Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror
×
Firefox Mozilla Open Source Software

Firefox 31 Released 172

An anonymous reader writes Mozilla has released version 31 of its Firefox web browser for desktops and Android devices. According to the release notes, major new features include malware blocking for file downloads, automatic handling of PDF and OGG files if no other software is available to do so, and a new certificate verification library. Smaller features include a search field on the new tab page, better support for parental controls, and partial implementation of the OpenType MATH table. Firefox 31 is also loaded with new features for developers. Mozilla also took the opportunity to note the launch of a new game, Dungeon Defenders Eternity, which will run at near-native speeds on the web using asm.js, WebGL, and Web Audio. "We're pleased to see more developers using asm.js to distribute and now monetize their plug-in free games on the Web as it strengthens support for Mozilla's vision of a high performance, plugin-free Web."
This discussion has been archived. No new comments can be posted.

Firefox 31 Released

Comments Filter:
  • Now... Now Now...
    • by wwphx ( 225607 )
      I just hope it is more reliable than 29 or 30. I had terrible problems with it spontaneously crashing unless I ran my browser in safe mode. And I don't have much in the way of plug-ins to blame it on.
  • by Anonymous Coward on Tuesday July 22, 2014 @04:06PM (#47510567)

    No disabling Canvas tracking and they even included
    navigator.sendBeacon by default so "analytics" is easier to send using onunload handlers. thanks Mozilla , i cant tell you how many users asked for that feature

    Mozilla : comitted to your privacy*

    *not applicable in your area

    • by mythosaz ( 572040 ) on Tuesday July 22, 2014 @04:16PM (#47510643)

      Some background - since I was unaware:
      http://www.ghacks.net/2014/07/... [ghacks.net]

    • Re: (Score:3, Insightful)

      by Anonymous Coward

      You mean the same thing that you could already do a number of ways, but had to be synchronous. You have to completely remove onunload and onbeforeunload to prevent such things.

    • by roca ( 43122 ) on Tuesday July 22, 2014 @04:36PM (#47510775) Homepage

      sendBeacon was already possible with JS using XHR, just in a slower and more user-unfriendly manner. And unlike XHR, you can disable sendBeacon without breaking the Web, so it's actually better for privacy.

      However, if you want to completely prevent any sendBeacon-like activity, you need to just disable JS on that page.

    • by roca ( 43122 )

      Preventing canvas tracking isn't simply a matter of fixing a bug. A solution would require something like "don't use the GPU" or "don't use platform font rasterization", either of which are completely unacceptable for most users due to degradation of performance or visual quality.

      If you've got a simple fix to canvas tracking, let the world know what it is, OK?

    • by jopsen ( 885607 )

      No disabling Canvas tracking and they even included Go to about:config and set "webgl.disabled" to true.

      It's not perfect... But from what I can understand this will atleast mitigate the issue: http://cseweb.ucsd.edu/~hovav/... [ucsd.edu]

      Either way, this does indeed seems like a very hard problem. And disabling canvas might not be enough. See the article from before.

  • by fnj ( 64210 )

    All right. What features did they remove, hide, or obscure? What part of the established GUI did they fuck with?

    • by tepples ( 727027 ) <tepples.gmail@com> on Tuesday July 22, 2014 @04:13PM (#47510627) Homepage Journal
      If the "malware blocking" is anything like the analogous feature in Internet Explorer (called "SmartScreen"), then it's going to be harder for end users to download and install a newly compiled executable release of an application developed and self-published by an individual, even if that program is distributed under a free software license. IE repeatedly warns users that if an executable is "not commonly downloaded" by other IE users participating in SmartScreen, it should be deleted on sight, especially if the developer hasn't paid protection money to a member of the Authenticode CA cartel.
      • by Lennie ( 16154 )

        It isn't they just improved how they check malware databases. I don't think anything else changed.

    • by MrL0G1C ( 867445 )

      FFS, my 40+ bookmark urlicons and folders just disappeared, the bookmark bar is still there, it is blank now. 1-click access to sites gone and some indeterminate amount of time pissing about trying to get them back.

