Slashdot Mirror

← Back to Stories (view on slashdot.org)

New Default: Mozilla Temporarily Disables Flash In Firefox

Posted by timothy on from the just-sort-of-a-dull-glow dept.

Trailrunner7 writes with news that "Mozilla has taken the unusual step of disabling by default all versions of Flash in Firefox." Two flaws that came to light from the recent document dump from Hacking Team could be used by an attacker to gain remote code execution. From Threatpost's article: One of the flaws is in Action Script 3 while the other is in the BitMapData component of Flash. Exploits for these vulnerabilities were found in the data taken from HackingTeam in the attack disclosed last week. An exploit for one of the Flash vulnerabilities, the one in ActionScript 3, has been integrated into the Angler exploit kit already and there's a module for it in the Metasploit Framework, as well. Reader Mickeycaskill adds a link to TechWeek Europe's article, which says these are the 37th and 38th flaws found in Flash so far this month, and that the development "is a blow for Flash after Alex Stamos, Facebook's new chief security officer, urged Adobe to set an 'end of life' date for the much-maligned software."

132 of 199 comments (clear)

  1. Isn't Flash extinct? by I+prefer+not+to+say · · Score: 1, Insightful

    Are there any sites that still use Flash to serve useful web content?

    1. Re:Isn't Flash extinct? by pack27 · · Score: 5, Informative

      ESPN, Bleacher report, Faebook, Hulu, steam trailers, pretty much every single news website, etc.

      --
      Arch Linux master race!
    2. Re:Isn't Flash extinct? by gstoddart · · Score: 2, Informative

      Depends on your definition of "useful".

      A lot of people seem to complain about how tragic it would be if people could no longer access games.

      Me, I'm of the opinion Flash has been a terrible security/privacy nightmare as long as it has existed and don't install it on my machines.

      Flash is long overdue to be killed off.

      Being the source of at least one security exploit every month for the last 15 years tells me it's a Steaming Heap of Innovative Technology, and always has been.

      --
      Lost at C:>. Found at C.
    3. Re:Isn't Flash extinct? by jones_supa · · Score: 2

      For Finnish people, YLE Areena is kind of important. That's the national public-broadcasting company's programme streaming website.

    4. Re:Isn't Flash extinct? by Jamu · · Score: 4, Funny

      It's mostly on Facebook that I notice I've not got Flash installed. I especially like the way it tells me my technology is out of date.

      --
      Who ordered that?
    5. Re:Isn't Flash extinct? by Anonymous Coward · · Score: 1

      Sort of. My credit union and a couple of online stores I go to use Flash for client user login verification.

      And of course a couple of my favorite porn sites use it for their videos. The porn sites that use Flash vs. the ones that use HTML5 have much smoother streaming. Unfortunately, porn sites are the only way to get a decent comparison of video methods. ;-)

      Anyway, I wish Flash would die and Adobe would get their act together regarding Acrobat Reader's security - I view some PDFs with embedded audio visual content and they're it for those documents.

    6. Re:Isn't Flash extinct? by jones_supa · · Score: 1

      Facebook videos can now be viewed with HTML5.

    7. Re:Isn't Flash extinct? by Zontar+The+Mindless · · Score: 1

      I don't know how useful you consider the site, but this morning's Firefox update broke YouTube for me.

      --
      Il n'y a pas de Planet B.
    8. Re:Isn't Flash extinct? by HideyoshiJP · · Score: 1

      I don't know of many. I know vSphere web console uses it, but I use IE for that. I've also seen a few stores still using it for zoom controls on product images.

    9. Re:Isn't Flash extinct? by CaptSlaq · · Score: 1

      I care about none of those things. Youtube uses html 5 just fine.

      Most of the time. Not all of it though.

    10. Re:Isn't Flash extinct? by ColdWetDog · · Score: 1

      Bug or feature?

      It's so hard to tell these days.

      --
      Faster! Faster! Faster would be better!
    11. Re:Isn't Flash extinct? by 0xdeaddead · · Score: 1

      yeah, my F5 load balancers. Oh and VMWare since they decided that was the way to go.

    12. Re:Isn't Flash extinct? by gstoddart · · Score: 3, Interesting

      It's one of the 3 browsers I keep open all the time.

      I don't give a damn about any of their new features. But it's the one which is set to not run any javascript ever or accept cookies and has the most locked down settings.

      It's my "I don't trust you" browser.

      --
      Lost at C:>. Found at C.
    13. Re:Isn't Flash extinct? by Grishnakh · · Score: 2

      People who want to use the best browser, that's who.

      IE is trash of course, and Chrome, while it was a good option a while ago because FF was so buggy and Chrome was leaner and faster, today Chrome is a slow memory hog and FF has fixed most of its problems and runs much faster and with far less memory.

    14. Re:Isn't Flash extinct? by Feanturi · · Score: 2

      Some can, some can't. Flash is not installed on my machine, and I can see various videos without it, but some throw the "missing plugin" tile.

    15. Re:Isn't Flash extinct? by Anonymous Coward · · Score: 1

      Why would you think Flash is terrible for privacy?

      In HTML5, any element can access any other element (exception: ifrrames, but that's the "old" non HTML5 way). If you include a FB widget on a webpage and the author of said page just simply threw an "include 'facebook.com/widget.js'", everything on the webpage is viewable by that widget.js.

      Flash is isolated from the rest of the page both ways and the page has to specifically be designed to interface with the Flash component.

      You might as well argue that if an OS is JB, then it's also SHIT.

    16. Re:Isn't Flash extinct? by Culture20 · · Score: 1

      Finns can't figure out how to use html5 video? Or are they contracturally obligated to use flash?

    17. Re:Isn't Flash extinct? by Anonymous Coward · · Score: 1, Insightful

      Why would you think Flash is terrible for privacy?

      Evercookies, access to your mic and camera without telling you, and countless exploits, and escaping the plugin to access your machine .. honestly, if you don't know the history if the shit pile which is Flash, that's you're fucking problem for being stupid.

      If you are unaware of the 15+ year history of why Flash is, and has always been garbage ... google it.

      It has never NOT been a security hole.

    18. Re:Isn't Flash extinct? by mlts · · Score: 1

      I still don't get why VMWare dropped the client around ESX 5.0. The client definitely doesn't have the features of the Web client... but it worked quite well.

      Looks like I might have to do with VMWare what I do with some older embedded appliances that require Java (and break on any new Java version), and that is to have a VM set up on a separate cluster (to protect against chicken/egg scenarios) whose sole purpose in life is to be for logging into vSphere.

