Thursday, January 31, 2008

5 great map add-ons for Firefox - getting lost is now optional


We checked out these add-ons for helping your find yourself, (no, not that way) and they do a good job of helping you get where you want to go. Well, at least they get you the directions and well, the rest is really up to you.

Get Directions from Google Maps
- save yourself opening a new window. Just highlight any address on a webpage you're viewing and right click. Select from the pop-up menu "Locate on Google Map" which then launches Google Maps in a separate tab with the address selected.

Map This - does the same as "Get Directions from Google Maps," plus you can set your home location in the preferences and get driving directions from your "home."

GD Directions - finds directions on Yahoo and Google maps based on your selected text and your home address. You can manage various home addresses and get directions from one of your home addresses to the selected address by right clicking on the selected address.

- uses Wi-Fi positioning system to pinpoint your location and turns your Wi-Fi enabled laptop into a virtual GPS device. Also, integrates that location into your Internet search, browsing and communications. You can even pinpoint your exact location on a map and share that location with others via Email or SMS Requires Windows XP and Wi-Fi. Note: Not for Mac OS X. (Sigh).

Mini-Map Sidebar
- One word: Wow. We saved the best for last. Great sidebar where you can drag and drop addresses or locations you find on web pages and they will be automatically located, and added to your saved address list. The sidebar is launched from the toolbar icon, a status bar icon and the view sidebar menu. The extension also comes with a main browser Map Tab for viewing a larger map and this is accessed from the status bar or by highlighting an address, and selecting 'Map Tab: Locate Address...' in the right click context menu. Below are a few of the extension features available:
  • Map an Address: Drag and drop addresses or links to show on map, which is added to the address list (hold shift when you drag to just display a temporary marker). Manually add an address. Build up a list of locally stored addresses.
  • geoDiscovery: The extension will automatically discover geoURL's and in-line geotags and populate the geoDiscovery list as you browse. Alerts you to the discovery via a status bar image.
  • View and post address list entry to tagzania.
  • Google Earth: View an address list entry in Google Earth.
  • View flickr photos based on an address list entry.
  • Drag and drop googlesightseeing links to view the image of interest.
Okay, if you're directionally challenged, you still might get lost, but at least you'll have all these map resources at your fingertips. You may want to consider a voice guidance system on a GPS unit, which is not fail proof either, but at least you have the comfort of a virtual back seat driver with you wherever you go.

Overview of Firefox security oriented extensions for pentesting

FireCAT is a Firefox Framework Map collection of the most useful security oriented extensions.

FireCAT 1.2 reaches 60 extensions. Thanks to all fellas who give us a helping hand to collect and maintain this framework.

Download FireCAT at


Wednesday, January 30, 2008

Stealther Firefox extension

Firefox extension Stealther lets you browse the web without leaving a trace of your browsing session on your computer by disabling:

- Browsing History (also in Address bar)
- Cookies
- Downloaded Files History
- Disk Cache
- Saved Form Information
- Sending of ReferrerHeader More >>>

Tuesday, January 29, 2008

Happy 2008! Firefox Wallpaper


3 Firefox Wallpaper


Dimensions : 1600 X 1200

Type: Bitmap Imej


Dimensions : 1024 X 768

Type: JPEG Imej


Dimensions : 1024 X 768

Type: JPEG Imej

RS Download:

Sunday, January 27, 2008

No Links Please!

No Links Please! is a productivity life hack for those of us who need to concentrate and are easy tempted by the vast expanse of the web. It is similar in spirit to Webolodeon.


One of the things which makes the web great are its hyperlinks. However, they also make the web vast and most importantly, far too easy to roam. No Links Please! breaks the web by removing hyperlinks from all pages apart from Google. Without the knowledge or temptation of links you are free to devote all your time to real work and never roam the web again.

But I cannot work without the web!

The web is still accessible, you just have to search for it and find it in one link from Google. It also has a few other exceptions tailored to a typical PhD student’s life.

Be Productive!

No Links Please! is only available for Firefox. It is implemented as a Greasemonkey script. To embrace a new life:

  1. Download and install Firefox.
  2. You’ll need to install Greasemonkey next.
  3. Visit the No Links Please! script page and confirm installation and enjoy a life of vastly improved productivity.