      Because hey, who doesn't want to click-type-type-type-type-click-wait-click to visit their favourite sites.

  • no thanks (Score:4, Insightful)

    by xeno ( 2667 ) on Tuesday July 22, 2014 @04:12PM (#47510623)

    I'll install it when that godawful Australis interface is rolled back or replaced with something less eye-bleedingly bad. (And no, the craptastic classic plug-in is not a long-term solution.) For now, I'm holding at v28 (on Linux Mint or Ubuntu: "sudo apt-mark hold firefox"), and pondering what to do re security updates in the long run.

    Firefox has gone down the ugly-UI-shuffle-for-the-hell-of-it route, Chrome sends an astounding amount of telemetry back to the hive-mind, and IE's performance is still a total joke even if I can see past the OS implications and numbingly-bad design. Are niche browsers all we have left?

    • Re:no thanks (Score:5, Interesting)

      by xeno ( 2667 ) on Tuesday July 22, 2014 @04:16PM (#47510639)

      ...and I'm not alone. According to Moz's own dev feedback tools, the Australis phelgm-globber of an interface has been trending at 80%-dislike from day one after introduction..

      http://www.lifehacker.com.au/2013/11/less-than-20-per-cent-of-users-like-firefoxs-new-australis-ui/
      https://support.mozilla.org/en-US/questions/999831
      http://soylentnews.org/article.pl?sid=14/05/12/133214

      • 80% of the people who went to the like/dislike menu item and got past the follow up screen disliked Firefox.

    • by Luckyo ( 1726890 )

      Pale Moon on windows.

      Seamonkey sorta kinda on linux, unless you want to build Pale Moon yourself for it.

      • Re: (Score:3, Insightful)

        Why not just get the Linux version of Pale Moon? I did just that yesterday when my bookmarks toolbar disappeared, and so far I really like it.
        • I've been using it on windows since about 22 or 24 I think, and I didn't even know there WAS a Linux version of Palemoon! Thanks!

        • by Luckyo ( 1726890 )

          Apparently they actually started making it for Linux? Until very recently, Pale Moon has been windows only, and only some months ago that unofficial Linux builds started coming out from third parties.

          This suggests that Firefox dug itself into a hole so deep that there was enough demand for Pale Moon on Linux to make guys who build the browser specifically optimized for Windows to make a Linux version as well. Wow. Well done Mozilla.

    • Re:no thanks (Score:5, Insightful)

      by Anonymous Coward on Tuesday July 22, 2014 @05:00PM (#47510939)

      My gripe about the new Firefox is not the Australis interface per se, but it's an example of the core problem: Firefox removes features without giving you a choice or a way to re-enable them without plugins. For example:

      Separate Stop/Reload buttons. I get shivers of terror when I think back on the days of slow dial-up when a page would seem to hang when it was almost loaded, so I would go to hit the Stop button, only to realize in horror that it changed to Reload an instant before I pressed it, and the page would start loading again from scratch. I don't want buttons to change functionality due to forces outside my control. But hey, at least it saves a few pixels. (More on that later)

      The Find bar. Without a plugin, it can no longer be made persistent across tabs. Whose genius idea was it to not only change the default behavior, but to make the previous default behavior impossible? Did it ever occur to them that I might want to look up the same thing on more than one tab?

      Then there are the defaults they changed that don't require a plugin, but you do have to go into about:config to fix them. Separate download folders for different sites? It took me 3 weeks to figure out why after downloading several files I couldn't find them. They were in the default Windows Download folder, which I never use. Then it took me another 3 weeks to figure out why it kept jumping back to that folder, seemingly at random. Finally I figured out that it "helpfully" separated the downloads by site, which is a horrible way of doing it. And not only do you have to go to about:config to fix it, but the entry to fix it isn't even there! You have to add it yourself!