      That, and be able to do vSphere command line work, so the only tool that is needed would be SSH if it came down to it.

    19. Re:Isn't Flash extinct? by jones_supa · · Score: 3, Informative

      They give a reasoning in the FAQ:

      "Yle Areenan videot toimivat edelleen Flash-soittimen avulla. Flash-soitinta käytämme siksi, että HTML5 standardi ei medioiden jakelussa tarjoa vielä sellaista suojausta, jota tekijänoikeuksien haltijat Yleltä vaativat. Vaatimukset tulevat sekä ohjelmantoimittajilta, että musiikin tekijänoikeusjärjestöiltä. Käyttöliittymätekniikkana HTML5 on käytössä, kuitenkin niin että palvelu on saavutettavissa myös vanhemmilla selaimilla."

      Translation: "Yle Areena videos still utilize Flash player. Flash is used because the HTML5 standard does not provide sufficient content protection that the copyright holders expect from Yle when distributing media. These requirements come from both programme distributors and music copyright organizations. HTML5 is being used in the user interface, but in a fashion that older browsers are also supported."

      Of course that information is now a bit obsolete, as these days HTML5 supports DRM as well.

    20. Re:Isn't Flash extinct? by Zontar+The+Mindless · · Score: 1

      Well, I was wanting to listen to some James Brown.

      OTOH, if I'd visited YT due to an attempt at rickrolling me...

      --
      Il n'y a pas de Planet B.
    21. Re:Isn't Flash extinct? by Anonymous Coward · · Score: 1

      As much as I love a good rant, apps didn't originally really come with the iPhone as we know of them tody. They were attempting to push everybody to web based applications, and flash had (and has)... issues.

    22. Re:Isn't Flash extinct? by mlts · · Score: 1

      I tend to rotate between FF and Chrome for general Web browsing, although I wrap both with sandboxIE pointing towards a different drive volume [1], or I put the browser in a VM. This way, no matter what type of supercookies are saved, they get dumped. Of course, this doesn't help with browser fingerprinting, but there are other ways to deal with that.

      Firefox can be well configured with add-ons to limit the scope of what can be done. No ads, Javascript, Flash, social media tokens, all easily selected per site. To boot, it keeps its security keys and passwords in a separate stash, which can help if some program decided to add its root key into Windows's key stash in order to MITM SSL transactions.

      [1]: I've had malware nail the browser and totally barf on the filesystem, so having the sandbox on its own drive volume allows you to just format it for cleanup work.

    23. Re: Isn't Flash extinct? by cyber-vandal · · Score: 1

      Yes

    24. Re:Isn't Flash extinct? by Gizan · · Score: 2

      MY forced HTML5 Youtube is still asking to activate flash for every video...

    25. Re:Isn't Flash extinct? by Anonymous Coward · · Score: 1

      Congratulations-- you win the egomaniac of the day prize.

    26. Re:Isn't Flash extinct? by paul_metcalfe · · Score: 2

      This may prove an excellent incentive for those websites to stop using such dangerous technologies.

      I've had flash on "ask to activate" by default for a while now, and it wants to activate on almost every fucking website I visit. I don't see any flash elements on those pages. It's probably used solely for advertising by most sites.

      But yeah, youtube don't need it anymore. You can still watch your cat vids.

      --
      Always read at -1, don't let others decide what you should and should not read.
    27. Re:Isn't Flash extinct? by paul_metcalfe · · Score: 1

      Modded troll for asking a question. :|

      Relevant and important question too.

      --
      Always read at -1, don't let others decide what you should and should not read.
    28. Re:Isn't Flash extinct? by paul_metcalfe · · Score: 2

      My national broadcasters used Silverlight. This angered many people because of obvious reasons.

      Max schadenfreude of course when MS pulled the plug on Silverlight

      --
      Always read at -1, don't let others decide what you should and should not read.
    29. Re:Isn't Flash extinct? by Alumoi · · Score: 1

      The man said useful not crap.

    30. Re:Isn't Flash extinct? by lgw · · Score: 1

      Can't you use VMware Workstation now as a substitute for the horrible vSphere client? The UI of Workstation was always worlds better, and they added full vSphere support several years ago IIRC.

      --
      Socialism: a lie told by totalitarians and believed by fools.
    31. Re:Isn't Flash extinct? by omnichad · · Score: 1

      Flash + cookie + Web storage + Etags = supercookie

    32. Re:Isn't Flash extinct? by FranTaylor · · Score: 1

      The one reason that flash does not run on the iPhone

      is because apple doesn't want their users to get mad at their virus-laden phones

    33. Re:Isn't Flash extinct? by Anonymous Coward · · Score: 1

      But this story is about Firefox, and the only good reason to use Firefox anymore is because it has things like Flashblock, Better Privacy, NoScript, and RequestPolicy. Thus that supercookie gets nuked upon close of window. Fully. No pity, no mercy, no exceptions. Advertisers and analytics companies can FOADIAF for all I care. (Including Google. No one is Too Big To FOADIAF.)

    34. Re:Isn't Flash extinct? by mlts · · Score: 1

      Never tried, as I've always punted the OVF/OVA files manually, but don't think it would do well with managing cluster or datacenter objects. Even backing stores isn't a concept in VMWare workstation (as it just uses the OS filesystem for that.)

      Thankfully, not much has to be done to spin up a new VM, less if one uses some top tier abstraction utility.

    35. Re:Isn't Flash extinct? by LocalH · · Score: 3, Interesting

      When Jobs made the decision to disallow Flash on the iPhone, there were no third-party apps. Period. There wasn't even a jailbreak, since he made the decision prior to the release of the original iPhone. So, his decision had nothing to do with the App Store, since it didn't exist.

      --
      FC Closer
    36. Re: Isn't Flash extinct? by buchanmilne · · Score: 1

      I use the vSphere Web console on Chrome/Linux, because it doesn't work with the npapi version of flash. There are still some things that the Web console doesn't do well (e.g. copy a generated mac address) that the thick client does better. But was the thick vSphere client available for OS X?

      Red Hat Enterprise Virtualisation is a better in that regard, requires a (spice) plugin for the virtual kvm, but doesn't require flash.

      The other thing I need flash for is submitting my tax return (in South Africa). About 4 or 5 years ago they used PDF forms (only fillable in the browser using Acrobat, no other PDF plugin would work). About 3 years ago their forms required Acrobat X (not available on Linux) or Flash > 11 (not available on Linux except with Chrome).

