Oct
12
Protecting Yourself from Click Jacking
Filed Under Computers & Tech, Security on October 12, 2008 | 20 Comments
‘Click Jacking’ is the latest browser-based security problem to crawl out of the wood work. Since it’s entirely browser based it affects everyone, regardless of their OS, not even Linux users are safe from this one! This is a cross-browser problem and also affects Flash. The technical details have not been released yet, but there is a proof-of-concept exploit doing the rounds. The basic idea is very simple, trick people into clicking on something you want them to click on but they don’t want to click on. From what I’ve been able to piece together from reading various blog postings and reports the attack uses CSS and iFrames to place invisible content over visible buttons or links. When the user clicks the button or link they see the click gets diverted to what ever is in the invisible layer above it instead. If you can do it by clicking the mouse, then you can be tricked into doing it with Click Jacking.
Jun
21
FireFox 3 – Greatly Improved but Not Perfect
Filed Under Computers & Tech on June 21, 2008 | 2 Comments
I’ve been recommending FireFox for years now. In fact, I’ve been using it as my primary browser since it was called FireBird. It has been a more secure and a more feature-rich choice for years. (If you’re interested in the security aspects then you might enjoy reading a recent article I wrote for the International Mac Podcast blog comparing Safari and FireFox from a security point of view.) What got me hooked on FireBird was it’s plugin architecture. The idea of being able to customise my browser really appealed to me and as FireBird has grown into FireFox the list of available plugins has grown too. No other browser is as expandable as FireFox. If you can think of it, the chances are someone’s written a plugin for it!
However, FireFox has long suffered from two major shortcomings, memory leaks you could pilot a large ship through, and a non-native look. FireFox has been chewing up insane amounts of RAM for years, and has always looked like a fish out of water, particularly on OS X. These two problems are both fixed in FireFox 3 and if that was all they’d done I’d be recommending it highly, but they’ve done much more.
[tags]internet, browser, FireFox, FireFox 3[/tags]
Mar
5
Fluid – Turning WebApps into Desktop Apps
Filed Under Computers & Tech on March 5, 2008 | 3 Comments
I tend to avoid web apps because I don’t like having my apps stuck in a tab in a web browser. This makes it hard to command+tab
to the app and impossible to assign that app to a particular space. I don’t use GMail but if I did I’m pretty sure I’d be using Mailplane to access it. Fluid is not as advanced as Mailplane but it does allow most webapps to be liberated from your browser.
[tags]Fluid, web applications[/tags]
May
13
A Look at the NoScript FireFox Add-on
Filed Under Computers & Tech, Security on May 13, 2007 | 2 Comments
I have been warning of the dangers of JavaScript on the web for quite some time now (see related articles at the bottom of this article). I have also always said it is unrealistic to expect people to turn JS off completely. Hence, my advice has been the same, use FireFox, and use the NoScript add-on. However, I’ve never actually done a proper review of NoScript, until now.
Apr
24
Time to Secure Your Browser
Filed Under Computers & Tech, Security on April 24, 2007 | 1 Comment
What started off as a hack of a MacBook Pro at a security conferences has now been revealed to be a hack exploiting a vulnerability in the way Quicktime talks to Java. What does this mean? It means that this is not just an issue for Mac users, Windows users are vulnerable too! Thankfully the solution is simple, turn off Java (not JavaScript) in your web browser.
Jan
16
Apparently Dell will be pre-installing FireFox in the UK
Filed Under Computers & Tech on January 16, 2006 | Leave a Comment
There have been rumors around about this for a few weeks now and try as I might the closest to an authoritative source I can get is a post on Blake Ross’ blog (he is a FireFox co-creator). Should this turn out to be true it could have quite an impact on the browser usage on the web, particularly for UK sites. I can only see it as a good thing. I also enjoyed some of the rumors I’ve seen about the reasons for this on the web, the best being that it’s a ploy by Dell to reduce the amount of support they have to give because it will cut down on spy-ware infections and the invasion of those annoying porn pop-ups!