Announcement

Collapse
No announcement yet.

hardening FireFox

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • hardening FireFox

    so here's a bit of a question. we had a "what's your favorite FireFox plugin" thread a while back so hopefully this will be more like that and not seem like a request for tech support (and i would hope that most folk know me enough to know that i did some research but was dissatisfied before posting here)

    Someone on IRC posted a link to some super-duper RickRoll page. (link) and what struck me about it was the fact that it not only contained a flash movie (which my browser wouldn't play since i always run my favorite plugin... FlashBlock) but it also hijacked the size and position functions. I would have thought that a browser of FireFox's caliber would prevent that.

    UPDATE: kaizoku was slick enough to point me in the channel to an "Advanced" button under Options -> Content -> JavaScript. now if only there was a way to disable those Java-enabled popup messages.

    UPDATE 2: kaizoku comes through again and mentiones the NoScript extension. i used to use an executable by that name when attempting to prevent a lot of nonsense in Win9x, but i think that was a utility from the Symantec corporation and unrelated to this. looks like a winner, i say.
    Last edited by Deviant Ollam; March 31, 2008, 18:08.
    "I'll admit I had an OiNK account and frequented it quite often… What made OiNK a great place was that it was like the world's greatest record store… iTunes kind of feels like Sam Goody to me. I don't feel cool when I go there. I'm tired of seeing John Mayer's face pop up. I feel like I'm being hustled when I visit there, and I don't think their product is that great. DRM, low bit rate, etc... OiNK it existed because it filled a void of what people want."
    - Trent Reznor

  • #2
    Re: hardening FireFox

    You just now found out about NoScript? Sad..just sad..

    You'll find it not only blocks rickrolling* but it will thwart the million things that fire off when you visit some retarded myspace page.


    *dumbest meme to come along in a while. seriously kids, go die in a fire.

    I return whatever i wish . Its called FREEDOWM OF RANDOMNESS IN A HECK . CLUSTERED DEFEATED CORn FORUM . Welcome to me

    Comment


    • #3
      Re: hardening FireFox

      as for hijacking size/position functions of your browser, sounds as if Deviant has been spending too much time at Redtube (obviously NSFW)
      "\x74\x68\x65\x70\x72\x65\x7a\x39\x38";

      Comment


      • #4
        Re: hardening FireFox

        http://lynx.isc.org/

        If you are really concerned about being secure. Older versions of Opera are also good. IMHO when it comes to secure browsers, simple is better.

        xor

        Actually couldn't be more timely http://tech.slashdot.org/article.pl?...24218&from=rss

        Secure Browser Project

        More info

        http://www.eweek.com/index2.php?opti...ge=0&hide_js=1
        Last edited by xor; March 31, 2008, 19:39.
        Just because you can doesn't mean you should. This applies to making babies, hacking, and youtube videos.

        Comment


        • #5
          Re: hardening FireFox

          heh, i'm behind on meme competence and browser hardening because i don't visit lame sites or fritter away time on bullshit.* my browser philosophy in the past has always been simple... turn everything the fuck off. if sites can't function because i strip out all scripting, embedded multimedia, etc. then the hell with them, i don't need to see what's on that page.

          i started turning things back on to view Redhook's link. imagine my surprise when FireFox acted like an all-or-nothing package. thank god i was wrong about that.


          * my ultimate time-wasters at work (or elsewhere)... pouring through IMDb pages, reading Fark's main page, and browsing random entries in Wikipedia. I don't extract sustained entertainment from them, per se, but it's amazing how just following links (or googling interesting terms) in a free-form, stream-of-consciousness sort of way can wind up leading to a dozen browser tabs and hours on end of interesting reading page after page after page.
          Last edited by Deviant Ollam; April 1, 2008, 00:31.
          "I'll admit I had an OiNK account and frequented it quite often… What made OiNK a great place was that it was like the world's greatest record store… iTunes kind of feels like Sam Goody to me. I don't feel cool when I go there. I'm tired of seeing John Mayer's face pop up. I feel like I'm being hustled when I visit there, and I don't think their product is that great. DRM, low bit rate, etc... OiNK it existed because it filled a void of what people want."
          - Trent Reznor

          Comment


          • #6
            Re: hardening FireFox

            Originally posted by xor View Post
            http://lynx.isc.org/

            If you are really concerned about being secure. Older versions of Opera are also good. IMHO when it comes to secure browsers, simple is better.

            xor

            Actually couldn't be more timely http://tech.slashdot.org/article.pl?...24218&from=rss

            Secure Browser Project

            More info

            http://www.eweek.com/index2.php?opti...ge=0&hide_js=1


            That project sounds incredibly tasty. If they can pull off W3 compliance and a sensible mdi, this could rapidly become my new best friend.
            " 'Yields falsehood when preceded by its quotation' yields falsehood when preceded by its quotation."
            - Willard Orman Van Quine

            Comment


            • #7
              Re: hardening FireFox

              One of the things that has always bothered me about Firefox, switching over from Opera where it is all standard, was site by site preferences, having to use no script, etc.

