Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
This new initiative is destined to have a positive impact on the overall security of the Firefox user community. To read the Mozilla Security Blog article, click here. You can use the Web-based version of the tool right now, or you can wait for Firefox 3.6 to be released, which will have this functionality built into it.
Am I the only one who finds it a bit sad that Mozilla doesn't use their security blog to provide some kind of official statement regarding zero-day vulnerabilities such as the one above?
Nope, not just you. Knowing whether running with javascript off mitigates this, or even whether it's platform specific would certainly help while waiting for them to sort it out.
Knowing whether running with javascript off mitigates this, or even whether it's platform specific would certainly help while waiting for them to sort it out.
Follow the "Original Advisory" url in which it states:
Call me paranoid, but for some strange reason I didn't quite fancy going to the site of some unknown (to me at any rate) Russian hacker who found this vulnerability with my potentially vulnerable browser to read about it.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.