      In this case I don't know what to hope for ... I don't want the hassle of booting up a windows VM to do my tax.

    37. Re:Isn't Flash extinct? by dissy · · Score: 1

      I don't know how useful you consider the site, but this morning's Firefox update broke YouTube for me.

      If you uninstall Flash plugin from Firefox, Youtube will detect no flash plugin and instead use HTML5 video which works natively.

      But just having the Flash plugin, be it disabled or blocked or if you have Javascript lie, will cause Youtube to fall back to trying (and failing) to use the Flash player.

      A good "emergency" tip for youtube, although all the other websites without HTML5 video versions (aka all the other ones I use) will of course remain broken - or in the case of Flash per-page blocking, will break even further than before.

      I don't know why youtube actually searches your extension list to choose flash vs html5 players instead of something more sane like checking if the plugin loaded on their page (to handle blocked and disabled flash), or just give you a choice which player to use...

      Now if only blip and twitch would add html5 video support, for me at least much of this flash crap would be taken care of.

    38. Re:Isn't Flash extinct? by lgw · · Score: 1

      The Workstation team added all those concepts to their UI, though, just to be a full replacement for vSphere.

      --
      Socialism: a lie told by totalitarians and believed by fools.
    39. Re:Isn't Flash extinct? by Dutch+Gun · · Score: 1

      From what I've heard, some sites like Crunchyroll are still contractually obligated to use Flash because of the DRM that Flash uses. I wouldn't be surprised if Amazon Prime is similarly constrained. Maybe that will change if, as you say, HTML5 can use DRM now, but things like that take a while to change.

      It's ridiculous, because it's not exactly hard to grab a torrent of just about any show you want with just a tiny bit of effort. The DRM prevents NO ONE from pirating their shows. I pay for service for a few reasons: I'd like to support the development of my favorite programming, as well as the fact that streaming services are convenient and a reasonable price compared to cable. They'd probably get more subscribers if they didn't force people to use crappy, obsolete plug-in technology like Flash or Silverlight in the first place.

      --
      Irony: Agile development has too much intertia to be abandoned now.
    40. Re:Isn't Flash extinct? by ConceptJunkie · · Score: 1

      Perhaps, but I'm sure it was on his mind. Apple is really good at thinking ahead.

      In the long run, disallowing Flash is probably a good thing. I don't use any iProducts, but I pay attention to Apple because they are very influential.

      --
      You are in a maze of twisty little passages, all alike.
    41. Re:Isn't Flash extinct? by ConceptJunkie · · Score: 1

      The OK, the latest release of Flash I updated to about two days ago crashes about 1 out of every 3 times. I use Pale Moon, but it seems to me that Firefox blocking Flash is a lateral move.

      --
      You are in a maze of twisty little passages, all alike.
    42. Re:Isn't Flash extinct? by bigpat · · Score: 2

      Adobe should provide/sell tools that will enable people to convert their Flash content into the equivalent standards based browser supported formats. If they make it easy they will have created an essential web development tool in the process. If they stick with Flash they are just milking the dead horse.

    43. Re:Isn't Flash extinct? by Darinbob · · Score: 1

      Youtube still does by default. You can get HTML5 but you have to manually alter the URL to do so. Thus any links you have from social media that head back to Youtube will almost always use Flash.

    44. Re:Isn't Flash extinct? by Stewie241 · · Score: 3, Insightful

      Yes, that was the narrative at the time - 'they are taking away our freedom'. In hindsight, even though I probably would have heavily criticized Apple for the move, and would have pointed to it as a reason to choose Android, the reality of the situation was, at least in my experience, that Flash on Android was a rather shitty experience that never really worked that well. And while it seemed arrogant and annoying that Steve Jobs tried to use his sway to annihilate Flash as a platform, I now believe that it was for the best. Flash has a heavy impact on battery life, is generally a lot slower, and is generally less secure than native alternatives.

      So, yes, Apple made a seemingly arrogant move and exiled Flash from the iOS platform, but in the long run this drove development toward alternatives and pushed web developers to use technologies that were more mobile friendly (like using HTML for your content instead of some flash application) and I think the overall net effect for the web community has been positive.

    45. Re:Isn't Flash extinct? by BitterOak · · Score: 1

      I care about none of those things. Youtube uses html 5 just fine.

      How do you get to the HTML5 version of YouTube? Whenever I play a YouTube video, it uses Flash. I know this cause if I right click on a video a menu pops up and one of the options is "About Adobe Flash Player". Is there a different URL for the HTML5 site, or is there a settings menu somewhere where I can change it?

      --
      If I can be modded down for being a troll, can I be modded up for being an orc, or a balrog?
    46. Re:Isn't Flash extinct? by BitterOak · · Score: 2

      Ooops. Sorry to answer my own question, but after a bit of research (which I should have done before posing the question, I guess) I found the answer. It's at www.youtube.com/html5 I guess it just isn't the default yet.

      --
      If I can be modded down for being a troll, can I be modded up for being an orc, or a balrog?
    47. Re:Isn't Flash extinct? by 0123456 · · Score: 1

      Last I looked, at least one major auto manufacturer's web site was entirely Flash. There's no reason for it, since there's a Flash-free version for iPads, but even Android tablets got the Flash version, which didn't work because... no Flash on Android.

    48. Re:Isn't Flash extinct? by LinuxIsGarbage · · Score: 1

      . . .the reality of the situation was, at least in my experience, that Flash on Android was a rather shitty experience that never really worked that well.

      That's been my experience on PCs as well.

      -Websites. Typically it seems things like small restaurants, make their whole site in Flash and it's a slow, obnoxious POS. Usually it's a basic page that could handle simple HTML. All I want is your hours, menu, address, and phone number.
      -Annoying fucking ads. The CPU will rev for no apparent reason.
      -Videos, like Youtube, will rev the CPU and be all jittery. Rip the FLV, play it in VLC (or whatever), and the CPU will just sip power and play silky smooth, even on a 12 year old piece of shit computer. All the updates keep talking about acceleration, but Flash always seems to just draw in the 2D framebuffer with a crayon.
      -Every fucking update tries to install fucking McAfee Security Scan Shitware. I didn't click the fucking checkbox the first time I installed your PoS, respect that!
      -Memory leak: If I keep watching serial videos on Youtube, eventually flash will use 2GB and crash.