Gmail 2 Firefox Extension for New Gmail

Welcome Gmail users! If you see a message in Gmail that reads:

Certain Greasemonkey scripts may interfere with Gmail

Here's what to do. Uninstall the original version of the Better Gmail Firefox extension by going to the Add-ons dialog in Firefox's Tools menu. Then, install the new version, Better Gmail 2, available for download below. From here on in, Better Gmail 2 updates will happen automatically though Firefox—this is a one time manual switchover, due to Google's recent set of big changes to Gmail. Our apologies for the inconvenience. Thanks for using Better Gmail!

Google updated Gmail, and now we're following up with Better Gmail 2, a Firefox extension that adds features to the new Gmail interface. Like its predecessor, Better Gmail 2 is a compilation of Greasemonkey user scripts that add features to Gmail, but Better Gmail 2 works with Gmail's overhauled interface. If you've got the snappier Gmail interface enabled and you're ready for some tweaks courtesy of scripters far and wide, hit the jump for the Better Gmail 2 Firefox extension download.

Better Gmail 2 Firefox extension

Version: 0.3.2

Updated: January 26, 2008

Released: November 8, 2007

Creator: Gina Trapani, using scripts by Mihai Parparita and others, compiled using Anthony Lieuallen's Greasemonkey Compiler.


(Also available at Mozilla Add-ons.

Note: Mozilla Add-ons may not have approved the extension's latest version, which is always posted here first.)

License: Better Gmail is licensed under the GNU General Public License as specified by Anthony Lieuallen's Greasemonkey Compiler. All user scripts are copyright their original authors and maintain their original license as specified by their original author. (User scripts are located in the content/user_scripts folder in the Better Gmail 2 .xpi package.)

What it does: Adds a menu of optional extra features to the new version of Gmail.

IMPORTANT: Better Gmail 2 only works with the NEW Gmail. (You're using it if there's an "Older Version" link on the top right of your Gmail.)

To view Better Gmail 2's enabled features and get more information on each, in Firefox's Add-ons dialog, click on Better Gmail 2's Preferences dialog, as shown:


See screenshots of some of the extra features in action:

galleryPost('bettergmail2', 10, '', 'list');

Installation: Click the Better Gmail 2 download button above in Firefox. A yellow bar will appear across the page that reads "Firefox prevented this site ( from asking you to install software on your computer." Click the "Edit Options" button and allow to ask you. Then, click on the link again. Press the Install button in the dialog box, and restart Firefox.

Usage: Once you've installed Better Gmail 2, go to your Gmail account to see the enhancements. To turn a feature on or off, visit the extension's Preferences dialog (from the Tools menu) and select or deselect the appropriate checkboxes. Refresh Gmail to see the changes.

Credits: Better Gmail is a compilation of user scripts written by several Greasemonkey scripters. The full list of Better Gmail user scripts and their authors is as follows:

  • Add Row Highlights

    Highlight message rows as you roll over them.

    By stasnikiforov

  • Attachment Icons

    Adds attachment filetype icons.

    By Moktoipas

  • Folders4Gmail

    Lists labels in a folder-like hierarchy.

    By Arend v. Reinersdorff

  • Force Encrypted Connection (https)

    Forces encrypted https:// connection to Gmail.

    By Mark Pilgrim

  • Gmail Blue

    By Pascal Herbert

  • Google Reader Integration

    Adds Google Reader subscription access to sidebar and below message list.

    By jesses

  • Grays and Blues

    By CyberCPA

  • Hide Invites Box

    Hide the Gmail invites box on the sidebar.

    By stasnikiforov

  • Hide Spam Count

    Hides Gmail's Spam message count.

    By Daniel Rozenberg

  • Inbox Count First

    See unread message count first on Gmail tab title.

    By Jon Ramsey, Gina Trapani

  • Macros (? for help)

    Adds keyboard shortcuts. Press ? for help.

    By Mihai Parparita

  • Macros Sewpafly Mod (? for help)

    Adds keyboard shortcuts, modified by Sewpafly. Press ? for help.

    By Mihai Parparita, modified by Sewpafly

  • One Click Conversations

    Click the person icon next to each conversation to find other messages from the sender.

    By Jeffrey Keen

  • Quota Graph

    Adds a graph of used disk size and available disk size to Gmail's sidebar.

    By Shinya Kasatani

  • Show Message Details

    Display the full details of the top messages in a conversation.

