Slashdot

gQuigs notes a graph up at StatCounter Global Statistics, which shows that in the last few days Firefox 3.5 became the most used browser version worldwide, edging ahead of IE7. IE8 is rising fast (along with Windows 7), but over the last few months the slope of Firefox's worldwide curve has been steeper. (In the US, IE8 has always been ahead of Firefox 3.5; in Europe Firefox has led since late summer.) The submitter suggests using the time when Firefox rules the roost, globally speaking, to put the final nail in the coffin of IE6, which still has a 14% global share (5%-7% in the US and EU; China and Korea are holding up IE6's numbers).

introspekt.i writes "Palm is building upon the Mozilla Bespin project to deliver an IDE for the Palm Pre entirely in the web browser. Apps can be developed on the server and then downloaded and deployed locally. It is an interesting tool, especially given that WebOS is so web-centric. This tool comes as a supplement to the existing development tools for Eclipse and the command line released by Palm earlier this year. The project is open to anyone who registers as a Palm developer, which is free to do."

Barence writes "Mozilla claims that its new Firefox Mobile browser could be the beginning of the end for the hugely popular app stores created by Apple and its ilk. Mozilla claims Firefox Mobile will have the fastest Javascript engine of any mobile browser, and that will allow developers to write apps once for the web, instead of multiple versions for the different mobile platforms. 'As developers get more frustrated with quality assurance, the amount of handsets they have to buy, whether their security updates will get past the iPhone approval process ... I think they'll move to the web,' Mozilla's mobile VP, Jay Sullivan, told PC Pro. 'In the interim period, apps will be very successful. Over time, the web will win because it always does.'"

A couple weeks back you asked some questions of new CodePlex Foundation President Sam Ramji. He has responded and expressed interest in participating in the discussion at some point. If you have follow up questions feel free to drop them in the discussion so he can address them as he has time.

fredboboss sends news about Mozilla's email client Thunderbird 3, whose release we noted last week. "Thunderbird 3 contains code from the French military, which decided the open source product was more secure than Microsoft's rival Outlook. The French government is beginning to move to other open source software, including Linux instead of Windows and OpenOffice instead of Microsoft Office. Thunderbird 3 used some of the code from TrustedBird, a generalized and co-branded version of Thunderbird with security extensions built by the French military."

hubert.lepicki writes "I use Google all the time. I keep two GMail tabs open when I'm online (one is private, another is a corporate account), I use Google search, and recently I switched to the Chromium browser. Google's services are fast, easy to use and usually reliable. At the same time, I know Google is tracking everything I do; I can see it in search results or their ads on web pages, which tend to match my interests. After the recent post by Mozilla's community director suggesting Bing has a better privacy policy (a response to questionable comments from Google CEO Eric Schmidt), I started to... 'google' ways of keeping my private data safe while browsing and using Google services. The results weren't very helpful, so I ask you, Slashdotters: how do I stay anonymous to Google while using their services?"

Andorin writes "Asa Dotzler, Mozilla's director of community development, has published a brief blog post in which he recommends that Firefox users move from using Google as their main search engine to Bing, citing privacy issues. Disregarding the existence of alternative search engines such as Ask and Yahoo, Dotzler asserts that Bing's privacy policy is better than Google's. Dotzler explains the recommendation with a quote from Eric Schmidt, CEO of Google: 'If you have something that you don't want anyone to know, maybe you shouldn't be doing it in the first place. If you really need that kind of privacy, the reality is that search engines — including Google — do retain this information for some time...' Ars Technica also covers the story."

supersloshy writes Today Mozilla released Thunderbird 3. Many new features are available, including Tabs and enhanced search features, a message archive for emails you don't want to delete but still want to keep, Firefox 3's improved Add-ons Manager, Personas support, and many other improvements. Download here."

systembug writes "After 10 years of waiting and some infighting, ECMAScript version 5 is finally out, approved by 19 of the 21 members of the ECMA Technical Committee 39. JSON is in; Intel and IBM dissented. IBM is obviously in disagreement with the decision against IEEE 754r, a floating point format for correct, but slow representation of decimal numbers, despite pleas by Yahoo's Douglas Crockford." (About 754r, Crockford says "It was rejected by ES4 and by ES3.1 — it was one of the few things that we could agree on. We all agreed that the IBM proposal should not go in.")

CWmike writes "Microsoft has revamped the browser ballot screen demanded by European Union antitrust regulators and may get final approval as early as Dec. 15, a source familiar with the case has told Computerworld. As first reported by Bloomberg, Microsoft modified the ballot screen after rivals, including Opera Software and Mozilla, demanded changes. Last month, Opera, Mozilla and Google submitted change requests to the European Commission, asking that the order of the browsers be randomized and that the ballot be displayed in its own application, not in Internet Explorer. According to the source, who asked not to be identified because the terms of the settlement have not been officially approved, the top five browsers — IE, Firefox, Chrome, Opera and Apple's Safari — will appear in random order each time the ballot is displayed."

