Slashdot Mirror

← Back to Stories (view on slashdot.org)

Firefox 48 Released With Multi-Process Support, Mandatory Add-On Signing (softpedia.com)

Posted by msmash on from the making-Firefox-great-again dept.

Mozilla on Tuesday released Firefox v48, touted as one of the most important updates the browser has ever received. With the new version, Firefox starts migrating users to using mullti-process threads (e10s, Electrolysis), and it is also the first version to ship with Rust component. In addition, Firefox is now also making add-on signing mandatory. From a Softpedia article: Announced last year, Electrolysis, e10s, or multi-process support is Firefox's ability to process core browser operations separately from the content viewed on a Web page. Multi-process support allows a page to crash without bringing the entire browser down with it and improves the browser's overall performance. e10s rollout will take place in two phases, first in Firefox 48, and it will finish in Firefox 49, set for release on September 13, 2016. Mandatory add-on signing refers to Firefox preventing users from installing any add-ons that have not been approved by Mozilla's testers. This is something similar to what Chrome employs, but Firefox users have been spoiled all these years, always having the capability of installing any add-on they've desired. Rust is a programming language that's a revamped and improved version of C++ but that protects developers from accidentally including dangerous memory bugs in their code. It achieves this by how the language was constructed and by how developers write the code.

10 of 236 comments (clear)

  1. Mozilla's starting to get back in shape by LichtSpektren · · Score: 4, Interesting

    I've been on Nightly for awhile now and the performance with e10s is now almost as good as Chrome's. Firefox Hello is thankfully going to get axed in a future release, and if Mozilla continues to fine-tune the performance a bit more and rips out Pocket, I think Firefox will be back on top.

    1. Re:Mozilla's starting to get back in shape by chefmonkey · · Score: 4, Informative

      A lot has been written on this, but this is a good and recent analysis: http://www.erahm.org/2016/02/1...

      tl;dr: Chrome uses twice as much memory as Firefox on all platforms.

  2. You must be new here by sjbe · · Score: 4, Funny

    Can we please stop posting about minor, useless OSS software releases? It's not like anyone uses this piece of shit anymore.

    Really? Wow and here I thought I was using Firefox to type this. Thanks for letting me know that I'm not really using the browser I think I am.

  3. Multi-process not available for most users? by trawg · · Score: 5, Interesting

    I was kind of excited by this so updated immediately instead of my usual process of waiting a couple days.

    While it was updating I did another unsual thing - clicked through to the article - where I read the following:

    e10s rollout will take place in two phases, first in Firefox 48, and it will finish in Firefox 49, set for release on September 13, 2016.

    Firefox with multi-process support will first reach 1 percent of the users who don't have any add-ons installed in their browser, and in ten days' time, Mozilla will activate e10s for 50 percent of the same users.

    Full e10s support for Firefox instances using extensions or running on older versions of Windows will be available in the fall, during the second rollout phase scheduled for Firefox 49.

    So, at a glance (and from what I can see from my now-updated install), multi-process is not /really/ included in this release except in certain cases like users who don't have any add-ons.

    1. Re:Multi-process not available for most users? by Barefoot+Monkey · · Score: 4, Informative

      If you're using Firefox 47 or later you can enable e10s yourself. What you read simply means they won't be switching it on for you until FF49.

      You can enable e10s by going to about:config and setting browser.tabs.remote.autostart to true. Restart your browser and then visit about:support and look up "Multiprocess Windows" on that page to see if it's enabled. (It might still be disabled if you have one or more add-ons that don't support e10s - if only it would tell you which)

      I haven't installed the Firefox 48 update yet, but it may well introduce an option in the Options panel for you to enable multiprocess without having to go through about:config.

  4. for a minute there i thought i had freedom. by nimbius · · Score: 4, Insightful

    Firefox users have been spoiled all these years, always having the capability of installing any add-on they've desired.

    Yes how pampered a life I've led in my fantasy-land where the computer performs in accordance with my instruction. oh i was a fool to think personal computing would remain my own personal fucking shangri-la. Thank god Mozilla has come to the rescue and spirited me away from this dubotcherous land of sodom called personal computing. But hey, you know, whatever it takes for your corporate masters to reign in ad blocking, cookie whitelisting, and script blocking. I just cant wait to watch another taylor swift autoplay video.

    --
    Good people go to bed earlier.
    1. Re:for a minute there i thought i had freedom. by LichtSpektren · · Score: 4, Informative

      The point of signing the extensions is so that some compromised or malicious developer doesn't put malware into an extension's update stream; which can be (and has been) a huge problem, since by default extensions auto-update. So, disallowing unsigned extensions is a security feature. If it turns out Mozilla will be nefarious about it, then you can always recompile Firefox from source with the mandatory signing thing cut out, or go to some fork. Right now I don't think it's a bad move.

    2. Re:for a minute there i thought i had freedom. by Barefoot+Monkey · · Score: 4, Insightful

      I don't find it hypocritical at all. If I want to use addon that isn't signed I can simply send it to Mozilla to be signed. It's quick and easy, and has no cost. I can do this for as many addons as I want, whether the addons are my own creation or somebody else's. Alternatively, I can use the developer edition, or a nightly, or the current ESR version of Firefox where this ceases to be an issue at all. With Windows 10 I have none of those options - getting a driver signed by Microsoft is prohibitive, so there's simply nothing I can do. Being completely different situations with nothing more than a superficial similarity, having a different reaction for each is quite reasonable.

  5. Firefox ESR allows turning it off by tepples · · Score: 4, Informative

    They could avoid this problem with one level of abstraction, you sign your own extension then they sign that signature.

    Mozilla won't blindly countersign extensions because it wants to avoid a situation where you sign an extension and then distribute it to the public without Mozilla having a chance to check it for the most obvious malicious patterns.

    The correct solution would be to have a signature checking config setting stored somewhere that is writeable only by an administrator account.

    Firefox ESR releases have such a setting. Firefox current lacks this setting because Mozilla wants to avoid a situation where it becomes common to social-engineer users into elevating to change this setting. Home users are more likely to use Firefox current, but they're also less likely to need an in-house private extension. Home users who make their own extensions can use Firefox Developer Edition.

  6. Re:mandatory "freedom" not to do as "desired"? by NotInHere · · Score: 5, Informative

    If you really have unsigned add-ons you want to install, there are multiple options for you. See the FAQ entry "What are my options if I want to install unsigned extensions in Firefox?".

    https://wiki.mozilla.org/Add-o...