    By Michael Lieberman

We compiled the scripts using Anthony Lieuallen's Greasemonkey Compiler, and modified the output of the compiler to include multiple scripts with the ability to enable and disable individual scripts.


  • Version 0.3.2: Updated Folders4Gmail, Macros, and Google Reader Integration; Removed Hide Spam Count, Macros Sewpafly and Quota Graph, which are not yet compatible with Gmail's recent code changes.

  • Version 0.3.1: Fixed and restored Gmail Compose To script; Changed default help key text for Sewpafly Macros mod to h.

  • Version 0.3: Removed Compose To (no longer works in new Gmail); Added One Click Conversations, Hide Invites Box, Google Reader Integration, Rollover Highlight Messages, the Gmail Blue Skin and Grays and Blue Skin; Added Skins tab.

  • Version 0.2: Added Folders4Gmail, Spam Count Hide, Macros Sewpafly Mod and Gmail Quota Graph. Split interface into 3 tabs (from a single "General" tab) to accommodate new checkboxes. Submitted to Mozilla Add-ons.

  • Version 0.1: Released.

Known Issues

  • Script Conflict: The Quota Graph script does not work if Inbox Count first is enabled. Both cannot be enabled at the same time.

Better Gmail Q&A

What version of Better Gmail should I be using?

If you can see a link on the top right of your Gmail that says "Older Version," you are using the NEW Gmail interface and should use Better Gmail 2.

Why did you split Better Gmail and Better Gmail 2 into two separate extensions?

The user scripts Better Gmail includes either support the new Gmail, the old Gmail, or both. Since Gmail's upgrade to the new interface is not linear—not all users have it, and users who do can opt out of using it with the "Older Version" link—it made sense to maintain these two extensions separately instead of overloading a single interface with lots of "old only" and "new only" information. Presumably Gmail users are interacting with one version of Gmail, so you can pick which Better Gmail you need.

Should I uninstall the original Better Gmail after I install Better Gmail 2?

Yes—if you're not accessing a Gmail account using the older interface, there's no need to keep the original Better Gmail extension installed.

Will the original Better Gmail ever go away?

When Google phases out the older version of Gmail, we will halt development on the original version of Better Gmail and only support Better Gmail 2.

Why does Better Gmail 2 have so few options compared to the original?

Most script and style developers have not yet gotten around to updating their scripts for the new version of Gmail. Therefore, Better Gmail 2 has a LOT fewer features than Better Gmail. As developers update their scripts, I will update Better Gmail 2.

What can I do to help get Better Gmail 2 as robust as the original?

Contact the script developers, tell them how much you love and appreciate their work, offer to support them however they need, and ask them to update their scripts for the new Gmail interface. In the original Better Gmail's About tab.

Thursday, January 17, 2008

Mozilla Security Bug Bounty Program


The Mozilla Security Bug Bounty Program is designed to encourage security research in Mozilla software and to reward those who help us create the safest Internet clients in existence. Reporters of valid critical security bugs will receive a $500 (US) cash reward and a Mozilla T-shirt.

Reward Guidelines

The bounty will be awarded for critical security bugs that meet the following criteria:

  • Security bug must be original and previously unreported.

  • Security bug must be a remote exploit.

  • Security bug is present in the most recent supported version of Firefox, and/or Thunderbird, as released by the Mozilla Corporation.

  • Security bugs in or caused by additional 3rd-party software (e.g. Java, plugins, extensions) are excluded from the Bug Bounty program.

  • Submitter must not be the author of the buggy code nor otherwise involved in its contribution to the Mozilla project (such as by providing check-in reviews).

  • Mozilla Foundation and Corporation employees are ineligible.

If you found the security bug as part of your job (in other words, while being paid to work on Mozilla code) then we would appreciate your not applying for the bounty. Our funds are limited and we would like this program to focus on people who are not otherwise paid to work on the Mozilla project.

If two or more people report the bug together the $500 reward will be divided among them.


Wednesday, January 16, 2008

Critics rap Microsoft safety study of IE, Firefox

Critics rap Microsoft safety study of IE, Firefox

Internet Explorer is more secure than Firefox, according to a senior Microsoft executive, who compared how many vulnerabilities were found in the two browsers--but critics say his study is flawed.

Jeff Jones, security strategy director of Microsoft's Trustworthy Computing Group, released a study last week comparing the flaws in Microsoft's Internet Explorer to Mozilla's Firefox browser; unsurprisingly, he concluded that Microsoft is doing a better job than Mozilla.