    49. Re:Isn't Flash extinct? by Anonymous Coward · · Score: 1

      Probably more of a power usage issue, as Flash is a CPU hog no matter what device it runs on. Apple didn't want the 9 hour battery life to become a 5 hour battery life when using Flash.

      Before I set Flash to ask before activating, I could tell when there was a Flash ad here on Slashdot by the whine of my CPU fan kicking into high gear.

    50. Re:Isn't Flash extinct? by sribe · · Score: 1

      The one reason that flash does not run on the iPhone is that a man with a black collar did not want all kind of flash games on his phone, he wanted to sell those games native from the app-store, and take a percentage on that.

      Bullshit. More like: Adobe up to that point had been unable to deliver a usable mobile Flash, and in fact, years later, still had not, and in fact, years later completely abandoned the development effort.

    51. Re:Isn't Flash extinct? by msobkow · · Score: 2

      What Apple wanted was lock-in to their tool chain, so all interpreters were blocked from release for iOS. It's not about "forward looking" -- it's about being able to sell an Apple Mac to every single developer out there that wants to run their tool chain. Money, money, money. And more money.

      --
      I do not fail; I succeed at finding out what does not work.
    52. Re:Isn't Flash extinct? by jo_ham · · Score: 1

      It really wasn't - they were pushing web-native apps that you'd add to the springboard pretty hard when the iPhone launched. Just not ones that were powered by Flash because it was a performance and security nightmare.

      The App Store was something they were not expecting would be as big as it was.

    53. Re:Isn't Flash extinct? by cbhacking · · Score: 1

      Flash on the Nokia N800 worked fine (in late 2007), within the limits of the (400MHz, IIRC) processor and input devices (i.e. you couldn't do hover, because touchscreen). It was slow - the N800 was a damn good device for its time, but that was before mobile hardware development *really* took off the way it has the last few years - but it was usable for nearly all Flash-based sites, including things like Pandora and some of the lighter-weight games. It wasn't some crippled "Flash Lite" thing either; it could load any applet that the desktop version could, hardware (RAM, display resolution, etc.) permitting.

      Don't get me wrong, many Flash applets were battery hogs (as many games were, once iPhone users got the ability to install such things). It added the user experience downsides of Flash, like Flash ads on websites (thankfully, there was a build of AdBlock Plus for Maemo, which made for by far the best mobile browsing experience at the time). It was a potential exploit vector, as Flash has always been and always will be until killed off for good. But still, to claim that there was no usable mobile Flash around that time is false.

      --
      There's no place I could be, since I've found Serenity...
    54. Re:Isn't Flash extinct? by Anonymous Coward · · Score: 3, Insightful

      I care about none of those things.

      Oh well we dont need it then.

      I seriously can't believe how self-involved and ignorant some people on here are. People like you are why the stereotype of anti-social, geek basement dwellers is proliferated, you define it.

    55. Re:Isn't Flash extinct? by ClaraBow · · Score: 1

      Funny!

    56. Re:Isn't Flash extinct? by Citizen+of+Earth · · Score: 2

      ESPN, Bleacher report, Faebook, Hulu, steam trailers, pretty much every single news website, etc.

      Those don't even matter. PORN sites use Flash. QED.

    57. Re:Isn't Flash extinct? by Anonymous Coward · · Score: 1

      ESPN, Bleacher report, Faebook, Hulu, steam trailers, pretty much every single news website, etc.

      Care to guess what most of them do when your user agent does not report Flash as a supported format? (As does every single iPhone and iPad in existence...)

      YES
      They flat out say you're not supported without even trying to serve you the correct stream...
      they'd give you the stream promptly ONLY if they sniff your user agent to be any iPhone or iPad in existence. For a few days I toyed with my desktop UA set to iPad just to skip the flash ads on Youtube. The reasons I went back to normal had to do with my "Let's play" series: there was no playlist anchor option to 'stop here, continue tomorrow at video #34 out of 96', and also the layout expected crazy widths for retina screens... and not polite to our still-retarded PC laptop designs at all

    58. Re:Isn't Flash extinct? by sribe · · Score: 1

      Flash on the Nokia N800 worked fine (in late 2007), within the limits of the (400MHz, IIRC) processor...

      Yes, it was there. But it was a complete disaster, and did not work "fine" for any reasonable understanding of that word.

    59. Re:Isn't Flash extinct? by mlts · · Score: 1

      Deep Freeze is a usable solution. In fact, if one runs a school lab, library computers, or others where there are multiple people using the boxes, Deep Freeze is the only way to keep sane.

      The reason I didn't mention it is that if I'm using a virtual machine, the VM software (be it Hyper-V, VirtualBox, VMWare, or something else) handles snapshot rollbacks in a fairly easy manner. For example, VMWare Workstation can configure VMs to drop all changes when they are shut down.

      Another reason is ease of use. DeepFreeze is all or nothing, while running the browser in a VM or sandbox means I can be doing other tasks where persistant changes are useful at the time.

      Definitely an option though, and it can be argued that if one didn't mind taking time to thaw their machine, do application and system updates, then flip it back to freeze mode, using a separate partition for documents, this would be a useful and secure way of doing things.

    60. Re:Isn't Flash extinct? by sribe · · Score: 1

      They flat out say you're not supported without even trying to serve you the correct stream...
      they'd give you the stream promptly ONLY if they sniff your user agent to be any iPhone or iPad in existence.

      Not true at all. OS X 10.10.3, Safari 8.0.6, Flash plugin removed about a year ago. ESPN, Bleacher Report, CNN, MSNBC, all work fine. Facebook, no videos in my timeline--don't know if that's because it's not showing them to me because of lack of Flash, or just a matter of the people I follow. Hulu, alone among all the sites, informs me that I need the Flash plugin.

      So maybe the problem is you were using a web browser that did not have adequate support for HTML5 video.

    61. Re:Isn't Flash extinct? by ConceptJunkie · · Score: 1

      Good point. Back in the days when I used to run Flash on Linux, I experienced the same problem. I could always tell when Flash was running because the fan would be going full-tilt.

      --
      You are in a maze of twisty little passages, all alike.
  2. We need Flash, because it is easy to block by sinij · · Score: 5, Insightful

    We need Flash because it is easy to block. You can remove a huge chunk of Web obnoxiousness by simply disabling/uninstalling Flash while not breaking the rest of the website. With HTML5, this won't be as straight-forward process.

    1. Re:We need Flash, because it is easy to block by gstoddart · · Score: 4, Interesting

      You got modded funny, but I tend to agree.

