handyfloss

Because FLOSS is handy, isn’t it?

Posts Tagged ‘firefox’

Minipunto para Arsys

Posted by isilanes on February 17, 2008

Vaya por delante que no conozco nada de Arsys, y que (por ahora) no tengo nada que ver con ellos. Simplemente quería compartir el hecho de que he vistado su página (fantaseando con adquirir un dominio propio), y he visto esto:

arsys_ff.png

¿Nada raro? Pues fijáos en que, como buen servicio relacionado con Internet, tiene una fotico con un señor y un navegador web abierto… ¿Internet Explorer? Yo creo que no…

Posted in Free software and related beasts | Tagged: , , , , | 2 Comments »

Flash: better without Flash

Posted by isilanes on January 6, 2008

Remember my previous post about a problem with Flash in Firefox/Iceweasel? Now the second part.

After following my own instructions, I ended up with a Flash instalation that could play YouTube videos correctly, but some other Flash animations would not work. By chance, my computer at work would reproduce any Flash animation just fine, so… why would that be?

To find out the reason, I have compared what Flash-related packages I have installed in Homer (my computer at work) and Heracles (the one at home). The result is quite surprising:


Homer[~]: aptitude search flash
p   flashplayer-mozilla       - Macromedia Flash Player
p   flashrom                  - Universal flash programming utility
p   flashybrid                - automates use of a flash disk as the root filesystem
p   libflash-dev              - GPL Flash (SWF) Library - development files
p   libflash-mozplugin        - GPL Flash (SWF) Library - Mozilla-compatible plugin
p   libflash-swfplayer        - GPL Flash (SWF) Library - stand-alone player
p   libflash0c2               - GPL Flash (SWF) Library - shared library
p   libroxen-flash2           - Flash2 module for the Roxen Challenger web server
p   m16c-flash                - Flash programmer for Renesas M16C and R8C microcontrollers
p   vrflash                   - tool to flash kernels and romdisks to Agenda VR
Homer[~]: aptitude search swf
p   libflash-swfplayer        - GPL Flash (SWF) Library - stand-alone player
p   libswf-perl               - Ming (SWF) module for Perl
p   libswfdec-0.5-4           - SWF (Macromedia Flash) decoder library
p   libswfdec-0.5-4-dbg       - SWF (Macromedia Flash) decoder library
p   libswfdec-0.5-dev         - SWF (Macromedia Flash) decoder library
v   libswfdec-dev             -
p   pyvnc2swf                 - screen recording tool to SWF movie
v   swf-player                -
p   swfdec-mozilla            - Mozilla plugin for SWF files (Macromedia Flash)
p   swfmill                   - xml2swf and swf2xml processor

Yes, Flash works perfectly at Homer because it has no package installed with swf or flash in their name! And I don’t have any Gnash package installed, either. I removed all swf/flash-related packages on Heracles, and now Flash works perfectly in my home computer too.

Posted in howto | Tagged: , , , , , , , | 7 Comments »

More Firefox vulnerabilities

Posted by isilanes on April 27, 2006

It’s getting old already. Not Firefox, mind you. What upsets, bores, or downright outrages me, are those “impartial” vulnerability reports that newspapers, blogs and web sites publish, regarding both IE and Firefox bugs and exploits.

The last one, so far, I found at menéame. Their source of info is an article at Hispasec. In the name of “political correctness”, they reveal a bug in IE, and another one in Firefox. The reader gets the impression, not only that no browser is perfect (which is true), but that both have comparable vulnerabilities, which is a screaming lie.

The IE vulnerability they report is that a web page with specially crafted OBJECT tags can stop IE from working, and leave it in a state where arbitrary code could be injected into it and then executed. Pretty scary news, if the second part is true.

The Firefox vulnerability, on the other hand, consists on a JavaScript code piece than can crash Firefox. The code snippet can be found here, or directly tested visiting this page. Beware that the latter will cause your Firefox to crash.

Now, they are comparing apples to oranges again. The IE vulnerability can render it in a potentially dangerous state, whereas the Firefox bug merely crashes it. Yes, it is grave. Yes, it is annoying. But it is not risky for your computer. Secondly, I visited the link above, and… hey! nothing happens here! What is this bug they talk about? Well, as it happens, I have the NoScript extension installed, so the rogue page could not execute its malicious JavaScript code and make my browser crash. I had to manually accept the site in the list of sites that my Firefox accepts JavaScript to be executed from, in order to have it crash my browser.

Which bug would you prefear to bear with, even not taking into account that the Firefox bug will be fixed much faster?

Posted in Free software and related beasts | Tagged: , , , | Leave a Comment »

Firefox 2 – Microsoft 0

Posted by isilanes on March 28, 2006

I am shocked to read this article in El Pais, regarding yet another bug in Internet Explorer, for which there is no official patch as of now.

What shocks me is that, in the same line, they go bash Firefox because “it also has its issues”. The example they give is the following: a guy browses to some date-finding web pages, instructing the browser not to save the passwords. Next, his girlfriend uses the same computer, but from her account, to surf the web (with Firefox), and apparently, when setting herself some password-related options, she comes across a list of sites that had the option “Do not save the password for this site”… the sites her boyfriend had visited. Result: a) they split up, and b) a bug gets reported (by the woman) to Firefox, regarding a user privacy breach.

Now, the reputed bug consists in the fact that the privacy settings (list of sites for which passwords are and are not saved) for a user (the guy), was supposedly accesible for another one (the gal). This would indeed be a security hole, and worth a big fat bug warning.

However, this was not the case. First, what seems to have happened is that the guy actually used her gf’s account to surf the web (when he set up her account), so there you are.

Second, they were running Firefox under Windows. If somehow the private settings of one account were accesible by the other one, it would be Windows’ fault, not Firefox’s. When running under, e.g., Linux, the privilege separation of users would not allow for that, no matter how wickedly wrong Firefox would have been made!

In short: the journalist reports a grave bug of Internet Explorer (product of Microsoft), and then tries to level the MS/Open Source battlefield by charging Firefox with another “bug” that is either due to user incompetence, or the OS’s fault (Windows, which is a product of… yes, Microsoft again). In my view, it’s a 2-0 victory for Firefox/Open Source movement, trying to pass as a 1-1 draw for IE/MS.

Posted in This evil world | Tagged: , , , , , | Leave a Comment »