Challenging early predictions that Mozilla's Firefox browser would experience fewer vulnerabilities than IE, Jones conceded that both companies' browsers have experienced significant flaws.

Jones said Mozilla has fixed more flaws in its browser than Microsoft during equivalent periods, which he said renders Firefox more vulnerable than IE.

"Since the release of Firefox 1.0 in November 2004, Mozilla has fixed 199 vulnerabilities in supported Firefox products--75 high severity; 100 medium severity; and 24 low severity. In the same timeframe, Microsoft has fixed 87 total vulnerabilities affecting all supported versions of Internet Explorer--54 high severity, 28 medium severity; and five low severity," Jones said.

Comparing Microsoft's 2004 release, IE 6 (Service Pack 2), with Firefox 1.0, Jones said Microsoft fixed 79 flaws while Mozilla fixed 88.

He also compared IE 7 with Firefox 2.0 over a 12-month period, during which he said Mozilla fixed 56 flaws while Microsoft fixed only 17 in IE 7.

"While the data trends show that both Internet Explorer and Firefox security quality is improved in the latest version, it also demonstrates that, contrary to popular belief, Internet Explorer has experienced fewer vulnerabilities than Firefox," said Jones.

However, Jonathan Oxer, technical director and founder of Web application development company Internet Vision Technology and president of Linux Australia, said the study is flawed because Microsoft tends to bundle its fixes, which leads to a lower count over the period being compared.

"For example, when fixing a vulnerability there might be several issues being resolved in one go. So it decreases the bug count," he said.

Oxer explained that the way in which levels of security are reported is frequently different. "In the case of Firefox there may be issues that (Mozilla) has reported for which there is no known exploit--a theoretical exploit--so it's not necessarily accurate to directly compare fixed exploits without an understating of how the numbering or definition of an exploit is determined," he said.

Oxer believes that a more valid way to score software in terms of security is to give each exploit a value depending on the number of days from discovery of a bug to the release of a fix, multiplied by a severity factor.

"Two products that have a similar number of exploits fixed over a certain period may actually be very different in terms of the number of days of exposure to which users are subjected," Oxer said.

Distributor support

The Microsoft data also raises the issue of support for legacy versions of the software. While Mozilla ends support for each version six months after a new release of Firefox, Microsoft maintains support for up to a decade after the version ends, in line with its cycle for operating systems.

"If Microsoft had this same policy, then support of Internet Explorer 6 would have ended in May 2007, or similarly Internet Explorer 5.01 support would have ended in 2001. In contrast, Microsoft generally releases a browser in conjunction with a new operating system release and commits to supporting that version for the lifecycle of the product--now 10 years for business products," Jones said.

Support issues also affect third-party distributors, Jones said. Despite Mozilla ending support for Firefox 1.5 in May 2007, Ubuntu 6.06 LTS--which integrates that version of Firefox--has committed to providing security support until 2009. Likewise, Novell Suse Linux offers support for Firefox 1.5 until 2013. While Ubuntu and Red Hat released patches for Firefox version 1.5, Jones said: "The vulnerabilities patched by each vendor only overlap partially."

"Lifecycle considerations are likely (to be) more important to corporate enterprises, as they sometimes have custom Web applications and are hesitant to upgrade between major releases very often, and even then may have a relatively long transition plan," Jones said.

However, Linux Australia's Oxer said this manner of delivering support is a benefit of the open-source model, because it allows customers greater flexibility throughout a contract.

"One of the major differences between the proprietary and open-source models is when multiple vendors are providing support for a single code base...even though Mozilla may end its support, there are software vendors--such as (Linux) distribution providers--that are committed to providing support to enterprise customers," Oxer said.

"What it means is that end users get to choose the level of support they want. If you choose a company with long-term support for maintaining a stable operating environment for desktops, that's one option they can take. Or they may want a distributor with more frequent updates," he said.

The disadvantage of using a proprietary software company such as Microsoft, said Oxer, is that enterprise customers are shackled to the schedule of a single vendor, which may not fit the organization's timetable.

Microsoft strikes back at Opera antitrust claims

Microsoft denied on Friday antitrust claims from Opera Software that the software giant is abusing its dominant market position to lock users into the Internet Explorer Web browser.