      If the crap that Flash does is part of the HTML 5 spec, I really do worry we won't be able to block it quite so readily.

      In which case the browsers become even less secure. That will be a bad thing.

      --
      Lost at C:>. Found at C.
    2. Re:We need Flash, because it is easy to block by SuperKendall · · Score: 2

      Amusing but true, there's already a lot of HTML5 nonsense that goes on in many sites, even on browsers I specifically disallow Flash on.

      I think what we need to advance user tech is "click to remove HTML5 element" with memory of what element you removed, that would automatically be scotched the next time you visited the same site. That way you could even allow "tame" ads if you liked, and just stop obnoxious floating elements that blocked content...

      --
      "There is more worth loving than we have strength to love." - Brian Jay Stanley
    3. Re:We need Flash, because it is easy to block by tepples · · Score: 1

      You can update the browser without crapping up the UI by installing Pale Moon.

    4. Re:We need Flash, because it is easy to block by fermion · · Score: 2

      I have used flashblock to control the flash player. Note the only reason I installed it was to stop autoplay flash. I can't really focus on anything else when a video is playing. With the implementation of flash blocking on Firefox, which stated, what, a couple months ago, flash no longer works at all. Flash has been on the decline since the smart phone did not have the power to run it and everyone is blocking it. Which, as mentioned, is a moot point as HTML5 provides autorun ads that have no control. The sad thing is that Flash actually is a very good tool for doing some very useful things. Unfortunately, the only profitable thing it was ever good for was packaging ads.

      --
      "She's a scientist and a lesbian. She's not going to let it slide." Orphan Black
    5. Re:We need Flash, because it is easy to block by Anonymous Coward · · Score: 2, Insightful

      I disagree. There will still be third-party plugins to do this, plus now you get the option to easily roll your own. For example, on slashdot I have a plugin that runs :

      $('video').empty().remove();

      plus several other scripts to re-display content in a manner of my choosing.

    6. Re:We need Flash, because it is easy to block by Gavagai80 · · Score: 1

      For videos, it's simple. For ads doing different HTML 5 animations, not so simple.

      --
      This space intentionally left blank
  3. Chrome by Anonymous Coward · · Score: 4, Insightful

    Won't this just cause frustrated users to switch to Chrome or another browser, further further hurting Mozilla's market share? Recently I went to a flash web site, it didn't work, so I booted up Chrome.

    1. Re:Chrome by Zontar+The+Mindless · · Score: 2

      Opera.

      The latest version of Chromium appears to be good for little other than crashing my desktop on startup.

      --
      Il n'y a pas de Planet B.
    2. Re:Chrome by myowntrueself · · Score: 3, Insightful

      Won't this just cause frustrated users to switch to Chrome or another browser, further further hurting Mozilla's market share? Recently I went to a flash web site, it didn't work, so I booted up Chrome.

      Yes, now you need 2 browsers; chrome and firefox.

      Chrome for flash and Firefox for java.

      --
      In the free world the media isn't government run; the government is media run.
    3. Re:Chrome by prefec2 · · Score: 2

      Google is also thinking to remove support for flash from Chrome.

    4. Re:Chrome by toddestan · · Score: 1

      You do realize that Chrome comes bundled with its own built-in Flash plug-in, right? Unless you meant you installed one of the Chrome alternatives that strip it out (Opera, Comodo Dragon, etc.).

    5. Re:Chrome by toddestan · · Score: 1

      Don't forget IE for the ActiveX!

  4. Not really true (anymore) by R.Mo_Robert · · Score: 5, Informative

    Mozilla did block the then-latest version of Flash Player, 18.0.0.203, last night. Adobe released version 18.0.0.209 early today, which fixes this vulnerability and which Mozilla is not blocking. They didn't really block "all versions," they just blocked versions less than or equal to known vulnerable versions, which at that time happened to also include the then-latest version. Let's stop using misleading phrasing that will make people think they blocked any past, current, or hypothetical future version of the plugin.

    --
    R.Mo
    1. Re:Not really true (anymore) by tepples · · Score: 1

      Unless Title Guy edited the title in the past ten minutes, I don't see how "Mozilla Temporarily Disables Flash" is "misleading phrasing that will make people think they blocked any past, current, or hypothetical future version".

    2. Re:Not really true (anymore) by Anonymous Coward · · Score: 2, Funny

      You know slashdot is slow, when even adobe have enough time to fix the flash before news actually hit the front page

    3. Re:Not really true (anymore) by R.Mo_Robert · · Score: 1

      Unless Title Guy edited the title in the past ten minutes, I don't see how "Mozilla Temporarily Disables Flash" is "misleading phrasing that will make people think they blocked any past, current, or hypothetical future version".

      Slashdot edited the headline--thanks for giving me the benefit of the doubt. :) The old one was something like "Mozilla disables all versions of Flash in Firefox."

      --
      R.Mo
    4. Re:Not really true (anymore) by R.Mo_Robert · · Score: 1

      Unless Title Guy edited the title in the past ten minutes, I don't see how "Mozilla Temporarily Disables Flash" is "misleading phrasing that will make people think they blocked any past, current, or hypothetical future version".

      Slashdot edited the headline--thanks for giving me the benefit of the doubt. :) The old one was something like "Mozilla disables all versions of Flash in Firefox."

      Wait, or maybe they didn't edit the headline, IDK (though I think they did)--but the story still implies the same (perhaps that's what I remember), that they're disabling "all versions," which is no longer true in any case.

      --
      R.Mo
    5. Re:Not really true (anymore) by colfer · · Score: 2

      Mozilla was blocking all Flash until the second update came out. The page https://www.mozilla.org/en-US/... clearly showed that. You could change it to from "disabled" to "ask to activate" if you chose to.

      Chrome also updated today, but the bundled Flash player in Chrome is click-to-play by default. IE should do that with its bundled player. And Microsoft should use Windows Update to block the plugin player for old version of IE. And old Java in any browser, with an override available.

    6. Re:Not really true (anymore) by tepples · · Score: 1

      Slashdot edited the headline--thanks for giving me the benefit of the doubt. :)

      I guess it comes from my experience reading Cracked.com, which is notorious among its commenters for posting an article with an unfitting title and then changing its title.

    7. Re:Not really true (anymore) by MrL0G1C · · Score: 1

      And their plugin check page still doesn't work for me.

      And the page doesn't show a link to get flash.

