Language Selection

English French German Italian Portuguese Spanish

Moz/FF

Mozilla/Firefox: CRLite, Firefox 83 and TenFourFox

Filed under
Moz/FF
  • Querying CRLite for WebPKI Revocations • Insufficient.Coffee

    Firefox Nightly is now using CRLite to determine if websites’ certificates are revoked — e.g., if the Certificate Authority published that web browsers shouldn’t trust that website certificate. Telemetry shows that querying the local CRLite dataset is much faster than making a network connection for OCSP, which makes intuitive sense. It also avoids sending the website’s certificate information in cleartext over the network to check the revocation status: solving one of the remaining cleartext browsing data leakages in Firefox.

    Mozilla is currently publishing CRLite data to Remote Settings four times per day, keeping a very fresh set of revocation information for the public Web. I’ve provided some direct details on how to get at that data from the CRLite FAQ, and I want to introduce one of my command-line tools I’ve used to analyze and play with the dataset: moz_crlite_query. I’ll introduce crlite_status in a later post.

  • Firefox 83 Introduces HTTPS-Only Mode

    According to Mozilla, “the web contains millions of legacy HTTP links that point to insecure versions of websites. When you click on such a link, browsers traditionally connect to the website using the insecure HTTP protocol.”

    With HTTPS-Only Mode enabled, Firefox will attempt to establish HTTPS connections to every website and will ask for permission before connecting to a site that doesn’t support secure connections. Even if you click on an HTTP link or manually enter an HTTP address, Firefox will use HTTPS instead.

  • TenFourFox Development: TenFourFox FPR30b1 available

    TenFourFox Feature Parity Release 30 beta 1 is now available (downloads, hashes, release notes). I managed to make some good progress on backporting later improvements to the network and URL handling code, so there are no UI-facing features in this release, but the browser should use a bit less memory and run a little quicker especially on pages that reference a lot of resources (which, admittedly, is a lot of sites these days). There is also a minor update to the host database for basic adblock. Assuming all goes well, this release will come out parallel with Firefox 84 on or around December 15. I'll probably do an SPR-only build for the release immediately following to give myself a break; this will contain just needed security fixes, and there will most likely not be a beta.

Mozilla and Firefox Leftovers

Filed under
Moz/FF
  • This Week in Rust 365
  • This Week in Glean: Fantastic Facts and where to find them

    We have been working on Glean for a few years now, starting with an SDK with Android support and increasing our SDK platform coverage by implementing our core in Rust and providing language bindings for other platforms, well beyond the mobile space.

    Before our next major leaps (FOG, Glean.js), we wanted to understand what our internal consumers thought of Glean: what challenges are they facing? Are we serving them well?

  • Mozilla DNS over HTTPS (DoH) and Trusted Recursive Resolver (TRR) Comment Period: Help us enhance security and privacy online

    For a number of years now, we have been working hard to update and secure one of the oldest parts of the Internet, the Domain Name System (DNS). We passed a key milestone in that endeavor earlier this year, when we rolled out the technical solution for privacy and security in the DNS – DNS-over-HTTPS (DoH) – to Firefox users in the United States. Given the transformative nature of this technology and our mission commitment to transparency and collaboration, we have consistently sought to implement DoH thoughtfully and inclusively. Therefore, as we explore how to bring the benefits of DoH to Firefox users in different regions of the world, we’re today launching a comment period to help inform our plans.

  • New Release: Tor Browser 10.5a4

    Tor Browser 10.5a4 is now available from the Tor Browser Alpha download page and also from our distribution directory.

    Note: This is an alpha release, an experimental version for users who want to help us test new features. For everyone else, we recommend downloading the latest stable release for desktop or Android instead.

  • Firefox Nightly: These Weeks in Firefox: Issue 83

    Started investigation into making BrowserNotification look more part of chrome to eventually use as a UI for remote messages (in addition to CFR and what’s new, etc)

Announcing Rust 1.48.0

Filed under
Development
Moz/FF

The Rust team is happy to announce a new version of Rust, 1.48.0. Rust is a programming language that is empowering everyone to build reliable and efficient software.

If you have a previous version of Rust installed via rustup, getting Rust 1.48.0 is as easy as...