Opera, based in Norway, announced Thursday that it had filed an antitrust complaint with the European Commission, alleging that Microsoft is abusing its dominant position by bundling IE with the Windows operating system. Bundling IE with Windows means people have no choice in receiving it and only afterward have the option of deleting it or using an alternative product as the default browser, Opera said.

Opera also claimed that Microsoft is hindering interoperability by not following accepted open Web standards.

Microsoft struck back Friday, indicating that it would not willingly unbundle IE from Windows.

"We believe the inclusion of the (IE) browser into the operating system benefits consumers, and that consumers and PC manufacturers are already free to choose to use any browsers they wish," a Microsoft representative said. "Internet Explorer has been an integral part of the Windows operating system for over a decade and supports a wide range of Web standards."

The Microsoft representative added that "computer users have complete freedom of choice to use and set as default any browser they wish, including Opera, and PC manufacturers can also preinstall any browser as the default on any Windows machine they sell."

Opera filed the complaint against Microsoft this week, asserting that Microsoft has locked consumers into using IE, which has "only recently begun to offer some of the innovative features that other browsers have offered for years," such as tabbed browsing.

"We are filing this complaint on behalf of all consumers who are tired of having a monopolist make choices for them," said Jon von Tetzchner, chief executive officer of Opera. "In addition to promoting the free choice of individual consumers, we are a champion of open Web standards and cross-platform innovation."

Opera asked the European Commission to force Microsoft to unbundle IE from Windows and to carry alternative browsers preinstalled on the desktop. Opera also asked the EC to require Microsoft to follow "fundamental and open Web standards accepted by Web-authoring communities."

The browser company asserts that Microsoft's "unilateral control over standards in some markets has created a de facto standard that is more costly to support, harder to maintain, and technologically inferior and that can even expose users to security risks."

Tuesday, January 15, 2008

Download mp3s and automatically add them to Itunes with Tunestor

Description: Tunestor is an extension for IE and Firefox that allows for downloading MP3s and adding them to your Itunes library in one fell swoop from the browser context menu.

This browser extension aims to condense what would typically involve 4 different steps into a single, simple right-click command. While normally you would need to (1) click to download an audio file, (2) select the location to save the file, (3) start ITunes, and (4) manually add the file to the Itunes Library, with Tunestor you would simply right-click on the mp3 download link in the browser and select “download directly to Itunes”.

What I like about this is the convenience of knowing that I can download something then find it in the music library when I open Itunes, ready to be synched with my Iphone.

Here are some notes on this program:

  • Tunestor downloads files to the “My Music” directory by default. While this is probably a good choice, it would be better if it enabled you to change the default download directory in case the user prefers another location. Come to think of it, having the ability to optionally introduce a “save as” dialog to choose the save folder would also be good (albeit it would add a step).

  • Tunestor is affiliated with TuneStory, a brand new free “social music discovery & download” site. On install it will ask you whether to enable sharing of your download links on TuneStory. It promises to be both secure and anonymous, but if you would rather this app not telegraph this information make sure to uncheck this in the install process. (I accepted to see what happens and sure enough my track that I downloaded to test this program with showed up on the Tunestory website, available for download in 2 clicks).

  • Aside from the “download directly to Itunes” right click entry, Tunestor also installs a “ Hit List” context menu command. I’m not sure what that does exactly and wasn’t able to find info on it on the site; I thought it might send download link info to Tunestor but it did not seem to do that when I clicked it.

Version tested: 1.5

Compatibility: Windows 98/2000/Me/XP/2003 (no info on Vista); MS Internet Explorer 6.0 or higher / Firefox 1.5 or higher; iTunes 4.7 or higher.

Go to the Tunestor home page to download. .

Sunday, January 13, 2008


UnPlug is an extension which lets you save video and audio which is embedded on a webpage - it's a video download tool.

UnPlug scans web pages and tells you where media players are getting their data from, and displays it as a simple hyperlink: in most cases, you can then follow the simple download link to save the media file.

UnPlug works for lots of sites including,,,,,, and lots, lots more.

Unlike many other extensions, UnPlug scans the page, and if it doesn't know there the data comes from it can guess - correctly most of the time.

UnPlug your Plug-Ins and view media however you want!

More details at

Friday, January 11, 2008

Small tip for quick download in Firefox

Instead of right-clicking on a download link, choosing "save to target" and pressing enter, just drag the download link to the "downloads icon" in the toolbar. The download will start automatically.

