrade to version 0.9 (even though I am running 0.9.2) every time I open the damn thing? I've let it do the "upgrade" about a dozen times - but the version always stays at 0.9.2 and it always gives me the upgrade notification when I open the browser.
Only in the same way that if you have Netscape 4.71 installed, then Netscape 6 is an "update". Even though a Netscape 6 installation includes every single file needed to run Netscape 6 and doesn't reference a single file from the 4.71 installation.
I'm not going to argue about it - I think everyone realises that the original post was wrong in the context in which it was said. The poster didn't realise that his large "update" was actually the whole of IE6. He probably thought it was just a service pack.
Actually, I think it was more the feel of it. I really don't like the netscape-style toolbars, for example, or the load time on this old box I use. I'm sure it was a fine fine product sir.
t'was a cinch downloading the entire browser in the case of firefox. but i do agree, the problem with MS is much more serious, they have many more issues to handle- since the browser sits tightly intergrated with the OS there might be host of problems, and the patched approach it has to be. thier footprint for the IE 6 was large above 20 MB - i guess with many other bits and pieces.
Thanks, but that's not quite the same thing.
I previously had Mozilla Firebird 0.7 installed on Windows 2000. I've tried to migrate to Firefox befoew, but certain things (like Sessionsaver sessions and the theme) didn't work/look proper[ly].
/window sessions so that they come back up after closing and re-opening the program. It's really nice when you have 15 tabs that you have the way you like them and accidently close the window. Qute is the Firebird theme and the most popular on the themes site.
.zip files and put them where I want them, so if you install using an installer, YMMV.
For those that don't know, Sessionsaver can save tab
Previously, all of my settings for Firebird were kept in C:\Documents and Settings\%username%\Application Data\Mozilla\Phoenix\ and there was a file in \Mozilla\ called pluginreg.dat.
I have always downloaded the
Here's how I got my settings back with the Firebird theme and all of my tabs back open. There's no real haX0ring involved here, but in the case that any one wants to do this, this is what worked for me. (Gripes to follow.)
Download Firefix 0.9.3
I downloaded and unpacked the Firefox zip file for Windows (ftp://ftp.mozilla.org/pub/mozilla.org/firefox/rel eases/0.9.3/Firefox-win32-0.9.3.zip).
Load Browser, Migrate Settings
Then, I loaded the browser and it prompted me as to whether or not I wanted my old settings migrated. I did, and selected the default options. The browser loaded and my homepage and network settings were there (YES!).
Download and Install Qute
Now, I liked the way Firebird looked and the way my tabs were saved by the Sessionsaver 0.2d extension. So, I went to the Themes manager and clicked Get More Themes. I downloaded and installed Qute. Then, in the Themes manager, I selected the Qute theme and clicked the Use Theme button. It didn't show up in my browser window right away, but I figured "maybe it needs me to shutdown and restart." So, I wasn't too worried.
Download and Install Sessionsaver 0.2d
Then, I googled for "sessionsaver", and got lucky. I installed the Sessionsaver extension. In the Extensions manager, it asked me if it wanted me to install it to my user preferences folder. It suggested that this way, it wouldn't have to be reinstalled when I upgrade the browser. I know that's not true, but I said yes, anyway. I loaded up an extra tab and a window to see if it would load them back up the next time.
Restart Firefox
Much to my surprise (and excitement), Firefox didn't open back up with my test windows and tabs, but my old Firebird session!
I went through this process again (making sure to remove my \Mozilla\Firefox folder and any added files and the program folder made when I unpacked the zip file), just to make sure I wasn't crazy.
Now, for the things that annoy me:
1) The Qute theme isn't EXACTLY like it was in Firebird. The buttos are shinier or something. I may write to the designer or search around for an older version if I can, but I'm going to live with it for now.
2) The Extentions, Themes, and Downloads windows suck up tons of CPU time when I move my mouse cursor between the panes and in and out of the windows. WTF?
3) The Download manager. I personally preferred the old progress windows from Firebird. I know there's an extension to allow me to use external programs for downloads, but I really did like those little windows. At least give me the choice of using the manager or the windows. The one function of this that I do like is t
Withdrawal before climax is very ineffective and those who try this are usually called "parents."
I've once again, run into one of the classic free/open source software problems, that seem to plague even the larger projects like mozilla.
I run Debian linux on a PowerPC mac, and it's not at all easy to find pre-built binaries for my architecture and platform combination. "No worries," I say to myself, I'll just grab the source code and build it myself (which I was able to so successfully for the 1.7 release, and am running at this very moment). Well, the released 1.7.2 code does NOT build, even with the instructions on the project's UNIX build pages. I checked again, but to no avail.
Moz developers, I know you all have quite a bit on your plates, but sometimes it wouldn't hurt to do a clean build, from about-to-be-posted source and instructions, to make sure all that's being released is actually fit to be released...
Yeah they are totally screwed. What the fuck are you thinking?!?!
The majority of all security holes are patched and then publically disclosed. The adob.stream was a rare occurance and I may even fault the idiot who released it before contacting MS first.
Last I checked Mozilla is separate from the OS. Patching it has no effect on the rest of the operating system. IE on the other hand needs to be tested throughly to be sure it doesn't suddenly break 1 of 234347 apps. You'd know this if you actually used Windows.
Hey, check it out dude:
Gentoo fan page
=)
Cheers
Stor
"Yeah well there's a lot of stuff that should be, but isn't"
The fact that Miguel is an excellent coder does not suddenly make him into someone who has good judgement. Check out the links on the bottom of his homepage . .NET developer, I think is a cool project), but it's pretty sad that such a smart person could have such one-sided and ignorant political views. That film he links to at the bottom is even more of a propoganda film than Michael Moore's latest... The trailer with sad music and a billion shots of children made me want to throw up, and Miguel called it "must see".
I realize that this has nothing to do with his work or with the validity of Mono (which, as a
and get my dl speed right now. And some people are wondering why I prefer being an Anonymous Coward..
Here here.
It's "Hear, Hear" you nit.
Excellent, that did it. Thanks for the tip, GIR!
I've had it with the two recent FireFox issues. I thought it was good software. Back to IE i go.
Enjoy it when he gets reelected.
No, i was mocking the parent post that got modded down to oblivion.
The New York Times logon does not work with Firefox 0.9.3. It worked with 0.9.2; I didn't change anything on purpose when I installed 0.9.3 over it.