      Since I'm on a roll, I might as well bitch about my other issues with Firefox. How about their schizophrenic design philosophy?

      They remove the menu bar because it's using up too much screen real estate. (Ignoring the fact that the menu bar is a GREAT place to put toolbar buttons so you don't need an extra toolbar) All right, I disagree with their philosophy of trying to save every pixel they can for the page itself, but at least I can understand that it's a legitimate philosophy. Then they go and make the Back/Forward buttons gigantic so that they waste pixels that could be used on the page. Not to mention the wasted space from the rounded tabs, which means you can fit fewer tabs on screen at once. They should at least be consistent. If they're willing to waste space, why not "waste" it on stuff that's functional, like the menu bar?

      In short, the designers are (willfully?) ignorant of the fact that not everyone uses their web browser exactly the same way they do. They could avoid all the gripes by all the users if they did one thing: Any time they change the interface, add an easy-to-find checkbox under the options to restore the old functionality. It shouldn't require looking through about:config (and especially searching the internet for the correct item to add), or worse, a plugin, to change things back to the way they were. EVER.

      • by Lennie ( 16154 )

        "Separate download folders for different sites"

        I've never seen that behavior, is that Windows specific ?

        ___

        When you say plugin, I think mean extension.

        ___

        While I may agree or not with you or the designers, but they've changed so much an 'easy-to-find checkbox under the options to restore the old functionality' seems infeasible.

      • by yuhong ( 1378501 )

        I dug this out: https://mail.mozilla.org/piper... [mozilla.org]

      • Welcome to the party, except you are many years behind the 'crowd' - a lot of people (but fairly insignificant in the grand scheme of things) abandoned Firefox over the "Awesome Bar" debacle, where you couldn't even go back to the old functionality at all (yeah yeah, loads of people posted "fixes" which did nothing more than change the skin, while doing nothing to revert the underlying behaviour), so the current situation is nothing new.

        The way the Awesome Bar was dumped on us pushed Firefox way down on my

    • Re: (Score:3, Informative)

      by Anonymous Coward

      I switched to Pale Moon [palemoon.org], and I am very pleased. I used Firefox and its Mozilla predecessors since about v. 0.92, and I was horrified and traumatized by FF v. 29. PM is the browser Firefox should have been. The following is taken from the Pale Moon home page.

      Pale Moon is an Open Source, Firefox-based web browser available for Microsoft Windows and Linux, focusing on efficiency and ease of use. ...
      Pale Moon offers you a browsing experience in a browser completely built from its own source with carefully selec

    • by Etcetera ( 14711 )

      Firefox has gone down the ugly-UI-shuffle-for-the-hell-of-it route, Chrome sends an astounding amount of telemetry back to the hive-mind, and IE's performance is still a total joke even if I can see past the OS implications and numbingly-bad design. Are niche browsers all we have left?

      It's rather ironic that seamless integration with the OS is much less of a privacy issue than seamless integration with remote servers nowadays....

    • Re:no thanks (Score:4, Informative)

      by jenningsthecat ( 1525947 ) on Tuesday July 22, 2014 @09:28PM (#47512609)

      I'll install it when that godawful Australis interface is rolled back or replaced with something less eye-bleedingly bad

      If enough of us move to Pale Moon, (it's all I've used since shortly after Australis first shat all over my computer screen), then perhaps Mozilla will get the hint that we love Firefox, but hate what it's become. And if they don't get the hint, well, then we're supporting a viable alternative for the time when Mozilla gets eaten by the shark it just jumped.

      BTW, although the Linux version of Pale Moon is 'unofficial' and maintained by somebody outside the organization, I've had no trouble running it under Debian Jessie with all of my usual addons.

    • by Agripa ( 139780 )

      I am not sure if it is the same thing but I have been using the craptastic Classic Theme Restorer which also fixed some other UI problems.

  • by Anonymous Coward on Tuesday July 22, 2014 @04:18PM (#47510653)

    The "malware blocking for file downloads" is a severe invasion of privacy. It works by sending the URL of nearly every downloaded file to Google.