You can actually drag download links to either the Downloads icon (which needs to be added to the toolbar manually through the Customize... option) or directly to the Downloads manager.

Alternatively, try Alt + Click on the download link. It works for me ;)

Tuesday, January 8, 2008

Personas for Firefox

This post in a nutshell: Personas is a Firefox's extension that makes skinning quicker and more convenient without having to restart Firefox

Personas for Firefox

Personas for Firefox is a extension that adds lightweight theming to your browser.

Personas is a prototype that builds upon the ideas that:

  • themes today are too hard to find, install and use

  • graphic designers should be able to style the browser without having to code

  • browsers can be more than just desktop software, they can include online components

  • people just want their computer to be a little more fun and personal

This version improves upon a prototype that was discussed and tested earlier this year.

We’ve just started talking about the possible benefits of taking advantage of an online component to deliver a better browser experience. There is certainly more to explore in this regard; Personas is but a simple example.

In this version, the Persona selector is dynamically loaded and populated from a JSON feed and all designs are loaded via URLs to remote resources. All changes to the browser chrome are applied instantly, with no need to restart.

We’ll shortly be releasing an API that will allow developers and designers to submit Personas that are based on Web content, including support for anything that can load in a content window such as HTML, CSS, PNG, JPG, Javascript, SVG and Canvas.


  • You can select a Persona from the dynamic menus and see results instantly without having to discover, select, download or install a separate bit of software or code.

  • Personas can be added, removed or updated by their designers at any time, without requiring a software update.


Get Personas for Firefox

  • Install Now for Firefox 2.0.0.* - 3.0b2pre, Windows/Mac/Linux

    Compatible with the default themes that ship with Firefox

Courtesy of Mozilla Labs

Monday, January 7, 2008

Boost your productivity in Firefox, IE

I can live without Microsoft Word, and I'm confident I could manage well enough if you removed Excel from my PC. Even my favorite e-mail app is a nonessential.

But take away my browser, and I might as well not even start up my PC.

Mozilla Firefox is the first program I open and the last one I close each workday (or worknight, as the case may be). I found some great time-savers for the program. And since many of you prefer Internet Explorer, I've got some productivity-enhancing keyboard shortcuts for both browsers.

Reset Firefox's Javascript options

Many of the Web's best features are powered by Javascript, but like every technology, it can be a real troublemaker in the wrong hands. Firefox gives you some control over how much power Javascripts have when you activate them. Click Tools*Options*Content, and choose the Advanced button next to Enable JavaScript. If you're using Firefox 1.5, the options checked by default are "Move or resize existing windows," "Raise or lower windows," and "Disable or replace context menus." The first allows Javascripts to change the size or position of the current window. The second lets a script place a window above or below the current window. The third makes it possible for a script to disable or change your right-click (context) menus.

In Firefox 2.0, only the first and third of these options is checked by default. The last two options in this dialog box let Javascripts hide the status bar at the bottom of the browser window, or change its text to allow scrolling-text messages. I leave options 1 and 3 checked, but you may want to give Javascripts more or less control.

Mozilla Firefox's Advanced JavaScript Settings dialog box

Change how much control Javascripts have in the Firefox browser.

Get more control Over Javascripts

You can disable other Javascript window features by using Firefox's about:config settings. To access them, type about:config in the address field and press Enter. To ensure that all pop-up windows are resizable, scroll to dom.disable_window_open_feature.resizable and double-click it to set it to "true." To allow all pop-ups to be minimized, double-click dom.disable_window_open_feature.minimizable. Do the same to dom.disable_window_open_feature.menubar to keep menus visible in pop-ups. To keep the navigation toolbar showing, double-click dom.disable_window_open_feature.location. And to retain scrollbars on pop-ups, double-click dom.disable_window_open_feature.scrollbars to reset this option to true.

Mozilla Firefox's about:config options

Get more control over Javascripts in Firefox by changing these options in about:config.

Time-saving keyboard shortcuts for Internet Explorer, Firefox

Bookmark the current page by pressing Ctrl-D and then Enter.

Open your bookmarks in Firefox by pressing Ctrl-B; open IE's Favorites by pressing Ctrl-I.

