Difference between revisions of "Firefox"

From Organic Design wiki
(problem with dot names when used with keyword.URL)
m
 
(61 intermediate revisions by 2 users not shown)
Line 1: Line 1:
[[Category:Legacy]]
+
<onlyinclude>[[w:Mozilla Firefox|Mozilla Firefox]] is a graphical web browser developed by the [[w:Mozilla Corporation|Mozilla Corporation]], and a large community of external contributors. Firefox, officially abbreviated as '''Fx''' or '''fx''' and popularly abbreviated '''FF''', started as a [[W:fork (software development)|fork]] of the [[w:Netscape Navigator|Navigator]] browser component of the [[w:Mozilla Application Suite|Mozilla Application Suite]]. Firefox has replaced the Mozilla Suite as the flagship product of the Mozilla project, under the direction of the [[w:Mozilla Foundation|Mozilla Foundation]].
= Typing article names directly into address bar =
 
Go to <tt>about:config</tt> in firefox, then scroll down to '''keyword.URL''', double-click it and change it to
 
:<tt>&#104;ttp://www.organicdesign.co.nz/</tt>
 
::One issue with this is that you can't use a name with a dot in it, you have to change dots to %2e for the name to work --[[User:Nad|Nad]] 23:19, 25 Jan 2007 (NZST)
 
= Firefox 2 =
 
Regarding typos, I installed Firefox 2 yesterday and it spell checks text in edit-boxes. I really recommend it, all i needed to do was install the Australian-English dictionary. It works a treat, although it seems to have a problem recognising "oligarcheous" :-)--[[User:Milan|Milan]] 12:19, 26 Oct 2006 (NZDT)
 
:Cool I can't wait for the new version of utterly-hideous-piece-of-shit-bloatware to download!
 
::Remember, "better" is "good enough" for most people. But then you're not like most people, which in this case is definitely a "Good Thing" :-)
 
:::Damn edit/save wiki keys don't fuckin work now - now look where your damn trusting-fatware-to-do-anything-right ideas have got us!!!!!!!
 
:::: Thanks for the warning... incidentally we have to use SAP here and it works on safari, and firefox but not our friendly trusted IE browser for OS X--[[User:Sven|Sven]] 16:49, 26 Oct 2006 (NZDT)
 
::::: Nope not putting up with it, I've nuked ff2 and gone back to 1.5. The lack of quick-keys is too much of a pain in the arse, and the only good thing it offered was this spell-checker, but it insists on american spelling even after I removed us-en from the list. --[[User:Nad|Nad]] 09:37, 27 Oct 2006 (NZDT)
 
  
= Firefox & IE7 =
+
Firefox is our choice of web-browser here at Organic Design, and this article lists the extensions and configurations we like to include with it. Note that browsers are inherently risky by the fact that any site you may visit can contain malicious code, and you are also trusting all your installed extensions. For this reason it's a very good idea to install [https://github.com/netblue30/firejail FireJail] which gives you super easy sandboxing capability. See [[Firefox#Firejail|below]] for more detail.''
Hi Aran, I am having a problem on Internet Explorer 7 when I view the [http://www.organicdesign.co.nz/Category:Todo Todo] page. Formatting between the navigation (left hand) pane and main window becomes merged. The Bookmark links in the navigation pane also no longer work correctly. When clicked they simply expand to show the underlying link, but in the navigation pane, rather than main window. Unless I go to this page the OD site seems to be behaving perfectly normally. --[[User:Sven|Sven]]
+
</onlyinclude>
:Yip I know about those problems - the best solution is not to use IE --[[User:Nad|Nad]] 21:38, 25 Jan 2007 (NZST)
+
 
::There might be a bit of a backlash to ie7 from microsoft customers, as I think they have made the options configuration different enough to be annoying aswell as the general look and feel. Firefox seems slow to start but once going I have found to be quicker to use tabs with than ie7 --[[User:Sven|Sven]] 22:57, 25 Jan 2007 (NZST)
+
== Addons ==
:::Yeah I find Firefox a bit of a pig (I've stuck with 1.5.x since FF2 doesn't allow the quick keys for edit/save etc). I have to restart it every few days since it has memory leaks. But it's tabs are very quick and its javascript seems to be way quicker than IE's too. --[[User:Nad|Nad]] 23:18, 25 Jan 2007 (NZST)
+
*[https://www.eff.org/privacybadger Privacy Badger] ''- EFF's blocker extension''
 +
 
 +
== Secure browsing ==
 +
It's becoming more and more important to ensure that you make your browsing data available to those providing your connection. This is not only important for when you're browsing through public Wifi connections or at hotels etc, but you can't trust any of the ISPs with your data nowadays either. There are plenty of freely available VPN options such as [https://www.expressvpn.com/ Express VPN] and [https://hide.me/en/ Hide.Me], but another simple way if you work with remote servers and regularly use [[SSH|Secure Shell]] is to use one of your servers as a local proxy server to browse through.
 +
 
 +
For example connecting to your remote server using Secure Shell with the following command. This means that all that can be seen by your connectivity provider is a secure shell tunnel. Here, PORT is the local port number you'd like to open to browse through, and USER@HOST is your remote server details.
 +
<source lang="bash">
 +
ssh -fnNTCD PORT USER@HOST
 +
</source>
 +
This will open a local connection on PORT that you then configure your browser to use for it's network connection using the SOCKS5 proxy protocol. See the [[SSH]] article for more details on what the options means and some additional server options you may like to use. You can see if it's working by going to [https://whatsmyip.com/ WhatsMyIP.com] or similar, and you should see that the IP address that it thinks you're at is your server's IP, and the geographic location you're apparently browsing from is the location of your server's data centre.
 +
 
