Jump to content

Search the Community

Showing results for tags 'browsers'.



More search options

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Site Related
    • News & Updates
    • Site / Forum Feedback
    • Member Introduction
  • News
    • General News
    • FileSharing News
    • Mobile News
    • Software News
    • Security & Privacy News
    • Technology News
  • Downloads
    • nsane.down
  • General Discussions & Support
    • Filesharing Chat
    • Security & Privacy Center
    • Software Chat
    • Mobile Mania
    • Technology Talk
    • Entertainment Exchange
    • Guides & Tutorials
  • Off-Topic Chat
    • The Chat Bar
    • Jokes & Funny Stuff
    • Polling Station

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Found 20 results

  1. Newer versions of Chrome, Safari, and Opera will no longer allow you to disable hyperlink auditing, which is a concern for those seeking maximum privacy. While some of these browsers previously allowed you to disable this feature, newer versions are going in the opposite direction. Hyperlink auditing is an HTML standard that can be used to track clicks on web site links. This is done by creating special links that ping back to a specified URL when they are clicked on. These pings are done in the form of a POST request to the specified web page, which can then examine the request headers to see what page the click came from. To create a hyperlink auditing URL, you can simply create a normal hyperlink HTML tag, but also include a ping="" variable as shown below. Example Ping POST Request Ping HTML Link This will render on the page as a normal link to google.com and if you hover over it, will only show you the destination URL. It does not show you the ping back URL of https://www.bleepingcomputer.com/pong.php, so users will not even realize this is happening unless they examine the sites source code. When a user clicks on the above link, the browser will first send a POST request back to the ping URL https://www.bleepingcomputer.com/pong.php as shown below. It will then open the www.google.com page. This means that every time a user clicks on a hyperlink audited link, the browser will make two requests instead of one. Scripts that receive the ping POST request, can then parse the headers in order to see what page the ping came from and where the hyperlink audited link was going to. The headers associated with the information sent in the ping request are shown below. [HTTP_PING_FROM] => https://www.bleepingcomputer.com/ping.html [HTTP_PING_TO] => https://www.google.com/ [CONTENT_TYPE] => text/ping As you can see, using Hyperlink Auditing developers can track link clicks from any web property that they have access to. Most browsers wont let you disable in the future With privacy and online tracking being such a large problem and major concern for many users, you would think that browser developers would give you the option to disable anything that could affect your privacy. Unfortunately, this seems to be going in the reverse direction when it comes to hyperlink auditing. According to developer Jeff Johnson, Safari enabled hyperlink auditing by default, but allowed you to disable it by using the following hidden preference. defaults write com.apple.Safari com.apple.Safari.ContentPageGroupIdentifier.WebKit2HyperlinkAuditingEnabled -bool false Johnson has stated that this flag no longer works with Safari 12.1. "Unfortunately, this no longer works in Safari 12.1. I actually discovered the issue in Safari Technology Preview 72, and I filed a Radar on January 2, 2019 as rdar://problem/47000341," Johnson stated in a blog post. "Despite several months notice from me, Apple shipped Safari 12.1 last week to the public with no way to disable hyperlink auditing. I hope to raise awareness about this issue, with the ultimate goal of getting hyperlink auditing disabled by default in Safari. Apple claims that Safari is supposed to protect your privacy and prevent cross-site tracking, but hyperlink auditing is a wide open door to cross-site tracking that still exists. To end this article, I'll quote the full text of the Radar that I filed:" Chrome 73 Hyperlink Auditing Flag Google Chrome also enables this tracking feature by default, but in the current Chrome 73 version it includes a "Hyperlink auditing" flag that can be used to disable it from the chrome://flags URL. In the Chrome 74 Beta and Chrome 75 Canary builds, though, this flag has been removed and there is no way to disable hyperlink auditing. Firefox and Brave win the award Of all the browsers I tested, only Brave and Firefox currently disable it by default and do not appear to have any plans on enabling it in the future. Firefox 66, Firefox Beta 67, and Firefox Nightly 68 disable Hyperlink auditing by default and allow users to enable it using the browser.send_pings about:config setting. The privacy focused Brave Browser also disables it by default and does not allow you to enable it at all. It does have a display bug in the brave://flags that show that Hyperlink auditing is enabled, but this is a carryover from Chrome and is not displayed correctly. Going forward, if privacy is important to you and you want to reduce the risk of being tracked online, then you will need to use Firefox or Brave. Source
  2. For the second straight month, Mozilla's Firefox gained user share in January. That puts its share back where it was in mid-2018. Mozilla's Firefox wrapped up a two-month resurgence this week, clawing back some previously-lost user share to return to a level last seen in the middle of 2018. The open-source browser remains the only major browser committed to using a rendering engine that is not based on Google's Blink or its predecessor, WebKit. According to web analytics vendor Net Applications, Firefox's share rose by three-tenths of a percentage point in January, reaching 9.9%. The increase was the second consecutive month of user share growth and put Firefox back where it was last June. Firefox's gains were important, as the browser flirted with dangerous territory as recently as November, when it slumped to below 9%. The trend at the time looked nasty; if the declines had continued at the 12-month average pace, Firefox would have fallen below 7% by August 2019. The increases of the last two months have altered that forecast. The 12-month average, if continued, would still erode Firefox's user share, but at a much slower tempo: the browser should remain above 9% throughout this year, falling under that bar only in January 2020. If Mozilla maintains the Firefox user share recovery, its efforts to revitalize the browser - starting with the November 2017 debut of Firefox Quantum - will be validated. What's unclear is whether that work will simply let Firefox survive or if it can trigger a return to a time when the browser was in solid second place (then behind IE) with a quarter of the world's share. The browser maker does have a message that may resonate in 2019: On Windows, it will soon be the only major browser running on non-Google technologies. In December, Microsoft announced that it would abandon its home-grown rendering and JavaScript engines for those built by Chromium, the open-source project led by Google. Mozilla has already