Open a new tab by pressing Ctrl-T. Move to the next tab by pressing Ctrl-Tab. If you have lots of tabs open, move between them quickly by pressing Ctrl and the numbers 1 through 9, based on their order in the toolbar.

To close a tab, press Ctrl-W. To close a window, press Ctrl-Shift-W.

Increase the size of the page's font by pressing Ctrl-+; decrease it by pressing Ctrl-- (the hyphen or minus sign).

View the page without the browser border by pressing F11. Press it again to revert to the standard browser view.

Press F5 (or Ctrl-R) to reload the current page, and Ctrl-F5 (or Ctrl-Shift-R) to reload it ignoring the cache.

Press the Backspace key to reload the previous page, or Shift-Backspace to go forward one page.

Press Alt-D to highlight the text in the address box.

Finally, press Ctrl-K in Firefox, or Ctrl-E in IE, to move the cursor to the search box.

Wednesday: A free Firefox add-on that lets you browse text-only, minus images, Javascript, and CSS.

Dennis O'Reilly has covered PCs and other technologies in print and online since 1985. Along with more than a decade as editor for Ziff-Davis's Computer Select, Dennis edited PC World's award-winning Here's How section for more than seven years. He is a member of the CNET blog Network, and is not an employee of CNET.

Sunday, January 6, 2008


Hides bad things. Saves all the tabs in the current window, closes them, and replaces them with the homepage tabs. Saved tabs can later be recovered. Can clear the following at the user's choice...

Hides bad things. Saves all the tabs in the current window, closes them, and replaces them with the homepage tabs. Saved tabs can later be recovered. Can clear the following at the user's choice:

• History

• Recently Closed Tabs list

• Saved form info

• Saved passwords

• Download history

• Cookies

• Cache

• Searchbar

Works with:

  • Firefox Firefox: 1.0 – 2.0.0.*

Saturday, January 5, 2008

Firefox flaw allows PayPal hack, says researcher

A potential flaw in the way Firefox web browser handles log-ons could be used by identity thieves to dupe users into disclosing passwords, a leading security researcher has warned.

According to Aviv Raff, an Israeli researcher, the flaw in Firefox - Mozilla's latest version - could redirect the username and password entered by the user to the hacker's server instead of the real one.

An attacker could also create a web page with a link to a trusted website (for example, a bank, a PayPal account, webmail, etc.). When the victim clicks on the link, the trusted web page will be opened in a new window, and a script will be executed to redirect the new opened window to the attacker's web server, which will then return the specially crafted basic authentication response.

A video which demonstrates the first attack vector can be found on YouTube.

Firefox Hit With Spoofing Bug

A serious flaw in how Firefox handles log-ons could be used by identity thieves to dupe users into disclosing passwords, a noted security researcher said Wednesday.

Aviv Raff, an Israeli researcher best known for ferreting out browser flaws, revealed the Firefox spoofing vulnerability on his personal blog, and posted a demonstration video there. He did not go public with any proof-of-concept code or working exploit, however.

According to Raff, Firefox -- Mozilla Corp.'s most current version -- fails to sanitize single quotation marks and spaces in what's called the "Realm" value of an authentication header. "This makes it possible for an attacker to create a specially crafted Realm value which will look as if the authentication dialog came from a trusted site," said Raff.

Raff outlined a pair of possible attack vectors. One would rely on a malicious site that included a link to a trusted site -- a well-known bank, say, or a Web e-mail service such as Gmail or Hotmail -- that when clicked would display its usual log-on dialog. In the background, however, the attacker would have crafted a script that exploited the Firefox vulnerability to redirect the username and password entered by the user to the hacker's server instead of the real deal.

Alternately, a rigged image could be delivered via e-mail or embedded in a blog or MySpace page that when clicked generated a legitimate-looking log-on dialog.

Raff's video -- a lower-resolution version is on YouTube -- shows a spoof of Google Inc.'s Checkout payment system; it can be downloaded from here.

"Until Mozilla fixes this vulnerability, I recommend not to provide username and password to Web sites which show this dialog," said Raff in his blog.

The company last patched Firefox in late November when it updated the browser to Thursday, Mozilla's chief of security, Window Snyder, would only say that her team is investigating Raff's claims.


For more enterprise computing news, visit Computerworld. Story copyright © 2007 Computerworld Inc. All rights reserved.

Friday, January 4, 2008

Switching to Firefox 2.0 from Firefox 1.5 (or lower).