Read more

Also: Rust 1.48.0 released

Mozilla and Tor: Release and Greenwashing

Filed under
Moz/FF
  • Tor Browser 10.0.5

    Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. The Tor software protects you by bouncing your communications around a distributed network of relays run by volunteers all around the world: it prevents somebody from watching your Internet connection and learning what sites you visit, it prevents the sites you visit from learning your physical location, and it lets you access sites which are blocked.

    The Tor Browser Bundle lets you use Tor on Windows, Mac OS X, or Linux without needing to install any software. It can run off a USB flash drive, comes with a pre-configured web browser to protect your anonymity, and is self-contained.

  • Release: Mozilla’s Greenhouse Gas emissions baseline - The Mozilla Blog

    Today, we are releasing our baseline Greenhouse Gas emissions (GHG) assessment for 2019, which forms the basis upon which we will build to reduce and mitigate Mozilla’s organisational impact.

    [...]

    Their impact is significant, and it is an approximation. We can’t yet really measure the energy required to run and use our products specifically. Instead, we are estimating how much power is required to use the devices needed to access our products for the time that we know people spent on our products. In other words, we estimate the impact of desktop computers, laptops, tablets, or phones while being online overall.

    For now, this helps us get a sense of the impact the internet is having on the environment. Going forward, we need to figure out how to reduce that share while continuing to grow and make the web open and accessible to all.

    The emissions related to our business services and operations cover all other categories from the GHG protocol that are applicable to Mozilla.

    For 2019, this includes 10 offices and 6 co-locations, purchased goods and services, events that we either host or run, all of our commercial travel including air, rail, ground transportation, and hotels, as well as estimates of the impact of our remote workforce and the commute of our office employees, which we gathered through an internal survey.

Mozilla Thunderbird 78.5 Released with More OpenPGP Improvements

Filed under
Moz/FF

Mozilla Thunderbird 78.5 is all about improving the best feature of the 78 series, OpenPGP support, which is now built into the application and enabled by default to let users send encrypted emails.

In this version, OpenPGP gains a new option that let users disable the attaching of the public key to a signed email, improved support for inline PGP messages, as well as a fix for the message security dialog to no longer display unverified keys as unavailable.

Read more

Firefox 84 Promises to Finally Enable WebRender By Default on Linux/X11

Filed under
Moz/FF

While some of you are still discovering the new features and improvements in Firefox 83, Mozilla is already working on the next major version of the popular and open-source web browser, Firefox 84, which promises to finally enable the WebRender feature by default on Linux.

Written in Rust, the WebRender feature in Firefox makes the entire web browser faster when surfing the Internet. While WebRender is known for being extremely fast, it also makes Firefox more stable and smoother.

Read more

Mozilla Outsourcing to Microsoft Proprietary Software via 'Linux' Foundation

Filed under
Moz/FF
  • The Servo Blog: Servo’s new home

    The Servo Project is excited to announce that it has found a new home with the Linux Foundation. Servo was incubated inside Mozilla, and served as the proof that important web components such as CSS and rendering could be implemented in Rust, with all its safety, concurrency and speed. Now it’s time for Servo to leave the nest!

  • Servo Project Joins The Linux Foundation Fold

    The Linux Foundation today announced at KubeKon that it is hosting the Servo web engine, an open-source, high-performance browser engine. "Servo is the most promising, modern, and open web engine for building applications and immersive experiences using web technologies," according to Mike Dolan, senior vice president and general manager of projects at the Linux Foundation. The post Servo Project Joins The Linux Foundation Fold appeared first on LinuxInsider.

  • Open Source Web Engine Servo to be Hosted at Linux Foundation

    The Linux Foundation, the nonprofit organization enabling mass innovation through open source, today announced it will host the Servo web engine. Servo is an open source, high-performance browser engine designed for both application and embedded use and is written in the Rust programming language, bringing lightning-fast performance and memory safety to browser internals. Industry support for this move is coming from Futurewei, Let’s Encrypt, Mozilla, Samsung, and Three.js, among others.

    “The Linux Foundation’s track record for hosting and supporting the world’s most ubiquitous open source technologies makes it the natural home for growing the Servo community and increasing its platform support,” said Alan Jeffrey, Technical Chair of the Servo project. “There’s a lot of development work and opportunities for our Servo Technical Steering Committee to consider, and we know this cross-industry open source collaboration model will enable us to accelerate the highest priorities for web developers.”

