Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Introduction to Linux - A Hands on Guide
This guide was created as an overview of the Linux Operating System, geared toward new users as an exploration tour and getting started guide, with exercises at the end of each chapter.
For more advanced trainees it can be a desktop reference, and a collection of the base knowledge needed to proceed with system and network administration. This book contains many real life examples derived from the author's experience as a Linux system and network administrator, trainer and consultant. They hope these examples will help you to get a better understanding of the Linux system and that you feel encouraged to try out things on your own.
Click Here to receive this Complete Guide absolutely free.
(September 9th, 2005) - A security vulnerability has been detected in Firefox (1.0.6 and prior) as well as Mozilla (1.7.11 and prior), click here to jump to the relevant discussion (in this same thread).
Original Post (For Reference):
A seven year old vulnerability has been re-introduced in Mozilla and Firefox, which can be exploited by malicious people to spoof the contents of web sites.
very scary. I wonder how long this bug has been in as it worked with Firefox 1.0.3 in windows, though with very important sites like my banks site, I will close my browser then reopen so it is the first page I visit except my home page then once I've finished I will close the browser again
I cannot get the test page to work with any option (open in new tab by default, open in new window, same tab/window or anything). Maybe the vuln does not apply to Deer Park Alpa 1? Can anyone confirm this?
anybody heard anything about when 1.0.5 will be out to fix this??
AFAIK, this issue was already fixed in trunk and branches the day after i started this thread... what's taking so long to release a patched stable version??
since it seems this only works with new windows (and not new tabs), the simplest workaround would be to force links meant to open in new windows to instead open in new tabs... if you don't wanna go through the right-click routine, try this from the "known issues" section of the firefox 1.0.4 release notes:
The Help documentation refers to "Single Window Mode" options regarding "Force links opened in new windows to open in [New Tab, Same Tab]." This function was disabled at the last minute due to problems we were experiencing with it, so ignore this section of Help. To re-enable the Single Window Mode options (at your own risk - there may be crashes), use the Configuration Console (accessed by entering "about:config" in the Location bar and pressing Enter) to set browser.tabs.showSingleWindowModePrefs to true.
i using Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.8) Gecko/20050610 Firefox/1.0.4 (Debian package 1.0.4-3)
by the way, i have tried dillo. it is far better than 2 years ago,
the reasons i trying dillo.
1. it doesn't using "c++" "gecko"
2. it's immaturity make me spend less time doing internet.
3. it small
4. it is safe enough to unable post some message to these kind of board.
if you good at c, you can help them. yeah gtk and c.
from now, i am going back to dillo.
growing complexity, swimming somebody's brain.
Originally posted by darkleaf Couldn't get it to work in firefox 1.0.4 (debian package 1.0.4-3) so that's great Or was it only on earlier versions and fixed already?
the debian website currently shows 1.0.4-2 as the latest package... so i guess -3 hasn't been listed yet... but yeah, i would assume that the -3 package is the patched firefox... if you already got -3 via apt-get i assume the advisory will be coming in the mail soon and also the firefox page on the debian site will be updated...
Originally posted by win32sux the debian website currently shows 1.0.4-2 as the latest package... so i guess -3 hasn't been listed yet... but yeah, i would assume that the -3 package is the patched firefox... if you already got -3 via apt-get i assume the advisory will be coming in the mail soon and also the firefox page on the debian site will be updated...