If you find you are still running the 1.5 version of the Firefox browser, you should definitely change over to the 2.0 version. There will not be any more security updates from Mozilla, so we highly recommend following their lead and going with 2.0. As we mentioned, we'll first uninstall 1.5, then download and install 2.0.

  1. Click on Start and go to Control Panel.


  2. Double click on Add or Remove Programs.


  3. Look for Mozilla Firefox 1.5.0.xx under currently installed programs. Once you locate it, select the program and click on Remove.


  4. You will get a screen which will ask if you are sure you want to uninstall it. Click on Yes.


  5. Now you will get a message saying Firefox is removed from your computer. Click on OK.


  6. Now go download the most recent Mozilla Firefox (open this page in a new window or tab, then click on the download firefox button on the right).


  7. Click on Run.


    You will see the progress box.


  8. Click on Run again.


  9. The Setup Wizard will start. Click on Next.


  10. Select I accept the terms in the License Agreement and click on Next.


  11. Select Standard and click on Next (or if your familiar with it, choose the Custom).


    You will see the installing progress bar.


  12. Click on Finish.


  13. Now open a web page and click on Help and then About Mozila Firefox.


    Hurray!! You can see that your version is updated to

Wednesday, January 2, 2008

Introducing Weave

As the Web continues to evolve and more of our lives move online, we believe that Web browsers like Firefox can and should do more to broker rich experiences while increasing user control over their data and personal information.

One important area for exploration is the blending of the desktop and the Web through deeper integration of the browser with online services.


We’re now launching a new project within Mozilla Labs to formally explore this integration. This project will be known as Weave and it will focus on finding ways to enhance the Firefox user experience, increase user control over personal information, and provide new opportunities for developers to build innovative online experiences.

Just like Mozilla enables massive innovation by making Firefox open on many levels, we will aim to do the same with Weave by developing an open extensible framework for services integration.

Organizing Principles

We’ve set out some basic organizing principles to help frame the approach that we’re going to explore. We will:

  • provide a basic set of optional Mozilla-hosted online services

  • ensure that it is easy for people to set up their own services with freely available open standards-based tools

  • provide users with the ability to fully control and customize their online experience, including whether and how their data should be shared with their family, their friends, and third-parties

  • respect individual privacy (e.g. client-side encryption by default with the ability to delegate access rights)

  • leverage existing open standards and propose new ones as needed

  • build a extensible architecture like Firefox

Overview of the Idea


  1. browser metadata is pushed into the cloud (e.g. bookmarks, history, customizations, etc.)

  2. this metadata is transparently reflected everywhere an individual gets online

  3. we provide a basic framework for easily sharing and delegating access to this metadata to friends, family and third-parties

  4. we build tools and APIs to extend this framework and to provide new user experiences

The above excerpt from Mozilla labs gives a detailed insight to their new plan, Weave, a quasi-social quasi-application integrated into their browsers. Click the link to read more about it

Tuesday, January 1, 2008

Mozilla Firefox 3, Portable Edition

Shortly after Firefox 3 beta 2 available to download, there have been several portable versions of Firefox made available, so you can try out Firefox 3 safely even if you don't have the benefits of virtualization (yet)

Option 1: From (click to visit the download page)

dgdyour browser, your way... in your pocket™

Mozilla Firefox®, Portable Edition is the popular Mozilla Firefox web browser bundled with a Launcher as a portable app, so you can take your bookmarks, extensions and saved passwords with you.

Mozilla Firefox, Portable Edition is an integral part of the Suite™.

Like Firefox Portable? You'll love having Firefox on your PC: Firefox 2 or


portable_firefox_small.pngMozilla Firefox is a fast, full-featured web browser that's easy to use. It has lots of great features including popup-blocking, tabbed-browsing, integrated search, improved privacy features, automatic updating and more. Plus, thanks to the launcher bundled in the Mozilla Firefox, Portable Edition, it leaves no personal information behind on the machine you run it on, so you can take your favorite browser along with all your favorite bookmarks and extensions with you wherever you go. Learn more about Mozilla Firefox...

Option 2: Portable firefox @ Sourceforge

Related: Firefox 2 portable

Consider this a Happy New Year gift too :)

Related Articles by Labels

Bookmark this

Did my post help you? Help others too by just taking a minute to bookmark this in any bookmark you use