 +
== Firejail ==
 +
Browsing the web is getting more and more dangerous as hacks get more sophisticated, browsers get more complicated and our personal information gets more important and valuable. We prefer to run our browsers in a "sandbox" which means that only a small part of the system is visible to them. It's very similar to running the browser in a virtual box where they're the only application installed. We use [https://github.com/netblue30/firejail FireJail] which is based on [https://lwn.net/Articles/531114/ Linux namespaces]. FireJail comes with hundreds of presets for known applications, so launching a well-known application like Firefox inside FireJail is simply a matter of preceding the application name with ''firejail'', e.g.
 +
<source lang="bash">
 +
firejail firefox
 +
</source>
 +
 
 +
Of course, we don't want to type that every time we want to launch a browser though, so you need to locate your launchers and precede the command in the ''Exec'' field with ''firejail''. To find your launchers, search for all files with "firefox" in their name and having the "desktop" extension:
 +
<source lang="bash">
 +
find / -name "*firefox*.desktop"
 +
</source>
 +
 
 +
You'll be able to to see that the browser now has limited access to the system, if you opening a file and navigating around the directory tree, you should see that most directories are empty and your home directory contains only ''Downloads'' and ''Desktop''. Also you can check what applications are being run within Firejail at any time, use '''firejail --list''' or '''firejail --tree'''.
 +
 
 +
Finally, you may want to whitelist some specific file locations if you're used to opening or saving local files from locations other than the desktop or the ''Downloads'' folders. For example, I like my browser to have full access to my ''Pictures'' folder. To do this add the '''--whitelist''' option to your ''firejail'' command before the name of the program you wish to launch.
 +
<source>
 +
firejail --whitelist=~/Pictures firefox
 +
</source>
 +
 
 +
== See also ==
 +
*[http://arstechnica.com/gadgets/2013/05/what-the-future-could-hold-for-firefox-os/ What the future could hold for Firefox OS] ''- competing with iOS and Android on their own turf isn't going to work''
 +
*[http://seclists.org/dailydave/2016/q3/51 Details on cert pinning flaw]
 +
*[https://hacks.mozilla.org/2017/11/entering-the-quantum-era-how-firefox-got-fast-again-and-where-its-going-to-get-faster/ Entering the Quantum Era - How Firefox got fast again and where it’s going to get faster]
 +
*[https://support.mozilla.org/en-US/questions/1019155 Recovering saved logins]
 +
*[https://hacks.mozilla.org/2019/05/technical-details-on-the-recent-firefox-add-on-outage/ What happened in the "addon outage"?]
 +
[[Category:Libre software]]

Latest revision as of 11:49, 4 October 2019

Mozilla Firefox is a graphical web browser developed by the Mozilla Corporation, and a large community of external contributors. Firefox, officially abbreviated as Fx or fx and popularly abbreviated FF, started as a fork of the Navigator browser component of the Mozilla Application Suite. Firefox has replaced the Mozilla Suite as the flagship product of the Mozilla project, under the direction of the Mozilla Foundation.

Firefox is our choice of web-browser here at Organic Design, and this article lists the extensions and configurations we like to include with it. Note that browsers are inherently risky by the fact that any site you may visit can contain malicious code, and you are also trusting all your installed extensions. For this reason it's a very good idea to install FireJail which gives you super easy sandboxing capability. See below for more detail.


Addons

Secure browsing

It's becoming more and more important to ensure that you make your browsing data available to those providing your connection. This is not only important for when you're browsing through public Wifi connections or at hotels etc, but you can't trust any of the ISPs with your data nowadays either. There are plenty of freely available VPN options such as Express VPN and Hide.Me, but another simple way if you work with remote servers and regularly use Secure Shell is to use one of your servers as a local proxy server to browse through.

For example connecting to your remote server using Secure Shell with the following command. This means that all that can be seen by your connectivity provider is a secure shell tunnel. Here, PORT is the local port number you'd like to open to browse through, and USER@HOST is your remote server details.

ssh -fnNTCD PORT USER@HOST

This will open a local connection on PORT that you then configure your browser to use for it's network connection using the SOCKS5 proxy protocol. See the SSH article for more details on what the options means and some additional server options you may like to use. You can see if it's working by going to WhatsMyIP.com or similar, and you should see that the IP address that it thinks you're at is your server's IP, and the geographic location you're apparently browsing from is the location of your server's data centre.

Firejail

Browsing the web is getting more and more dangerous as hacks get more sophisticated, browsers get more complicated and our personal information gets more important and valuable. We prefer to run our browsers in a "sandbox" which means that only a small part of the system is visible to them. It's very similar to running the browser in a virtual box where they're the only application installed. We use FireJail which is based on Linux namespaces. FireJail comes with hundreds of presets for known applications, so launching a well-known application like Firefox inside FireJail is simply a matter of preceding the application name with firejail, e.g.

firejail firefox

Of course, we don't want to type that every time we want to launch a browser though, so you need to locate your launchers and precede the command in the Exec field with firejail. To find your launchers, search for all files with "firefox" in their name and having the "desktop" extension:

find / -name "*firefox*.desktop"

You'll be able to to see that the browser now has limited access to the system, if you opening a file and navigating around the directory tree, you should see that most directories are empty and your home directory contains only Downloads and Desktop. Also you can check what applications are being run within Firejail at any time, use firejail --list or firejail --tree.

Finally, you may want to whitelist some specific file locations if you're used to opening or saving local files from locations other than the desktop or the Downloads folders. For example, I like my browser to have full access to my Pictures folder. To do this add the --whitelist option to your firejail command before the name of the program you wish to launch.

firejail --whitelist=~/Pictures firefox

See also