      --
      Waterfox - a Firefox fork with legacy extension support, security updates and better privacy by default.
    8. Re:Not really true (anymore) by Forever+Wondering · · Score: 1

      But, Adobe did not update the Linux Firefox NPAPI version. It's still 11.2.202.481, which was listed as vulnerable.

      The NPAPI version is an "extended support" release because Google came up with a new "universal" interface for all OSes, and, decidedly refused to map it on top of NPAPI [in order to kill Firefox in favor of Chrome]. Adobe adopted this and stopped active development on the NPAPI version. And, Firefox refused to support the new interface, saying that NPAPI was just fine.

      Meanwhile, I'm still waiting ...

      --
      Like a good neighbor, fsck is there ...
    9. Re:Not really true (anymore) by Gavagai80 · · Score: 1

      Google wasn't trying to kill Firefox with pepper, they made everything Firefox needs to implement pepper available as open source and encouraged Firefox to add support. It's Firefox's choice not to implement it because they consider it "non-standard".

      --
      This space intentionally left blank
    10. Re:Not really true (anymore) by Forever+Wondering · · Score: 1

      Google wasn't trying [that hard] to help either. They could have done the Firefox port [they have more resources] and then publish a patch file. In that case, Mozilla refusing a done deal patch would have been more condemning. Remember, at the time, NPAPI was the standard [deliberately ignoring Windows Explorer :-)]

      Linus [Torvalds] did this with Gnome/GTK. He complained about a number of things with Gnome (3?) and produced a patch. The Gnome folks wouldn't even try it.

      Google really doesn't like Firefox. Those pesky AdBlock and video download plugins that block ads and download videos from youtube.

      And, as far as Adobe goes, they seem to hate Linux for some reason. Flash aside, they've frozen the release they'll offer for Acrobat Reader [*]. There's little technical justification for this as the amount of incremental work for the port from rev-to-rev is even lower than Flash.

      [*] IIRC, they had to offer a reader port as a condition of the federal gov't standardizing on the PDF format for documents--tax forms in particular. The quid-pro-quo: If we accept PDF, you [Adobe] have to port the reader to all [reasonable] platforms: WinX, Mac, Linux, BSD, etc.

      --
      Like a good neighbor, fsck is there ...
    11. Re:Not really true (anymore) by PingSpike · · Score: 1

      You can run pepper flash in firefox on linux

      http://www.webupd8.org/2014/05...

    12. Re:Not really true (anymore) by Forever+Wondering · · Score: 1

      Thanks for the link.

      I had looked at PPAPI when it first came out. At the time, pepper flash was broken, even in Chrome, so I pointed Chrome at the NPAPI version Firefox was using [there was still a Chrome config option to do so].

      After I posted, I started looking around to see what the current state of the art was and felt there would be a plugin/extension of some sort that would allow PPAPI.

      --
      Like a good neighbor, fsck is there ...
  5. Can they fix Firefox popup blocked? by Anonymous Coward · · Score: 2, Informative

    Chrome can block popups, that Firefox lets through. This is because Flash is doing the popup, and Firefox does not catch the CreateWindow, but Chrome does. Firefox only intercepts the normal web window creates.

    So at least for the moment, this fixes Firefox's crappy non-functioning popup blocker.

    Likewise Chrome now runs Flash in a separate process, because Adobe are so inept they cannot be trusted not to leave lots of security bugs in their products. So Google wrapped it in a process wrapper, the same way people pick up dog poop in plastic bags because they don't want to get their hands dirty in that pile of shit.

    Firefox should do the same!

    Now if only Firefox could also fix their tendency to add unwanted 'cloud' features, we'd be fine!

    1. Re:Can they fix Firefox popup blocked? by tepples · · Score: 4, Informative

      Chrome now runs Flash in a separate process, because Adobe are so inept they cannot be trusted not to leave lots of security bugs in their products. So Google wrapped it in a process wrapper [...] Firefox should do the same!

      Firefox has been running Flash Player in plugin-container.exe for years.

  6. Here we go again by Virtucon · · Score: 2

    Whack-a-mole with Flash continues this week with yet another zero day vulnerability with Flash being fixed. This is unsustainable. Time for Flash to really die.

    --
    Harrison's Postulate - "For every action there is an equal and opposite criticism"
    1. Re:Here we go again by ColdWetDog · · Score: 1

      Unsustainable? You even mention that Adobe has been doing this for years. It is about as unchanging as anything in computing.

      --
      Faster! Faster! Faster would be better!
    2. Re:Here we go again by Virtucon · · Score: 1

      For the past couple of months it seems like it's been a weekly cycle instead of once a month. Frequency and urgency of the patches brings more focus as to "why do we have this again?" There are a lot of companies out there that have Flash in their content distribution systems for Intranets and this zero day fire drill is getting old fast for quite a few of them. In the long run killing Flash is a good thing, killing Adobe would probably be better. Call it penance.

      --
      Harrison's Postulate - "For every action there is an equal and opposite criticism"
  7. Blue Moon by FreeUser · · Score: 1

    Blue Moon, baby, Blue Moon.

    Installed it yesterday, won't be bothering with Mozilla again.

    --
    The Future of Human Evolution: Autonomy
    1. Re:Blue Moon by Kargan · · Score: 3, Informative

      Not seeing any hits on google for that one. Pale Moon?

      https://www.palemoon.org/

      --
      Palaces, barricades, threats, meet promises
    2. Re:Blue Moon by wonkey_monkey · · Score: 1

      Would that be Pale Moon you're thinking of?

      --
      systemd is Roko's Basilisk.
  8. Not a VM! by Anonymous Coward · · Score: 1

    I think you'll find Plugin Container is not a proper VM it's just a process that lets them kill it when it hangs! i.e. for better threading and process crash control rather than security.

    If it was aVM then they could block the calls to createwindow and make the popup blocker work.

    Whereas Chrome's is 'Pepper' I recall, a VM wrapper for Adobe Flash.

  9. Re:WebFilings by tepples · · Score: 1

    It depends on how ready these companies are to make their "flagship products" available to users of iOS and Android.

  10. Re:Is there a browser that doesn't try to be a nan by gstoddart · · Score: 1

    If you're on Windows, essentially you keep IE around to run the shit you wouldn't enable in any other context but you need for work.

    For me, IE is the browser of last resort, or the one I exclusively use for work stuff.

    AFAIK, IE is happy to keep letting every insecure piece of crap keep running.

    I've essentially got four browsers configured for different purposes.