used that to argue people should download and try Firefox, and certainly will do so again. Net Applications calculates user share by detecting the agent strings of the browsers people run to reach the websites of Net Applications' clients. The firm tallies the visitor sessions rather than count users, as it once did. In other words, Net Applications' data best illustrates user activity. IE sinks, Edge doesn't Microsoft's browsers - Internet Explorer (IE) and Edge - also gained ground in January, adding approximately two-tenths of a percentage point to put their combined shares at 12.6%. The increase wasn't unprecedented, as the browsers posted in-the-black numbers four out of the 12 months in 2019. One month does not a trend make, however. The increase was solely due to Edge, which rose by half a percentage point to 4.6%, a number that meant about 11% of all Windows 10 users ran the browser in January. The latter figure has been an important metric, as it has showed the enthusiasm (or lack thereof) for the Windows 10-only browser. Plainly put, there has been little to none, although it also has occasionally climbed rather than fallen. Microsoft's decision to go "full-Chromium" with Edge - to effectively give up the fight against Chrome's dominance and join it by crafting a doppelgänger - was a bet that the browser could survive, even grow, under that strategy. The question is whether there will be much of an Edge left by the time Microsoft switches technologies. As a result, January's uptick had to be welcome by Microsoft. On the other hand, IE dropped nearly four-tenths of a percentage point last month, sliding to 7.9%, a record low for the browser that once lorded it over the world - at least the worldwide web - with as much impunity as any of history's monarchs. IE was used on about 9% of all Windows PCs in January, also an all-time low. Microsoft may well applaud the downward spiral of IE, as the browser has been maintained solely for legacy purposes in enterprises. There are, in fact, good arguments to be made that Microsoft will drop IE as soon as it has built "full-Chromium" Edge. Chrome grabs more share...yawn Net Applications pegged Chrome's user share at 67.3% for January, a one-tenth of a percentage point boost. It was the ninth increase in the previous 12 months. Google's browser remained on a steep trend line, with its 12-month average indicating it would crack 68% in March and 70% in July. Each time Chrome takes a pause that could be interpreted as a high-water mark, within a month or two it jumps up again to maintain momentum. Elsewhere, Apple's Safari added three-tenths of a percentage point to its user share, ending January with an even 4%, the browser's highest mark since April 2018. Its portion of all Macs also grew, climbing to 37.8% - or more than two-and-a-half points above December - even though the operating system share of macOS remained above 10.6% for the second straight month. Source: Top web browsers 2019: Firefox scores second straight month of share growth (Computerworld - Gregg Keizer)
  3. A new web security paper via ArXiv has revealed details about a little known TLS tracking technique that companies can use to track users across the web. TLS Tracking Across the Web Most users know that they can be tracked via cookies, which is why some delete them or use their browsers’ own “private modes,” which don’t store session cookies. However, over the past few years, due to browsers continuing to implement advanced new features, new tracking capabilities have appeared, such as browser fingerprinting and now TLS tracking too. When a TLS connection is made between the user’s computer and the visited website’s server, some encryption-related information is exchanged, which can be reused the next time the same visitor comes to the site. Because this information is unique to that user, the service provider or a third-party tracker can recognize and then track the user across the web. The Hamburg University researchers also revealed that the default lifetime for TLS session resumption in most browsers is up to eight days. What this means in practice is that two-thirds of the internet users can be tracked permanently through these TLS sessions. The danger is associated mostly with third-party trackers, such as Google, that interact with users via many host names. The researchers noted that Google’s tracking service is present on 80 percent of the sites on Alexa's top one million sites list. The researchers also warned that in the case of 0-RTT (zero-round trip) resumptions when using TLS 1.3, forward secrecy can not be supported, thus also reducing the communications security. Countermeasures Against TLS Tracking The best way to fight against this form of TLS tracking is to pressure browsers to disable it completely (especially for third-party tracking services) or at least allow users to disable it manually. The Tor browser is one of the browsers that disables TLS tracking by default. Based on the empirical evidence the researchers have gathered, they recommended that the TLS session resumption lifetime should be at most 10 minutes, not seven days as it’s currently recommended for the latest version of TLS (1.3). Workaround for Firefox Credits to: audiospecaccts The reason you must add security.ssl.disable_session_identifiers see here https://bugzilla.mozilla.org/show_bug.cgi?id=967977#c17 Source
  4. Windscribe VPN 1.81 Build 42 / 41 Stable Internet As It Should Be Windscribe is a desktop application and browser extension that work together to block ads and trackers, restore access to blocked content and help you safeguard your privacy online. Learn More. https://assets.windscribe.com/video/windscribe_explainer_480p.mp4 What's New: https://blog.windscribe.com/windscribe-1-81-beta-changelog-b9c557906d60 We’ve been working on this version for quite a while, existing installations should prompt you to update the app over the next 48 hrs. Here is what’s new. Changelog: New features IKEv2 protocol support (manual and automatic mode) Emergency Connect / Secure Login Fixed bugs Wifi-sharing not working after wakeup Forcibly close all TCP sockets after tunnel up Don’t forcibly disconnect if currently connected node is missing from the server list Language detection defaults to English instead of Arabic Reinstall/enable WAN miniport adapters if missing/disabled Adjusted DPI to work with multiple scale factors Other Changes Added “Disconnecting” state Eliminated redundant API calls Reduced the server ping frequency Updated OpenVPN binaries to latest version Don't auto-enable the firewall (in Automatic mode) on computer start up if auto-connect is false Simplified installer flow + additional “custom install” options Async DNS resolver Adjusted node selection algorithm to favor lower latency nodes Forcibly expand certain locations when the country name is clicked Detect if LAN range is RFC-1918 complaint To-do list for next version: CLI interface Favorite locations Dedicated IP support IKEv2 connectivity test SOCKS5 server UDP associate support Fix startup error on multi-user computers Mystery feature 1 Mystery feature 2 Downloads: Windscribe for Your Computer: Windscribe for Your Browser: Windscribe for Your Phone: Windscribe for Your TV: Windscribe for Your Router: Config Generators:
  5. Mozilla engineers have borrowed yet another feature from the Tor Browser and starting with version 58 Firefox will block attempts to fingerprint users using the HTML5 canvas element. Canvas blocking is an important addition to Firefox's user privacy protection measures, as canvas fingerprinting has been used for a long time by the advertising industry to track users. Canvas fingerprinting has become widespread in recent years The method has become widespread in recent years after the EU has forced websites to show cookie popups. Because canvas fingerprinting doesn't need to store anything in the user's browser, there are very few legal complications that come with it and this user tracking/fingerprinting solution has become a favorite among ad networks. Canvas fingerprinting works by loading a canvas HTML tag inside a hidden iframe and making the user's browser draw a series of elements and texts. The resulting image is converted into a file hash. Because each computer and browser draws these elements differently, ad networks can reliably track the user's browser as he accesses various sites on the Internet. Canvas fingerprinting is described in better detail in this 2012 research paper. Feature borrowed from the Tor Browser The Tor Browser has fixed this problem by blocking any website from accessing canvas data by default. The Tor Browser displays the following popup every time a site wants to access the canvas element. Tor Browser's canvas fingerprinting blocking system Based on an entry in the Mozilla bug tracker, engineers plan to prompt users with a site permission popup when a website wants to extract data from a < canvas > HTML element. This is similar to the permission shown when websites wish to access a user's webcam or microphone. Firefox 58 is scheduled for release on January 16, 2018. The second feature Firefox takes from the Tor Browser Canvas fingerprinting blocking is the second feature Mozilla engineers have borrowed from the Tor Project. Previously, Mozilla has added a mechanism to Firefox 52 that prevents websites from fingerprinting users via system fonts. Mozilla's efforts to harden Firefox are part of the Tor Uplift project, an initiative to import more privacy-focused feature from the Tor Browser into Firefox. The Tor Browser is based on Firefox ESR, and usually features flowed from Firefox to Tor, and not the other way around. In August 2016, Mozilla also blocked a list of URLs known to host fingerprinting scripts. Previous efforts to improve Firefox user privacy also included removing the Battery Status API. Source
  6. The warning users will see when loading an SHA-1 website Microsoft has completed the deprecation of SHA-1 certificates with the May 2017 security updates, so websites that are using it are now blocked in Microsoft Edge and Internet Explorer. Split into three different phases, the SHA-1 deprecation is a security measure that all major browser developers have agreed with, including Microsoft, Google, and Mozilla, with Redmond now applying the changes to its new Windows 10 browser as well. Users trying to load a website that uses an SHA-1 certificate will see a warning telling them “there’s a problem with this website’s security certificate” and “this might mean that someone’s trying to fool you or steal any info you send to the server.” Microsoft recommends users to “close this site immediately,” but provides them with two options, one of which is to continue to the webpage. Also blocked in Firefox and Chrome “We intend to do more to warn consumers about the risk of downloading software that is signed using an SHA-1 certificate. Our goal is to develop a common, OS-level experience that all applications can use to warn users about weak cryptography like SHA-1. Long-term, Microsoft intends to distrust SHA-1 throughout Windows in all contexts. Microsoft is closely monitoring the latest research on the feasibility of SHA-1 attacks and will use this to determine complete deprecation timelines,” Microsoft explains. The SHA-1 deprecation is taking place on all Windows versions that are still supported in May 2017, so while Edge is only available in Windows 10, Internet Explorer is introducing this change on Windows 7, 8.1, and 10. Microsoft explains that enterprise and self-signed SHA-1 certificates are not affected by this security update, though the company recommends everyone to switch to SHA-2 as soon as possible. Seeing Microsoft finally banning SHA-1 is not such a big surprise, as this hashing function has been around since 1995, with a growing number of attacks recorded in the last decade. Companies and organizations alike have blocked the use of SHA-1 certifications, including US federal agencies which are no longer allowed to use it since 2010. Source
  7. Microsoft Edge in Windows 10 Creators Update Windows 10 Redstone 3 is scheduled to launch in September, and just like the Creators Update, it’s expected to introduce a bunch of new major features on PCs (the future of mobile is still uncertain right now, and there are rumors that focus on smartphones could drop completely until the fall). One of these features appears to be aimed at Microsoft Edge, as according to a new report, the software giant wants to start delivering updates for the browser through the Windows Store. Why is this so important? First and foremost, Microsoft Edge is currently updated only when new OS releases are getting the go-ahead. This means twice every year, as per Microsoft’s Windows 10 update schedule, as the operating system is now receiving major updates in March and September. More frequent updates Already used in the past, when Edge received extension support in the Anniversary Update and tab improvements, more Flash controls, and a bunch of other features in the Creators Update, this strategy is keeping Microsoft’s new browser behind rivals, which are getting updates at a much faster pace, in most of the cases monthly or even more frequently. With Windows 10 Redstone 3, all of these could finally change, as Microsoft wants to deliver updates for Edge through the Windows Store, so users won’t have to wait until a new OS version goes live to get these improvements. This is possible because Edge itself is developed as a universal app, so shipping updates can be done through the Store more often if needed. Most likely, Microsoft will adopt a strategy similar to other apps like Office and Groove Music, with improvements first shipped to insiders and then to users in the production ring when testing is complete. More information could be provided by Microsoft at the Build developer conference this month, but there’s no doubt this is the better strategy, especially because Edge is still trailing behind its rivals in terms of features. Third-party data puts Google Chrome on the first spot with nearly 60 percent market share on the desktop, while Edge is far behind with just 5 percent. Source