An anonymous reader writes "Researchers have found several security holes in popular Firefox extensions that have an estimated total of 30 million downloads from AMO (the Addons Mozilla community site). Three 0-days were also released. Mozilla doesn't have a security model for extensions and Firefox fully trusts the code of the extensions. There are no security boundaries between extensions and, to make things even worse, an extension can silently modify another extension." The affected extensions are Sage version 1.4.3, InfoRSS 1.1.4.2, and Yoono 6.1.1 (and earlier versions). Clearly the problem is larger than just these three extensions.

CWmike writes "Mozilla will add a new lockdown feature to Firefox 3.6 that will prevent developers from sneaking add-ons into the program, the company said. Dubbed 'component directory lockdown,' the feature will bar access to Firefox's 'components' directory, where most of the browser's own code is stored. Mozilla has billed the move as a way to boost the stability of its browser. 'We're doing this for stability and user control [reasons],' said Johnathan Nightingale, manager of the Firefox front-end development team. 'Dropping raw components in this way was never an officially supported way of doing things, which means it lacks things like a way to specify compatibility. When a new version of Firefox comes out that these components aren't compatible with, the result can be a real pain for our shared users ... Now that those components will be packaged like regular add-ons, they will specify the versions they are compatible with, and Firefox can disable any that it knows are likely to cause problems.'"

CNETNate writes "Do Opera Mobile, Skyfire, or Mozilla's Fennec have the power to take down the BlackBerry browser, IE on Windows Mobile, or Safari on the iPhone? This lengthy test aimed to find out. Speed, Acid3 compliance, JavaScript rendering capabilities, and general subjective usability were all tested and reviewed. So were Opera Mini and the default Symbian browser, but these two were unable to complete some of the tests and benchmarks."

An anonymous reader writes "Cenzic released its report revealing the most prominent types of Web application vulnerabilities for the first half of 2009. The report identified over 3,100 total vulnerabilities, which is a 10 percent increase in Web application vulnerabilities compared to the second half of 2008. Among Web browsers, Mozilla Firefox had the largest percentage of Web vulnerabilities, followed by Apple Safari, whose browser showed a vast increase in exploits, due to vulnerabilities reported in the Safari iPhone browser." It seems a bit surprising to me that this study shows that only 15% of vulnerabilities are in IE.

halfEvilTech writes "Five years ago today, Mozilla released Firefox 1.0. Ars celebrates the occasion by taking a trip back in time to revisit our classic coverage of the original release." For fun, we dug up the oldest Slashdot Firefox story, which was a Firebird story proclaiming yet another name change from Feb '04. At least this name change stuck.

Trinity writes "Researchers from VUPEN have discovered critical vulnerabilities in Adobe Shockwave, a technology installed on over 450 million Internet-enabled desktops. The vulnerabilities could allow remote code execution by tricking a user into visiting a web page using Internet Explorer or even Mozilla Firefox. Version 11.5.1.601 as well as earlier ones are affected. The vendor recommends upgrading to version 11.5.1.602." Especially sobering when you consider Adobe's current push to be essentially required as an intermediary player for anyone who wants to see certain government data.

Jared sends word of Ars Technica coverage of Net Applications' monthly browser share numbers. What's significant this time is that Firefox has finally passed IE6 in worldwide share. "Internet Explorer remains ahead of the rest of the competition, but since month after month it continues to lose ground to all other browsers, Firefox has now finally surpassed IE6, which is easily the most hated version of Microsoft's browser. ... In October, all browsers except for IE and Opera showed positive growth. Between October and September, Internet Explorer dropped a significant 1.07 percentage points (from 65.71 percent to 64.64 percent) and Firefox moved up a sizeable 0.32 percentage points (from 23.75 percent to 24.07 percent). ... Although IE's decline seems to be unceasing, the real shame is that the old versions have more share than the newer ones (we can only hope that as Windows 7 gains popularity, this trend will reverse)." Ars presents a graph with their own site's browser share picture, and as you might expect it's very different from the general population's.

A new format specification has reached consensus among web and type designers and is being backed by Mozilla. Dubbed Web Open Font Format (WOFF), it is an effort to bring advanced typography to the Web in a much better way. Support for the new spec will be included as a part of Firefox 3.6 which just recently hit beta. "WOFF combines the work Leming and Blokland had done on embedding a variety of useful font metadata with the font resource compression that Kew had developed. The end result is a format that includes optimized compression that reduces the download time needed to load font resources while incorporating information about the font's origin and licensing. The format doesn't include any encryption or DRM, so it should be universally accepted by browser vendors — this should also qualify it for adoption by the W3C."

binarybum writes "Often forgotten, but the independent open source spirit lives strong in the once Mozilla project — now SeaMonkey. Version 2.0 is finally out and rivals Firefox with similar features but integrated email with a small footprint." The Register has a short piece on the 2.0 release, which mentions that SeaMonkey is now based on Firefox 3.5.4. Stephen Shankland lists some of the features in a handy bullet-point style, too. I'm using the new release right now; it's crashed once — but only once — in several hours of use.

mhammond writes "Mozilla Messaging has just unveiled a Mozilla Labs project, Raindrop, an experiment with Open Messaging on the Open Web. Raindrop uses couchdb as a storage engine and to serve the HTML/CSS/Javascript application itself, while the back-end is primarily written in Python. Although it is early days yet, the concept that you own your data may be what sets this apart from Google Wave."