    --
    Lost at C:>. Found at C.
  11. Vector animation by tepples · · Score: 2

    Flash has historically been used for vector-based multimedia. If, say, Strong Bad emails or French Erotic Film were converted to MP4 or WebM, they'd be ten times bigger (source: my tests) and thus count ten times more against your ISP's monthly cap. Sure, Adobe's newer tools can export .fla to HTML5, but those tools are available only for rental, and anything needing the .fla works only if the original author is still contactable.

  12. Re:Not really true (anymore)Let's stop using misle by bill_mcgonigle · · Score: 1

    Let's stop using misleading phrasing that will make people think they blocked any past, current, or hypothetical future version of the plugin.

    Hey, there are a lot of linux users here - we're used to it. Mozilla has been blocking the current version of Flash on Linux for three years now. The people who know that codebase can't seem to figure out how to put in an if statement (I jest - they just don't give a fuck about it working).

    --
    My God, it's Full of Source!
    OUTSIDE_IP=$(dig +short my.ip @outsideip.net)
  13. Re:Is there a browser that doesn't try to be a nan by peppepz · · Score: 2

    It's not that Firefox disables flash behind your back: it displays a security warning in place of flash boxes, having a button to enable the plugin again. Also, it will only do it for versions of flash which are known to be vulnerable. This is quite a good thing IMHO: remaining within the nanny terminology, it's not a matter of how much grown up you are, if you have a vulnerable plugin, and you visit a compromised site, your machine will be owned.

  14. Re:Is there a browser that doesn't try to be a nan by brunes69 · · Score: 2

    Except the OPs other example, Chrome, offers no workaround. Chrome removed all support for NPAPI, and therefore Java, from the Linux codebase. There is no command line flag or back-end setting to bring it back This makes it IMPOSSIBLE to use Chrome for work purposes by a huge number of people, and forced us all to Firefox.

    The only way to get it back is to build it from source yourself, since no one has created a fork yet.

  15. Broken OS X Updater by Kozar_The_Malignant · · Score: 1

    While I appreciate that Adobe endlessly updates Flash, the fact that they can't manage to write a functional updater for OS X makes me wary of the value of the updated code. When you have to completely uninstall Flash every time and reinstall it, I decided to stop after the uninstall.

    --
    Some mornings it's hardly worth chewing through the restraints to get out of bed.
    1. Re:Broken OS X Updater by NJRoadfan · · Score: 1

      Most of the time it doesn't work either. Very few machines seem to auto update with it enabled.

  16. Flash in Firefox/Linux by Zanadou · · Score: 2

    If you're (forced to!) run the outdated version of Flash in Firefox on Linux, now might be a good time to go to the tools menu > addons > plugins and set Shockwave Flash to "Ask to Activate". Then the plugin will stay disabled per default, but can be activated on a per-site basis.

    Adobe: "You're on your own."

    1. Re:Flash in Firefox/Linux by Blaskowicz · · Score: 1

      It sucks as you can't set a whitelist (for soundcloud.com at least, and perhaps youtube for some convenience)

      Have to add a random extension or two, but who knows how long the extension will work. I used flashblock for about a decade but somewhat recently, it imploded (I suppose it depended on one person that can't do the maintaining job anymore)

      I got lazy and simply block the ads now. For a decade I had the web with ads and all flash blocked, now I have no ads (including the flash based ones) but there are those horrid, unsollicited autoplaying video - website "content" is worse than ads, who knew.

    2. Re:Flash in Firefox/Linux by PingSpike · · Score: 1

      I used flashblock for awhile, but it stopped working on youtube. FlashControl add-on works and also has a whitelist system.

      I actually think I couldn't get that firefox option to work as expected for some reason.

      I don't really have a problem with flash myself since I've also had it set to click to activate with flash block. It seems like 99% of flash elements are just garbage and its much easier to an extra click to the 1%.

  17. Java, Flash, ActiveX next? by paul_metcalfe · · Score: 1

    We can hope.

    --
    Always read at -1, don't let others decide what you should and should not read.
  18. Re:Is there a browser that doesn't try to be a nan by myowntrueself · · Score: 1

    If you're on Windows, essentially you keep IE around to run the shit you wouldn't enable in any other context but you need for work.

    For me, IE is the browser of last resort, or the one I exclusively use for work stuff.

    AFAIK, IE is happy to keep letting every insecure piece of crap keep running.

    I've essentially got four browsers configured for different purposes.

    I did try IE but its been so slow and crashes on so many sites...

    --
    In the free world the media isn't government run; the government is media run.
  19. Flash will die when MS Windows does by atrimtab · · Score: 1

    After all the platform with the largest rich soft underbelly of easily exploitable code is Microsoft Windows. So do not hold your breath waiting for Flash to disappear. Like Windows there is way too much code built on top of it for it simply die a quick death and disappear.

    --
    Facebook is billions of individual "Skinner Boxes." And if you use it you are the pigeon!
    1. Re:Flash will die when MS Windows does by xenotransplant · · Score: 1

      But what of all the grandmas playing candy crush and other zinga adware...I mean uh...games?

  20. " much-maligned software" by sehlat · · Score: 1

    How do you malign a program which for years has had more holes in it than a colander? Does anybody recall the pwn-to-own winner who commented that the quickest and best step you can take to secure your browser is to disable flash?

  21. Flash is only part of evercookie by tepples · · Score: 1

    Flash LSOs are only one persistence means used by the evercookie library. It also uses HTML5 localStorage, IndexedDB, pixel values in cached images, and other methods.

  22. Cities with by tepples · · Score: 1

    It's time for you to find a new place to do your banking.

    That's not practical for everyone, especially if you happen to live in a place that has only one bank's ATMs. When I went to college from 1999 through 2003, only Terre Haute First Financial Bank had ATMs in Terre Haute, Indiana.

    1. Re:Cities with by KGIII · · Score: 1

      Strangely, there is a nice Chinese restaurant in Terre Haute. By nice I mean they had frog legs and I spent three extra days in a hotel room with what was probably food poisoning. Such a nice place too. I went and played at Joe's Pizza and Pickin' Parlor and then meandered off to a bluegrass fest in Columbus. I think it was Columbus at any rate.

      --
      "So long and thanks for all the fish."
    2. Re:Cities with by FranTaylor · · Score: 1

      That's not practical for everyone, especially if you happen to live in a place that has only one bank's ATMs.

      My credit union reimburses me when I use another bank's ATM and I get charged.

      My credit union lets me deposit a check by taking a picture of it

      There is no reason for me to use one of their ATMs.