    When a binary file is downloaded, the user-agent extracts several pieces of metadata about the file, including:

            The target URL from which the file was downloaded, its referrer URL and any URLs in the redirect chain.
            The SHA-256 hash of the contents of the file.
            Any certificate verification information obtained through the Windows Authenticode APIs.
            The length of the file in bytes.
            The suggested filename for the download.

    ...

      Remote lookup (present in FF 32)

    The user-agent stuffs all file metadata into a ClientDownloadRequest protocol buffer and sends it to the remote service.

    This remote service is https://sb-ssl.google.com/safe... [google.com]

    • by antdude ( 79039 )

      Can it be disabled at least?

      • Re: (Score:2, Insightful)

        by Anonymous Coward

        Yes, it can be disabled. You have to use the "about:config" page, which means that disabling it is considered a completely unsupported operation. There is no checkbox in the main GUI to disable it!

      • by Lennie ( 16154 ) on Tuesday July 22, 2014 @05:29PM (#47511187)

        How to turn off this feature

        Do any one of the following:

                Turn off browser.safebrowsing.malware.enabled in about:config or in the Preferences > Security > "Block reported attack sites." This disables all Safebrowsing malware protection, including the warning interstitial that appears when the user navigates to a malware site.
                Replace browser.safebrowsing.appRepURL in about:config with an empty string. This disables application reputation checks but leaves other Safebrowsing malware protection intact.

        https://wiki.mozilla.org/Secur... [mozilla.org]

      • It can be disabled, but can you trust that they won't "accidentally" turn it back on with an update? If you must use Chrome, use Chromium instead. The only practical difference besides that it doesn't spy on you for Google is that you need to install a Flash player (if desired) manually.

    • by tgv ( 254536 )

      You would almost think that there was a relation between Google paying Mozilla large amounts of money and Google's desire to get as much information from users as they possibly can.

  • Misfeatures (Score:3, Informative)

    by Arker ( 91948 ) on Tuesday July 22, 2014 @04:21PM (#47510679) Homepage
    "Malware blocking" = yet another bad signature/reputation based scanner. If I wanted one, I would have one installed - and Firefox versions without this misfeature would still use it to scan, so in what universe was this worth doing?

    If you really want to do something about malware, disable javascript by default.

    "Automatic handling of pdf and ogg files" - I have a pdf reader already. I dont need another one, and I dont need one 'integrated' in my browser, period.

    "loaded with new features for developers." Pretty sure that means for advertisers.
    • by roca ( 43122 )

      > "Automatic handling of pdf and ogg files" - I have a pdf reader
      > already. I dont need another one, and I dont need one
      > 'integrated' in my browser, period.

      From the release notes: "audio/video .ogg and .pdf files handled by Firefox *if no application specified*" (emphasis added).

      > "loaded with new features for developers." Pretty sure that
      > means for advertisers.

      You just made that up.

      • From the release notes: "audio/video .ogg and .pdf files handled by Firefox *if no application specified*" (emphasis added).

        Does the bloat in the browser go away the moment I install Sumatra?

        • The pdf javascript reader wastes kilobytes on your / or C:\ partition, that's all.
          But it is handy to have it for some people. I even like sometimes just to have a black and white pdf in a tab, it's not even crashing the browser like in the old days of using acrobat reader plugin. Then a click on the download button will open it in my pdf reader of choice if I need/want it.
          Chromium gets it worse : it thinks I want to open it in xpdf. I like having xpdf around (and will install it as the only reader on a ligh

    • If you really want to do something about malware, disable javascript by default.

      What if you want to do something about malware, but don't want the hassle of re-enabling javascript when you actually want it to work (because, contrary to popular belief, it can actually be employed usefully)? What if you're too lazy to install another piece of software, or just don't want to install another piece of software? What if, god forbid, someone has different an idea on what to do about malware to you?