  8. With its Fathom JavaScript framework, Mozilla wants to extract meaning out of web pages and produce a more intelligent browser. Positioned as a "mini language" for writing semantic extractors, Fathom already is in production with Firefox's Activity Stream web traffic tracker, picking out page descriptions, images, and other items, said Mozilla's Erik Rose. Still in an early stage of development, Fathom "enables Firefox to understand the structure and content of a web page," he said. The framework could be implemented in browsers, browser extensions, and server-side software. Rose presented scenarios in which Firefox could understand pages the same as a person. For example, the browser could recognize and follow a log-in link, provide hotkeys to dismiss popovers, hide superfluous navigation or header sections on small screens, and determine what to print without needing print stylesheets. These scenarios, he said, assume the browser can identify meaningful parts on a page. Echoing the much-touted semantic web, Rose cited previous attempts in this vein, such as semantic tags, Resource Description Framework, and microformats. Fathom, meanwhile, is a data-flow language like Prolog. It extracts meaning from web pages, identifying parts like address forms, Previous/Next buttons, and the main textual content. DOM nodes are scored and extracted based on user-specified conditions, and a system of types and annotations expresses dependencies between scoring steps and controls state. Existing sets of scoring rules can be extended without having to directly edit them, so third-party refinements can be mixed in. Fathom's rule sets are data that look like JavaScript function calls, but the calls are making annotations in a version of a syntax tree. "Today, that gets us automatic tuning of score constants," Rose said. "Tomorrow, it could get us automatic generation of rules themselves." Source
  9. Initial Opera Developer 46 Release It’s unusual to have a new developer version on Friday, thus we also have an unusual non-default screenshot to start with – all in dark. Important things first This initial build of Opera 46 comes with important fixes for the out of memory bug when using VPN and one nasty crash that might appear during startup. It’s important for us to verify them – our lab tests suggest there should be no further problems, but to be completely sure we need your help. Weekend comes, so browse a lot. Further UI changes In addition there are multiple UI-related fixes. The most visible ones are addressing the misbehaving tooltips both in normal and private mode. Changes specific to Mac, such as removing little visual glitches and minor fixes for ad blocker, have been made. Under the hood This version comes with an updated Chromium (59.0.3047.4) and enabled expensive background tabs throttling (opera://flags/#background-tab-throttling-max-delay-30s). You can try it out yourself: background timer throttling demo. If you encounter any problems related to background tabs and their behavior let us know. Detailed list of changes in the changelog. Installation links: Opera developer for Windows (Using Opera developer for Windows installer means Opera for Computers EULA is accepted) Opera developer for Windows (Portable version) Opera developer for macOS Opera developer for Linux – deb packages Opera developer for Linux – RPM packages Source Direct Download - Offline(Standalone) installer[Win/Linux/Mac]: https://get.geo.opera.com/pub/opera-developer/46.0.2556.0/
  10. Opera 45 With Reborn Goes Beta Today, project “Reborn”, Opera’s redesign process reaches the beta stage. It’s full of user interface improvements, but it also brings you quite a few new features. Read on and enjoy one of the longest list of changes in the Opera’s beta channel history! What is Reborn? It’s more than just a UI refresh. Reborn is a codename for the project that is gradually redesigning the entirety of Opera’s user experience. Bringing along a fresh look, it has a set of new, handy features, new icons, colors, wallpapers, and a touch of animation. Reborn is inspired by Opera Neon and shares its vision of making Opera’s UI truly modern, simplified, refined, and playful. Brand new look and feel Opera’s entire layout has been updated with a new, high-quality graphical design that is more consistent across platforms. The tabs are simplified, lighter, and more elegant, making it easier to locate open tabs. The new sidebar is more subtle and refined with a touch of animation. The Speed Dial has also been renovated with smooth animations. Browser sidebar Opera’s sidebar has been moved from the Speed Dial to the main browser window, similar to how it is in Opera Neon. It provides one-click access to important tools such as bookmarks, history, personal news, and extensions. You can customize the tools that appear in the sidebar according to what you find useful. The new sidebar will be visible by default for new users installing Opera beta for the first time. Current users of beta will find the option to turn it on by flipping the pin/unpin switch at the bottom left of the Speed Dial. Chat with your friends while browsing Chatting with your friends while browsing the web doesn’t always work seamlessly. Switching between tabs when responding to a message is cumbersome and inefficient. Reborn allows you to keep your favorite messenger as a side tab for an easy reach. Three popular communicators are now available directly in the sidebar: Facebook Messenger, WhatsApp, and Telegram. To use any of them, simply click their icon. After you log in to the site, there are two ways of using this feature: you can open it in overlay or pin it side-by-side with your current tab. Pinning a communicator allows you to combine online chatting with a full browsing experience. If you use more than one messenger, you can easily switch between them by using our shortcut key for quicker access (⌘ + ⇧ + m on macOS, CTRL + SHIFT + m on Windows and Linux). The three-dotted menu button allows you to log out from your sidebar communicator without needing to visit the communicator’s website. From the menu, you can also mute your communicator’s notifications. Give your browser a new coat of colors Opera is now available in two color themes: light and dark. You can also select one of the cool backgrounds that perfectly complement Opera’s new look and feel. For this beta release, we have prepared some completely new ones. Let us know which one you like the most. Both the background wallpaper and the browser’s color theme can be managed in the “customize start page” panel and in browser settings. Fresh and refined icons Opera’s “rebirth” also means a complete icon overhaul. New icons are even more refined and elegant, and some even change colors when active. We have carefully optimized the icons for various DPIs in order to make them look perfect. Animations Animations make the Reborn interface more alive and playful. The most visible one can be found when opening private mode. Windows 7 look and feel One of Reborn’s goals is to bring a more consistent look across all platforms. This doesn’t mean Reborn will disregard the browsing experience users have been familiar with on different platforms, such as Windows 7. Despite all the changes, Reborn has retained Windows 7’s well-known platform feeling with transparent borders and a system button to close, maximize, and minimize a window. Narrow sidebar for macOS The sidebar in the Mac version can be now as narrow as on Windows. To adjust it, go to Settings -> Browser -> Sidebar -> “Enable Narrow Sidebar,” or use the sidebar context menu. New bookmark pop-up Opera now brings you a new pop-up when adding bookmarks which includes the “Finished” button. This option gives a clearer way of adding bookmarks for users who missed the confirmation that a new website was already added to the bookmark folder. Ad blocker improvements Opera automatically reloads a page when toggling ad blocking on or off for that page. It’s especially useful if you want to quickly flip the switch and it gives you much more control and comfort while browsing with ad blocker. Also, we have added some important changes to the block list management. Now, you have control over which block lists are loaded. Easylist and EasyPrivacy are turned on by default. Other lists, including regional and custom lists, can now be managed through the “Manage Lists…” dialog. Let us know if there are any other lists that you would find beneficial. Also, Opera now offers support for more advanced CSS selectors, which helps you block more ads. Spring cleanup for languages As part of a spring cleanup we have removed support for the least-used languages in the browser user interface. While we would like to support as many languages as possible, this decision frees up our time for other important tasks. The discontinued languages are Azerbaijani, Macedonian, New Norwegian, Uzbek, Afrikaans, Croatian, Kazakh, Zulu, Frisian, Punjabi, Gaelic, Irish, Myanmar, Sinhala, and Urdu. After this, Opera supports 48 different languages. Performance and security changes H.264 video works in Windows 8.x again and it now has the same hardware support as Windows 7 and Windows 10, both given in the last developer release. Opera adds in-form warnings for sensitive fields when the top-level page is not HTTPS. Whenever you start filling in your password or credit card number on a page, which is not HTTPS, the warning will appear. If you’ve made it this far, go on and check out the changelog with all the backports listed. Installation links: Opera beta for Windows (Using Opera beta for Windows installer means Opera for Computers EULA is accepted) Opera beta for Windows (Portable version) Opera beta for macOS Opera beta for Linux – deb packages Opera beta for Linux – RPM packages Source
  11. The new version lets users quickly log out from messengers Opera 45 developer has just received another significant update, as the company advances with the Reborn overhaul, while at the same time working on some other improvements as well. The most recent version of Opera 45 comes with a menu button that makes it possible to log out from messengers in the sidebar without having to go to the official page. This means that if you want to log out from Facebook Messenger, you don’t have to do it from Facebook, as you only need to click this button and then hit the log out option. Additionally, there’s a new bookmark pop-up that integrates a button called “Finished,” which according to Opera is supposed to make it a little bit clearer when adding new websites to favorites. The ad blocker is also getting some improvements with this update, with this Opera version introducing an option that allows users to choose which block lists are loaded. “Opera automatically reloads a page when toggling ad blocking on or off for that page. It’s especially useful if you want to quickly flip the switch and it gives you much more control and comfort while browsing with ad blocker,” the developing team explains. Big update for Windows 7 planned There are also some other smaller improvements, such as support for more advanced CSS selectors, but also some known issues, as new configurations are not applied immediately, but only after a browser reboot. In terms of performance, Opera managed to repair H.264 video in Windows 8, while for security, there are now new warnings displayed when in-page forms do not use HTTPS when asking for credentials. As far as Windows 7 users are concerned, Opera says that a big update is on its way, though no specifics are available at the moment. Keep in mind that this version is still part of the development stage and some bugs could still be there, so if you don’t feel like diagnosing bugs and submitting feedback, you'd better stick with the stable version. Ad blocker improvements are also part of this new version Source
  12. Rust Programming Language Takes More Central Role in Firefox Development Starting with the release of Firefox 54, the Rust programming language will take a bigger role in the Firefox browser, as more and more components will work on top of this new technology developed in the past years by the Mozilla Research team. For people unfamiliar with Rust, this is a new programming language developed by a Mozilla employee, which the Foundation officially started to sponsor beginning with 2009. In simple terms, Rust is a safer version of programming languages like C and C++, the languages at the base of Firefox and most of today's desktop software. Applications written in Rust have fewer memory-related errors and are safer to use thanks to the way the language was designed. Mozilla shipped first Rust component in Firefox 48 After seven years of working on Rust, Mozilla shipped the first Rust component with Firefox in August 2016, when the language was used to rewrite the browser's multimedia stack, the module that deals with rendering audio and video files. At the time, Mozilla reported they had zero issues during tests. Since then, Mozilla engineers have been slowly replacing more and more Firefox core components with Rust-based alternatives. According to an entry in the Mozilla bug tracker, there's so much Rust code in the Firefox core that starting with Firefox 54, Mozilla developers will need to have the Rust compiler installed on their devices in order to compile a binary version of Firefox. Mozilla might lose some Firefox users According to Firefox developer Ted Mielczarek and others, this will lead to some problems, and the bigger one is that Mozilla employees won't be able to compile binaries for platforms with smaller userbases, such as IBM's PPC64el and S390X, deployed at various companies around the world. The reason is that there's no Rust compiler for those platforms, which means that Firefox devs will fail when trying to compile a binary. The only way to fix this is if a compiler will be developed for those platforms. Most Firefox users won't be affected by this change, but Mozilla hopes they'll see a boost in performance in the future. In the upcoming year, Mozilla plans to replace most of Firefox's core engine, called Gecko, with Rust components. This operation will be done through small changes across different versions. Developer Jen Simmons perfectly described this very complex process in a blog post called "Replacing the Jet Engine While Still Flying." Source