              On Opera I could enable / disable iframe support per domain. On Firefox I can only globally enable / disable iframe support, even with noscript. Since 30 to 40% of infected web sites seem to serve up iframe pop-unders, and only a couple sights legitimately use it, it would be a nice additional hardening feature.
              PGP Key: https://defcon.org/html/links/dtangent.html

              Comment


              • #8
                Re: hardening FireFox

                Originally posted by Dark Tangent View Post
                One of the things that has always bothered me about Firefox, switching over from Opera where it is all standard, was site by site preferences, having to use no script, etc.

                On Opera I could enable / disable iframe support per domain. On Firefox I can only globally enable / disable iframe support, even with noscript. Since 30 to 40% of infected web sites seem to serve up iframe pop-unders, and only a couple sights legitimately use it, it would be a nice additional hardening feature.
                Why not just use AdBlock with FilterSet G? Then you don't see any advertisements or iframe pop-unders. You can enjoy the intertubes the way it was meant to be, advertisement free.
                A third party security audit is the IT equivalent of a colonoscopy. It's long, intrusive, very uncomfortable, and when it's done, you'll have seen things you really didn't want to see, and you'll never forget that you've had one.

                Comment


                • #9
                  Re: hardening FireFox

                  Originally posted by Deviant Ollam View Post

                  Someone on IRC posted a link to some super-duper RickRoll page. (link) and what struck me about it was the fact that it not only contained a flash movie (which my browser wouldn't play since i always run my favorite plugin... FlashBlock) but it also hijacked the size and position functions. I would have thought that a browser of FireFox's caliber would prevent that.
                  I don't know if I would refer to Firefox that way. It's a different school of thought for sure. It's just another Mozilla Netscape clone in the end though I could be wrong. I feel that they jumped the shark after version 2. Too many winy neophytes types saying that I want to be cool and use Firefox but I can't see my flash movies or my Active X controls and they caved to the pressure.

                  Opera before they went and added in the kitchen sink and the 3 car garage was a pretty cool browser that was created mostly from the ground up again if I'm not mistaken. They use to charge for it so at least it started out as closed source. Version 7.x is the version you mite want to try DO.

                  Another method is to use Lynx to inspect where you want to go first, and if it looks ok, then use IE or Firefox to go there.

                  Hope that helps.

                  Not trying to be a smart arse, but you could always buy a MAC(just don't use Safari)(the phrase despised by all windows users) or just run Linux for Free either virtualized or do a dual boot.

                  xor
                  Last edited by xor; April 1, 2008, 08:36.
                  Just because you can doesn't mean you should. This applies to making babies, hacking, and youtube videos.

                  Comment


                  • #10
                    Re: hardening FireFox

                    Firefox 3 beta 5 just released has some 750+ fixes over beta 4.

                    http://www.mozillazine.org/talkback.html?article=23141

                    Should this be regarded as hardening or softening of Firefox?

                    Comment


                    • #11
                      Re: hardening FireFox

                      Originally posted by Greyhatter View Post
                      Firefox 3 beta 5 just released has some 750+ fixes over beta 4.

                      http://www.mozillazine.org/talkback.html?article=23141

                      Should this be regarded as hardening or softening of Firefox?
                      It still doesn't display .mac web pages correctly. I'm all for security, but if it can't display a web page correctly, what's the point?

                      Comment


                      • #12
                        Re: hardening FireFox

                        Originally posted by barry99705 View Post
                        It still doesn't display .mac web pages correctly. I'm all for security, but if it can't display a web page correctly, what's the point?
                        http://i23.photobucket.com/albums/b3.../ipod_day2.jpg

                        Comment


                        • #13
                          Re: hardening FireFox

                          higher resolution copy of the above comic
                          "I'll admit I had an OiNK account and frequented it quite often… What made OiNK a great place was that it was like the world's greatest record store… iTunes kind of feels like Sam Goody to me. I don't feel cool when I go there. I'm tired of seeing John Mayer's face pop up. I feel like I'm being hustled when I visit there, and I don't think their product is that great. DRM, low bit rate, etc... OiNK it existed because it filled a void of what people want."
                          - Trent Reznor

                          Comment


                          • #14
                            Re: hardening FireFox

                            Originally posted by Deviant Ollam View Post
                            Ooo la la. Bigger is louder!

                            http://apple.cansuckmyballs.com/Pics...perSticker.jpg

                            Comment


                            • #15
                              Re: hardening FireFox

                              Ouch ouch ouch!!!

                              Comment

                              Working...
                              X