
Mozilla'a Firefox
#1
Posted 19 May 2004 - 10:56 PM
I kind of lost a bit of confidence using IE and i've been using Mozilla's Firefox instead. Most malwares target IE (primarily CWS and all its variants), but how about other browsers, like Firefox for example, how confident should i feel using it, is it considerably more safe? I'm i still vulnerable to CWS?
Any feedback will be appreciated
#2
Posted 19 May 2004 - 11:35 PM
However, the rats over at ABetterInternet have developed a .XPI file, which is a Mozilla installer. All it does is pop up a request to install it. Just say Cancel every time, and it'll never hurt you.
I've heard that in version 1.0 of Firefox, only .xpis from Mozilla itself will install directly, and you'll be referred to the manufacturer's site for the others. That'll stop even the popups.
#3
Posted 20 May 2004 - 12:02 AM
#4
Posted 20 May 2004 - 12:14 AM
I've got the following on my Win2K Pro box:
- IE (despite my most fervent wishes, and I neutered it so it won't run)
- Firefox 0.9
- Firebird 0.6
- K-Meleon
- Netscape Navigator 4.08
- Lynx
It's just so much fun to have multiple browsers.
#5
Posted 20 May 2004 - 03:59 AM
Edited by Archon_Wing, 20 May 2004 - 03:59 AM.
#6
Posted 20 May 2004 - 06:30 AM
As for downloads, use InCtrl and monitor what gets installed. _DON'T_ download it unless it's absolutely necessary, as a general rule.
#7
Posted 20 May 2004 - 07:38 AM
Personally I would turn off the xpi installations mode until you need them. A extension easily allows you to toggle between the 2 modesYou're invulnerable to CWS.
However, the rats over at ABetterInternet have developed a .XPI file, which is a Mozilla installer. All it does is pop up a request to install it. Just say Cancel every time, and it'll never hurt you.
I've heard that in version 1.0 of Firefox, only .xpis from Mozilla itself will install directly, and you'll be referred to the manufacturer's site for the others. That'll stop even the popups.
For sure the new Firefox. will prevent XPI installation requests from being autoloaded (similar to how it blocks popups), but I understand there is still quite a bit of debate over other ideas, such as whitelisting, blacklisting, signatures and the like.
#8
Posted 20 May 2004 - 04:34 PM
Tuxedo good suggestion, i was planning to do so but was not sure which browsers, i was originally thinking of Avant and Opera, but i will check the others too!!!

Thanks to all
#9
Posted 21 May 2004 - 03:30 AM
#10
Posted 21 May 2004 - 07:35 AM
True, but as more of those new users are coming to use Firefox, we want to protect them as much as possible.The main thing about those xpi installs is that you have to be prompted first, so none of that drive-by crap. Yes, we'll always have a few people who will click yes to everything but most people will have a chance to say no at least.
In fact, currently 0.8 milestone, these xpi popups are even a greater annoyance than activex popups for inexperienced users. AT least in IE, the option to turn off activex is settable with the UI, while to turn off XPI installs in Firefox you need to change a crytc setting name after typing about:config in the addressbar. Also spywareblaster which blocks known bad activex controls, provides some protection,.
#11
Posted 22 May 2004 - 06:10 AM
#12
Guest_skycom_*
Posted 26 May 2004 - 10:48 PM
SomeMore FanFare Here
Edited by skycom, 26 May 2004 - 10:50 PM.
#13
Posted 29 May 2004 - 03:34 PM
Spyware: What you say!!
SpywareInfo: You have no chance to survive. Make your time!
#14
Posted 31 May 2004 - 01:08 PM
Do the nightly builds run alongside the regular Firefox installation, or do they install over it?It's being fixed for the next public release and it might already be fixed for the nightly builds.

#15
Posted 31 May 2004 - 10:05 PM
Spyware: What you say!!
SpywareInfo: You have no chance to survive. Make your time!
#16
Posted 02 June 2004 - 06:22 AM
You can put the program files elsewhere. The profile directory is generally reusable.Do the nightly builds run alongside the regular Firefox installation, or do they install over it?It's being fixed for the next public release and it might already be fixed for the nightly builds.
![]()
#17
Posted 04 June 2004 - 09:47 PM
#18
Posted 05 June 2004 - 09:24 AM
#19
Posted 09 June 2004 - 03:27 AM
Spyware: What you say!!
SpywareInfo: You have no chance to survive. Make your time!
#20
Posted 09 June 2004 - 02:03 PM
There's not an option in about:config to increase/decrease that as of yet. To turn .xpis off, you still have to go to about:config and change xpinstall.enabled's value to "false."
There is, however, a Mozilla Update tool in the Tools menu, which leads me to believe that they're going to start writing patches and creating a patch.mozilla.org subdomain or something.
Edited by Tuxedo Jack, 09 June 2004 - 02:03 PM.
#21
Posted 09 June 2004 - 11:56 PM
#22
Posted 10 June 2004 - 06:45 AM
Any reason why I should ?
=
#23
Posted 10 June 2004 - 09:04 AM
It's newer (0.8) ??I'm currently using Firebird 0.7 but it was suggested to me that I switch to Firefox.
Any reason why I should ?
=
#24
Posted 10 June 2004 - 09:11 AM
#25
Posted 10 June 2004 - 01:17 PM
No i wasn't aware of the name change.
Checking the Mozilla site, I took a look at their press release.
A couple of questions from anyone who might have upgraded ...
Any major improvements that you can't live without now that you have them.
Does Firefox install on top of my resident Firebird or is it a completely different application.
When I originally installed Firebird I had to go in and manually install some of the plugins which was a royal pain. Macromedia Flash and Shockwave were 2 that weren't part of the original Firebird 0.7 package.
Does Firefox 0.8 include most of the common plugins like Flash and Shockwave.
=
Edited by preston, 10 June 2004 - 01:19 PM.
#26
Posted 11 June 2004 - 09:33 PM
To upgrade, just delete the Firebird folder from c:\program files (or wherever you installed it). The new version should automatically detect your profile folder and use it.
Spyware: What you say!!
SpywareInfo: You have no chance to survive. Make your time!