  13. Chrome 55 Now Blocks Flash, Uses HTML5 by Default Chrome 55, released earlier this week, now blocks all Adobe Flash content by default, according to a plan set in motion by Google engineers earlier this year. Back in May, Google's staff announced that starting with Q4 2016, Chrome would use HTML5 by default, while Flash would be turned off. While some of the initial implementation details of the "HTML5 By Default" plan changed since May, Flash has been phased out in favor of HTML5 as the primary technology for playing multimedia content in Chrome. Users have to allow Flash to run on non-HTML5 websites Google's plan is to turn off Flash and use HTML5 for all sites. Where HTML5 isn't supported, Chrome will prompt users and ask them if they want to run Flash to view multimedia content. The user's option would be remembered for subsequent visits, but there's also an option in the browser's settings section, under Settings > Content Settings > Flash > Manage Exceptions, where users can add the websites they want to allow Flash to run by default. Back in May, to avoid over-prompting users, Google said it would whitelist some of the Internet's biggest web portals where HTML5 isn't yet supported, or where not all content could be played back via HTML5 just yet. The list included YouTube, Flash, VK, and others. This top 10 list has been dropped, in favor of a better system called Site Engagement (chrome://site-engagement) that gives scores to websites based on the number of visits and time spent on each site. The Site Engagement indicator takes a value from 1 to 100, and once it drops under 30, users will be prompted to enable Flash, regardless of the site's popularity and Alexa ranking. Flash, who's been accused of being a resource hog and a security threat, will continue to ship with Chrome for the time being. If you don't like Google's decision to go with HTML5 by default, there's an option in the chrome://flags section where you can revert to using Flash. Google has been preparing for a life without Flash for many years now. YouTube has dropped Flash support a long time ago, while starting with January 2, 2017, Google will stop accepting Flash ads in its AdWords program. Both Chrome and Firefox now block non-essential Flash content, such as analytics and user fingerprinting scripts. Google has been doing this since Chrome 53, and Mozilla since Firefox 48. Source
  14. BadKernel Vulnerability Affects One in 16 Android Smartphones Security flaw affects Chromium browsers & WebView component The issue at play here has been discovered and fixed in the summer of 2015 and affected the Google V8 JavaScript engine, between versions 3.20 and 4.2. Despite this bug being public for more than a year, only in August 2016 have Chinese security researchers discovered that the V8 issue also affected a whole range of Android-related products where the older V8 engine versions had been deployed. BadKernel flaw is trivial to exploit, just like Stagefright Researchers from Chinese cyber-security firm Qihoo 360 discovered that they could leverage the 2015 V8 bug to execute malicious code on Android devices via the vulnerable apps where the V8 engine had been embedded. This bug, nicknamed BadKernel, allowed them to steal data from the device, take over the user's camera, intercept SMS messages, and anything else they wanted. Since this was an RCE (Remote Code Execution) flaw, the attackers had full control over any affected smartphone. Because the BadKernel flaw can be exploited just by loading the content of a malicious web page, attackers face no difficulty in weaponizing and deploying BadKernel exploits. BadKernel affects countless of other apps Google ships the V8 engine with the Chromium mobile browser framework, used for the creation of mobile browsers such as Chrome and Opera. The V8 engine also ships with the WebView Android component, which mobile developers use inside their apps to view Web content inside the application, without opening a dedicated browser. Currently, many popular apps such as WeChat, Facebook, Twitter, or Gmail, use the WebView component. Vulnerable WebView versions are also the default on Android 4.4.4 up to version 5.1. Additionally, some SDKs, such as the Tencent X5.SDK, also deployed a custom V8 engine, based on the V8 versions vulnerable to BadKernel. This means that apps created with this SDK are also vulnerable to BadKernel attacks. This list is mainly comprised of Chinese mobile apps such as QQ, QQ Space, Jingdong, 58 City, Sohu, and Sina News. Many outdated apps still use vulnerable WebView components While the V8 engine is currently at version 5.1, the vulnerable versions are still embedded in many applications, some of which have remained out-of-date, while others have not been updated by their users. At the time of writing, the BadKernel flaw has received very little attention, despite being known since August 2016. "BadKernel is still relatively unknown in the US and Europe because it was discovered by the Qihoo 360 research group who published their original findings in Chinese, which was not easily accessible by the rest of the world," Clark Dong of Trustlook Mobile Security told Softpedia via email. All major smartphone vendors affected by BadKernel flaw Dong's company has compiled a list of smartphone models, Android and browsers versions that are currently vulnerable to this flaw. The list includes all the big industry names from Alcatel to HTC, and from Lenovo to Sony, just to name a few. Trustlook, who operates a mobile antivirus solution for Android devices, has leveraged telemetry data from its customers to gather some statistics on the number of potentially affected users. The company says that 41.48 percent of all Samsung smartphone models may be affected by the BadKernel flaw. Additionally, 38.89 percent of Huawei smartphone models may also affected, followed by 26.67 percent of all Motorola models, and 21.93% percent of all LG devices. The most affected country seems to be Peru, with one in every five devices vulnerable to BadKernel. Peru is followed by France (14.7 percent), Nigeria (12.4 percent), Bangladesh (10.2 percent), and Thailand (9.4 percent). Three in four LG built-in browsers affected by BadKernel The same telemetry data has also revealed that the most affected browsers are LG's built-in browser (75.1 percent of all installations are vulnerable), followed by Samsung's built-in browser (41 percent of all installations), and standalone mobile Google Chrome browsers (11 percent of all installations). Users that want to check to see if their device model is affected can consult this list on Trustlook's website, or they can install a dedicated BadKernel security scanner from the Play Store (how-to video here). To avoid exposing themselves to BadKernel attacks, users should always keep their apps up-to-date, and they should not delay installing Android OS system updates. Source
  15. Kalju

    Waterfox 48.0

    https://storage-waterfox.netdna-ssl.com/releases/win64/installer/Waterfox 48.0 Setup.exe https://storage-waterfox.netdna-ssl.com/releases/win64/portable/WaterfoxPortable_48.0.0_English.paf.exe https://storage-waterfox.netdna-ssl.com/releases/win64/installer/Waterfox%2048.0%20Setup.exe https://storage-waterfox.netdna-ssl.com/releases/win64/portable/WaterfoxPortable_48.0.0_English.paf.exe Homepage | Downloads NB! I do not recommend using the same profile folder, which is used by Firefox. Lately, there is a conflict between them and the data may get damaged. If you use a separate profile folder, then may Firefox and Waterfox be used at the same time and they do not interfere with one another.