  • Mozilla Punts Servo Web Engine Development To The Linux Foundation

    Ever since the mass layoffs at Mozilla earlier this year and some Mozilla projects in jeopardy many have been wondering: what about Servo? Well, today it's heading off to the Linux Foundation.

    Mozilla and the Linux Foundation are jointly announcing this morning that the Servo web engine development will now be hosted by the Linux Foundation.

    The Rust-written code-base that's served as a long in development "next-gen" web engine at Mozilla will now be developed under the Linux Foundation umbrella. Besides Mozilla, this move has the support of other industry stakeholders like Samsung and Let's Encrypt.

  • Linux Foundation: We'll host Mozilla's Rust programming language-based Servo web engine

    The latest open-source project to be hosted on the Linux Foundation is Servo, the experimental web engine developed at cash-strapped Mozilla.

Firefox 83 Released With Warp'ed JavaScript, HTTPS-Only Mode Option

Filed under
Moz/FF

Firefox 83.0 is now shipping as a notable update to the Mozilla web browser and this time around are some exciting changes.

Most notable with Firefox 83 is the SpiderMonkey "Warp" upgrade aiming to deliver better website responsiveness and other real-world JavaScript performance improvements. Mozilla describes the Warp benefits as "improved page load performance by up to 15%, page responsiveness by up to 12%, and reduced memory usage by up to 8%. We have replaced part of the JavaScript engine that helps to compile and display websites for you, improving security and maintainability of the engine at the same time."

Read more

Direct:83.0
Firefox Release

Also: Firefox 83 Arrives with HTTPS-Only Mode, PDF Form Filling + More

Firefox 84 will be the last version with NPAPI plugin support

Filed under
Moz/FF

Mozilla plans to remove support for so-called NPAPI plugins in Firefox 85 according to a post by Jim Mathies, Senior Engineering Manager, to the Mozilla Dev Platform group.

Mozilla dropped support for all NPAPI plugins except for Adobe Flash when it released Firefox 52 in March 2017. NPAPI allowed the browser to integrate plugins to add support for content such as Silverlight or Java to the Firefox web browser.

When Adobe announced that it would stop supporting Adobe Flash at the end of 2020, it was clear that Mozilla would not only disable support for Adobe Flash in Firefox but remove the entire NPAPI codebase from the browser.

Read more

Mozilla Firefox 83 Is Now Available for Download with HTTPS-Only Mode, Improvements

Filed under
Moz/FF

The biggest new change in the Mozilla Firefox 83 release appears to be a new security feature called HTTPS-Only Mode, which is implemented in Preferences, under the Privacy & Security section. It provides a secure and encrypted connection between your web browser and the websites you visit, even if they don't use HTTPS.

By default it's disabled, but when enabled, the HTTPS-Only Mode will upgrade all your website connections to use Secure HTTP (HTTPS). The good news is that it can be used in all windows or only on private windows.

Read more

Syndicate content

More in Tux Machines

Connect to WiFi Using Terminal in Arch Linux and Other Distros

This quick guide explains the steps you need to set up and connect to WiFi using terminal in Arch Linux and other distros. Read more

Android Leftovers

New Systemd 247 Is Out For Linux Operating System As Major Release

Systemd, a controversial system and service manager for Linux operating systems, has a major version release as Systemd 247. Speaking of new changes, systemd 247 has added a new service called systemd-oomd to monitor and take action on processes when memory or swap goes above the configured limits. Systemd, a controversial system and service manager for Linux operating systems, has a major version release as Systemd 247. Speaking of new changes, systemd 247 has added a new service called systemd-oomd to monitor and take action on processes when memory or swap goes above the configured limits. Read more

Comparing the similarities and differences between inner source and open source

Open source software (OSS) has been around since the 1990s and has thrived, quickly growing to become mainstream. It is now more well understood around the world than it has ever been before. Some refer to it as FOSS to highlight the Freedom part of open source (Free and Open Source Software). And in 2014, at OSCON, the term "inner source" was debuted, and people started talking about how to use the principles of open source, but inside of a company. It raised several questions for those unfamiliar with the term, which I hope to answer with this article. For example, what is similar about the two, what is different, the company roles involved in the two, is inner source taking the energy away from open source, etc. These are all fair questions, and as my organization practices both and is involved in both movements, I want to take some time to share insight with this audience as a developer, as a company, and as an open source enthusiast. Read more