      "Automatic handling of pdf and ogg files" - I have a pdf reader already. I dont need another one

      Well, good news! Because as you carefully omitted to quote, "...if no other software is availabl

    • Re:Misfeatures (Score:4, Informative)

      by Anonymous Coward on Tuesday July 22, 2014 @06:28PM (#47511589)

      Speaking of misfeatures, your entire post is in tt.

  • And also seen if there were any other interesting projects out there, and check on the latest versions of other free software that I use?

    Freecode.

    • by vux984 ( 928602 )

      Erm...

      "Effective 2014-06-18 Freecode is no longer being updated (content may be stale)"

      Or were you making a joke that just whooshed by me?

  • It's 2014 and we are all still transmitting passwords in clear text web forms over SSL.

  • Thank you for turning my notebook into a feels-like-a-286 machine by now.

    With 10 tabs open it hogs almost 2GB of RAM. Used to be a fraction of it and I haven't noticed any functional improvements between now and then.

    Basically it now renders an obsolete machine (T60p) into an obsolete piece of hardware without the need to do so.

    Congratulations.

    • But is it really Firefox's fault? I mean, while I also think that Firefox is a memory hog compared to others, at least on OS X, something did change over the years: the weight of web pages.

      It used to be that most website would only require a few dozen kilobytes, or a few hundreds at the most. But these days, people who think they understand responsive design take the easy way out and just send 4 megapixel images and let the browsers resize them as needed.

    • by ichthus ( 72442 )
      What kind of tabs do you have open? 2GIGS?! 9 Tabs for me, and I'm at 285 megs:

      This page
      This one [slashdot.org]
      This one [slashdot.org]
      Dealnews [dealnews.com]
      This one [freebsddiary.org]
      This one [microchip.com]
      And, a couple of intranet pages.
      • Same here. I've routinely had ten tabs of Cracked.com, which is fairly heavy as far as I can tell, fit in half a GB. But then I use Flashblock to keep SWFs from starting automatically on most sites, and I have a few Facebook hostnames blocked in my /etc/hosts.
    • by armanox ( 826486 )

      Newsflash: Your Thinkpad with a Core Duo is obsolete. You're on the same ground as my 2006 MBP (MacBook Pro 1,1) - 32-bit and forgotten.

  • As Stephen Elop to Nokia, so Google to Mozilla. We should have known. Actually, we knew and there wasn't a damned thing anyone could do about it.

    • by marxmarv ( 30295 )

      Because the Holy Bourgeois Aesthetic demands we only allow people with Strong, Stout Hearts to rule over us.

      I think the Eich coup was about where I gave up on "social justice", as the game is presently played, being any more than a fashion accessory for the upper middle class.

  • My bug has finally been fixed - if you've always wanted to vertically center text in a select box, you're now good to go. Seriously, filed it in November of 2010, as as I can recall.

  • Another release, another time when their own FTP server is the LAST place to get the release.

    Last time it took around a week until the Android version (30) was available here [mozilla.org], where previously that was the first place to find it.

    What's next, changelog on twitter only?

  • 1STABILITY
    2PERFORMANCE
    3FEATURES
    4USER INTERFACE FUCKING FIDDLING

    Christ lord almighty, this program has gone to the shitter and it's killing me, PLEASE focus in that damned order.

    First I thought it was me or my machine, because I'm an extremely heavy tab user, but I'm seeing it on my other machines too. Yes, I run a heck of a lot of tabs in some sessions (probably over 100 right now) however Firefox has run over 100 tabs for me for the best part of 8+ years.
    When I'm researching I have 8 tabs open, it's what

  • Why? 99.99% of users will not use the development parts of Firefox which will no doubt bloat it up massively, introduce vulnerabilities and slow the browser down.

    If you want to create some kind of web development suit then fine, do that, but don't stick it in Firefox FFS.

  • Pale Moon looks like what I really want in a browser, but there's no Mac version.

    Does anyone know of a similar project for Macs?

Truly simple systems... require infinite testing. -- Norman Augustine

Working...