  16. body{background:none;font-family:Arial,Helvetica,sans-serif} img.rot{width:60px;border:0;float:left;vertical-align:baseline; padding: 10px;} img{float:none} img.rot{background:transparent;-webkit-transition:-webkit-transform 0.9s ease-in-out;-moz-transition:-moz-transform 0.9s ease-in-out;-o-transition:-o-transform 0.9s ease-in-out;transition:transform 0.9s ease-in-out;width:80px} img.rot:hover{-webkit-transform:rotate(1440deg);-moz-transform:rotate(1440deg);-ms-transform:rotate(1440deg);-o-transform:rotate(1440deg);transform:rotate(1440deg)} Chromium 64-bit 53.0.2775.0 Dev (NB! This icon rotates if You put the pointer over it.) Sync • WebRTC • Widevine • 53.0.2775.0 (400924) • Tuesday, 21 Jun 2016 Installer: https://github.com/henrypp/chromium/releases/download/v53.0.2775.0-r400924-win64/chromium-sync.exe Installer: MD5 Checksum: 840D97AF842924ED81BD01186E358C0E Portable paf installers: Online: File: ChromiumPortable64 53.0.2775.0 online.paf.exe Size: 1.54 MB Site: https://www.datafilehost.com Sharecode[?]: /d/d77c1b43 Offline: File: ChromiumPortable64 53.0.2775.0.paf.exe Size: 49.21 MB Site: https://www.datafilehost.com Sharecode[?]: /d/9b4fc718 More >> Updated: Latest Stable version installers are here Sync • WebRTC • Widevine • 51.0.2704.106 (723) • Friday, 24 Jun 2016
  17. Piracy monetization firm Rightscorp is promoting its browser hijacking system to ISPs. In a proposal revealed by Internet provider RCN, Rightscorp suggests a gradual approach where pirating subscribers eventually have to pay a fine to regain Internet access. Rightscorp has made plenty of headlines in recent years, often due its aggressive attempts to obtain settlements from allegedly pirating Internet users. Thus far these efforts haven’t been particularly successful. Rightscorp is reporting millions in losses and most major Internet providers are not forwarding their settlement demands, even when they are offered a cut of the proceeds. In order to make their services more ‘appealing’ to ISPs the anti-piracy firm recently added a new strategy. In addition to sending in notices, it now offers ISPs a system where the browsers of subscribers are locked until they pay their ‘fine.’ We uncovered the browser hijacking plan before, but thanks to a letter made public by Internet provider RCN we can now see how Rightscorp promotes it to ISPs. The letter detailing Rightscorp’s proposal was released by RCN this week, as part of the court case it started earlier this month. In the letter Rightscorp claims that it’s tracking tens of thousands of repeat infringers on RCN’s network, for which it sent over a million notices. “Unfortunately, the problem on your network is massive and growing,” Rightscorp writes. “It is our professional estimation that on an annual basis, there are still 95 million instances of songs, movies, TV shows, software applications and eBooks being distributed illegally on the RCN network annually without compensation to the owners,” they add. The anti-piracy outfit says that in order to solve this issue and prevent further Government regulation, repeat infringements have to be properly warned. This means implementing a system where subscribers face serious consequences. “In our opinion, the average RCN subscriber simply does not fear that there will be any consequences if they continue to engage in piracy. “Rightscorp has a proven solution that has reduced repeat copyright infringers on ISPs that work with us. We see 374% less repeat infringement on ISPs that work with us versus ISPs that do not work with us,” the letter adds. Instead of merely forwarding settlement demands, Rightscorp proposes a system where the ISP hijacks subscribers’ browsers. Initially, this would only affect 10% of infringers but the number would gradually increase to 90%. The letter also contains details about the setup of the hijacking system, which works via a combination of soft and hard redirects. Rightscorp’s proposal The soft redirect will suspend Internet access until the subscribers acknowledge that they’ve read the notice. After five notices this switches to a hard redirect, which requires subscribers to pay up in order to browse the web again. “These single notices will have a button that the subscriber can click to indicate that they have read the notice, and it will disappear,” Rightscorp explains. “Once the subscriber receives five such notices, the subscriber will receive a ‘hard redirect’ where the subscriber will have to pay the bill to remove the redirect notice,” they add. The letter is framed as a cooperation that can benefit both parties, but also applies some mild pressure here and there. For example, it closes by mentioning the devastating effect piracy can have on copyright holders and reminds the ISP of the major impact it can have. “Without the browser hijacking, copyright holders have no option to stop piracy,” the company claims. “Just one RCN subscriber with a 5Mbps upload speed running BitTorrent can give away 1.5 million MBps or 12,000 movies a year for free. We are tracking thousands of RCN subscribers doing exactly that every day.” “Do you really want to stand by and do almost nothing while every American content creator is forced to have their work distributed worldwide for free on your network?” the letter asks. We doubt that RCN is cheering on its pirating subscribers. However, the company also doesn’t appreciate being pressured into commercial partnerships with companies that have a dubious status. Instead, it declined the offer and filed a lawsuit against music group BMG, one of Rightscorp’s major clients, describing the company’s piracy monitoring tools as flawed. Whether any other ISPs will take the bait will become apparent in the future. Rightscorp’s full letter can be downloaded here (pdf). Article source
  18. How To Handle Lots of Browser Tabs Find out how to handle lots of open browser tabs in your web browser of choice to improve the manageability of tabs and your browsing experience. Browser tabs are a useful feature supported by all modern desktop browsers. They enable you to open multiple web pages and applications at the same time in a single browser window. Most browsers seem to be optimized for low to medium numbers of tabs, and companies are using different means when certain thresholds are crossed to deal with tab overload. Mozilla Firefox and Firefox-based browsers add scroll icons to the tab bar for instance, while Google Chrome squeezes icons more and more until they don't even reveal the site's favicon let alone any title anymore. Some browsers are better suited for holding a large number of open tabs at the same time as others. While appearance is one part of the issue, memory use is another that needs to be taken into consideration. Generally speaking, Google Chrome is doing not as good as Firefox when it comes to an open tab count that crosses the 50, 100 or even 200 mark. This may change with the launch of multi-process technology in Firefox, and we will take a look at memory use when Mozilla releases the first stable version of it