  23. Until Bugzilla comes back up, what bug is that? by tepples · · Score: 1

    Mozilla has been blocking the current version of Flash on Linux for three years now.

    You cite a Bugzilla bug as evidence. But as of right now, Bugzilla is giving a "Service Unavailable" error, and Wayback Machine gives "Page cannot be crawled or displayed due to robots.txt." Is that the bug about implementing the entire PPAPI to use Google Native Client plug-ins? Or is it some other bug?

  24. Re:MPV plug-in has great support for flash video by tepples · · Score: 1

    Then it serves up html5

    Until the BBC catches on to this workaround. After that, the BBC will likely start serving up links to Google Play Store.

  25. Re:Is there a browser that doesn't try to be a nan by QuasiEvil · · Score: 1

    I'm okay with the warning/enable system in FF, but I really wish they'd add a global button of "yeah yeah, fuck off and enable it because I said so and I'll take the risk" for when I really need to get stuff done and I'm tired of having to click on the flash box on every damned site.

  26. disable plugin by mennucc1 · · Score: 1

    I have been using long this flash disable plugin. It is easy to use; it is simple : it just triggers internal configurations that Firefox has always had. It adds a button to enable flash on those few sites were Flash is used for content and cannot be replaced. I recommend ticking 'Disable at startup' and 'Ask to activate' in the preferences. "Simple & easy" always provides better security.
    Enough said.

  27. Re:Is there a browser that doesn't try to be a nan by chefmonkey · · Score: 1

    You don't suppose that the reason IE is slow and crashes on so many sites is precisely *because* it's so promiscuous regarding third-party components that are poorly written, do you? Of course you don't, because that would require admitting that what Google and Mozilla do -- blocking shit that ruins your experience -- is actually the only sane way to be good stewards of Chrome and Firefox. And you've already assumed that they're just doing that to piss you off.

  28. Must not be in Firefox 42 by LocalH · · Score: 1

    I run Nightly, and have the latest Flash installed (just updated it to make sure). Flash content seems to load fine, I get no blocking message.

    --
    FC Closer
  29. I'll miss you AS by xenotransplant · · Score: 1

    I remember having fun in the flash-based myspace chat rooms using some creative AS chicanery. Good times. I'm too old for this crap now.

  30. Re:Browser, leave me alone by xenotransplant · · Score: 1

    Not only that, but it also creating a wider user-base of clueless meat bags who "click the icon" and "stuff happens on the screen"

  31. Re:Is there a browser that doesn't try to be a nan by gstoddart · · Score: 1

    Wait, what?

    So, you want a browser which doesn't disable crapware when it become so broken as to be dangerous. But you also want a browser which doesn't suck?

    You're joking, right?

    --
    Lost at C:>. Found at C.
  32. Re:Is there a browser that doesn't try to be a nan by myowntrueself · · Score: 1

    Wait, what?

    So, you want a browser which doesn't disable crapware when it become so broken as to be dangerous. But you also want a browser which doesn't suck?

    You're joking, right?

    People actually, believe it or not, have jobs that involve using flash and/or java in their browsers.

    --
    In the free world the media isn't government run; the government is media run.
  33. Re:Is there a browser that doesn't try to be a nan by myowntrueself · · Score: 1

    You don't suppose that the reason IE is slow and crashes on so many sites is precisely *because* it's so promiscuous regarding third-party components that are poorly written, do you? Of course you don't, because that would require admitting that what Google and Mozilla do -- blocking shit that ruins your experience -- is actually the only sane way to be good stewards of Chrome and Firefox. And you've already assumed that they're just doing that to piss you off.

    This isn't for $randomsite

    This is for work related stuff, very limited selection of 'sites' mostly actually hardware that has user interfaces in the browser. Some people use this stuff in their work, you know?

    --
    In the free world the media isn't government run; the government is media run.
  34. Re:Is there a browser that doesn't try to be a nan by myowntrueself · · Score: 1

    I'm okay with the warning/enable system in FF, but I really wish they'd add a global button of "yeah yeah, fuck off and enable it because I said so and I'll take the risk" for when I really need to get stuff done and I'm tired of having to click on the flash box on every damned site.

    exactly!

    I want a "I know what I'm doing and only using this browser on known sites just get out of my way and let me do my fucking job" browser.

    --
    In the free world the media isn't government run; the government is media run.
  35. Re:Is there a browser that doesn't try to be a nan by gstoddart · · Score: 1

    Which in no way changes that both the Flash and Java plugins are horrible, flaky, insecure, and deprecated.

    As I said, you pretty much have to keep one browser for all the shit you shouldn't trust, and one for the rest.

    But don't be surprised when the horrible, flaky, insecure and deprecated plugins demonstrate why they're all those things.

    When your company sticks you with garbage, you're stuck with garbage. It sucks, but the solution isn't for everybody else to try to make Flash and Java suck less when used on web pages.

    Mozilla are protecting most of their users. Your IT department can protect you.

    If Flash is going to be on it's 38th exploit of the month, I applaud Mozilla disabling it. Because it really always has been a pile of shit, and has always been insecure beyond belief.

    --
    Lost at C:>. Found at C.
  36. Re:Is there a browser that doesn't try to be a nan by myowntrueself · · Score: 1

    Which in no way changes that both the Flash and Java plugins are horrible, flaky, insecure, and deprecated.

    As I said, you pretty much have to keep one browser for all the shit you shouldn't trust, and one for the rest.

    But don't be surprised when the horrible, flaky, insecure and deprecated plugins demonstrate why they're all those things.

    When your company sticks you with garbage, you're stuck with garbage. It sucks, but the solution isn't for everybody else to try to make Flash and Java suck less when used on web pages.

    Mozilla are protecting most of their users. Your IT department can protect you.

    If Flash is going to be on it's 38th exploit of the month, I applaud Mozilla disabling it. Because it really always has been a pile of shit, and has always been insecure beyond belief.

    Yes its true, companies make you use unsecure, crappy browser plugins to manage their hardware. Companies like Supermicro, Dell, Cisco, the list just goes on and on.

    --
    In the free world the media isn't government run; the government is media run.
  37. If all ISPs near you have caps by tepples · · Score: 1

    You probably have bigger issues if you use your mobile data plan as your main ISP at home.

    Not everybody lives within the service area of unmetered Internet access. Some people have cellular, satellite, and/or harshly metered DSL as their only options. (See, for example, the story "An Iowa ISP's Metered Pricing: What Will the Market Bear?" from a year and a half ago.) Or are you recommending that people in this situation move?