later this year. Tab Overload Tips For general tips regarding tabs, check out our Firefox Tab Mastery guide. Finding Tabs quickly (Firefox) Keeping an overview of all open tabs, and finding open pages quickly, can be quite the issue if you have too many tabs open. Firefox displays scroll icons while Chrome hides tab titles and favicons. Both browsers make it difficult to find tabs when a certain threshold is reached. One of the easier options to jump to open tabs is to type part of its title or domain in the address bar if you are using Firefox. The browser suggests to switch to open tabs that match what you have entered so that you can jump top the tab easily. Keyboard shortcuts Keyboard shortcuts for navigating tabs are identical in all modern browsers. The most important ones are: Ctrl-1 to Ctrl-8: jump to one of the first eight tabs open in the browser. Ctrl-9: jump to the last tab. Ctrl-Tab: switch to the tab on the right on the tab bar. Ctrl-Shift-Tab: switch to the tab on the left on the tab bar. Ctrl-Shift-Page Up: move active tab to the left. Ctrl-Shift-Page Down: move active tab to the right. Ctrl-Home: move active tab to the start. Ctrl-End: move active tab to the end. Ctrl-M: toggle audio in active tab. You can select multiple tabs at once by holding down the Ctrl-key before left-clicking on tabs you want to select. Alternatively, if the tabs are in sequence, holding Shift will do as well. Remember tabs between sessions If you want the browser to load all tabs that you had open the last time you used it, you need to configure it to do so. Chrome users load chrome://settings/ in the browser and switch the "on startup" preference to "Continue where you left off". Firefox users load about:preferences#general instead, and select "show my windows and tabs from last time" under "when Firefox starts". Please note that this will only work if you have not configured the browser to clear the browsing & download history on exit. Bookmark all Tabs The option to bookmark all tabs is part of every modern desktop browser. Simply right-click on the tab bar and select the "bookmark all" option that is provided in the menu that opens. Bookmarking all tabs can be useful for safe keeping, for instance if you have not configured the browser to open the previous session on start. Additionally, you may use it to quickly re-load the set of bookmarks at a later point in time, and even maintain several different sets of bookmarks for different purposes. Tab groups do work better usually for that purpose though. Pinning Tabs Pinned tabs serve two main purposes. First, they are always displayed at the leftmost side of the tab bar which means that you will always know that they are there. Additionally, you can use the Ctrl-1 to Ctrl-8 shortcut to quickly switch to them whenever the need arises. Second, pinned tabs will be loaded when the browser starts even if you have not set it to remember the tabs and windows from the last browsing session. To pin a tab, right-click on it and select the option from the context menu. Tab Stacking (Vivaldi) Vivaldi supports a tab stacking feature that merges multiple tabs so that they are displayed as a single tab in the browser. Simply drag and drop tabs on top of each other to make use of the feature. You can iterate through the list by left-clicking on the tab, or right-click to display additional options. Using multiple windows You may want to consider using multiple browser windows it if becomes difficult to work with the browser due to the number of open tabs. This may remove the scroll icons from Firefox, and make tab titles or at least favicons visible again in the Google Chrome browser. Loading / Running many tabs You may notice slow down on browser start if the last session is restored on start. Chrome especially has issues with this while browsers such as Firefox are configured to load tabs selectively only. Add-ons like Tab Suspender or The Great Suspender for Google Chrome, or Suspend Tab for Firefox, may unload tabs manually or automatically to save memory. Browser Extensions One of the best methods of dealing with lots of open browser tabs is to install add-ons that help you manage those tabs. Chrome users can check out Tabli, a browser extension listing all tabs and browser windows when it is activated. Firefox users have better options when it comes to that. First, they may display tabs horizontally instead of vertically using Tree Style Tab. Alternatively, they may install Tab Mix Plus to display multiple tab bars in the browser. Then there is Tab Groups, an add-on that restores the tab grouping and management feature of Firefox. Now You: Did we miss something? Feel free to let us know in the comments below. Source
  19. Techdirt readers know that the Chinese authorities have been steadily tightening their grip on most aspects of online life in the country, but there's one area that hasn't been mentioned much: the Web browser. Recently, a new report from the University of Toronto's Citizen Lab identified security and privacy issues in QQ Browser, a mobile browser produced by the China-based Internet giant Tencent. Here's a summary: Now, this could just be the result of some supremely sloppy coding combined with lax privacy practice -- in theory, at least. But that generous interpretation becomes rather harder to sustain when you bear in mind that this is not the first time Citizen Lab has found this behavior. To be precise, this is the third time. Last month, it discovered that Baidu Browser, a free Web browser for the Windows and Android platforms produced by Baidu, one of China’s biggest tech companies, has strikingly similar problems to QQ Browser: And before that, back in May last year, the same researchers found unauthorized transmission of personal data by another widely-used browser: Putting these three browsers together, you have a serious chunk of not just the Chinese online population, but across the whole of Asia. As the Citizen Lab researchers point out: The post runs through all the options, including the most likely explanation: that the companies were ordered by the Chinese authorities to build in these highly-useful vulnerabilities. Not surprisingly: But if anyone still doubts that the Chinese government wants to control every aspect of the Internet, they may like to consider the following recent report in The New York Times: It's not entirely clear what that means, but there is one possibility that would be very problematic for Chinese Internet users -- and for every Western company operating in the country: China's technology regulator has rejected that interpretation, and said that there is a "misunderstanding." But if past experience teaches us anything, it is that there really are no limits to what the present Chinese leadership is willing to do in order to bring the online world under control. And that doubtless even includes cutting China off from the rest of the Internet, if need be. source
  20. Now 30 is beta. http://dl.google.com/chrome/win/30.0.1599.14_chrome_installer.exe
×
×
  • Create New...