firefox mess
firefox has updated automatically to quantum and disabled the noscript support. therefor my computer got infected. Thank you vecy much mozilla for this mess. It seems the professionalism is gone.
Wubrane rozwězanje
j_jobs said
James saidAn update by the NoScript author in case you still care. https://hackademix.net/2017/11/18/the-week-is-not-over-yet/Thank you, but i have consulted with my employers and we have decided to uninstall firefox in the entire company, since any software that auto-updates to a version that disables its protection layers is too big a security risk.
The NoScript author has a new webextension version now out for Firefox 57+
https://addons.mozilla.org/firefox/addon/noscript/
https://hackademix.net/2017/11/21/noscript-1011-quantum-powerball-finish-and-rebooting/
Toś to wótegrono w konteksće cytaś 👍 0Wšykne wótegrona (17)
Unless you were doing something risky I doubt your Windows was infected simply because the NoScript version you have is not compatible with Firefox 57.0.
The NoScript author is going to have a new version of the extension soon. https://hackademix.net/2017/11/14/double-noscript/ https://forums.informaction.com/viewtopic.php?f=7&t=23173&start=135
I am in a risky network and thats why i have all these security addons. It is incredible how a team that is supposed to be professional would push an automatic update that disables security. Dont know what was in these guys minds.
A solution that will be available in one week does not solve an infection that took place one hour ago. Thank you for suggestion.
Im going to switch to chrome.
VERY, VERY dissapointed. Firefox was a professional tool, now it looks like its maintained by amateurs.
Wót j_jobs
By all means, switch to Chrome where there is not a NoScript extension at all by the developer of the original. Seems like a smart plan. You should just wait instead of rage quitting if NS is so important to you.
Yeah your reply is very professional too. Consistent with the rest of the team.
And shows ignorance also. scriptsafe, noscript suite, scriptblock - just a few of chrome extensions that do the same job.
Wót j_jobs
> Yeah your reply is very professional too. Consistent with the rest of the team.
None of the people answering support questions here are Mozilla employees so I can be somewhat lax.
> scriptsafe, noscript suite, scriptblock - just a few of chrome extensions that do the same job.
You'll find that those are not suitable replacements for full fledged NoScript functionality. There's a reason the developer is only developing NoScript for Mozilla-based browsers...
> You should just wait instead of rage quitting if NS is so important to you.
Well this was weird enough to convince me to register to reply. You advise a client to WAIT for a security update to become available after you have disabled the old one ? How about advising the adwares/spywares to wait too ?
Can you imagine Microsoft not only pushing for Windows an update that disables the firewall , but also advising customers to "wait one week" for a fix ? LOL.
> None of the people answering support questions here are Mozilla employees
That kinda explains it.
Moses said
You'll find that those are not suitable replacements for full fledged NoScript functionality.
But VERY good replacements for a non-working ( thanks to mozilla ) noscript,
And btw not even you can possible think that all the people using noscript are home users without much care for security. There are companies with hundreds of employees using mozilla. Which mozilla just exposed their preferences, browsing history, possibly usernames and passwords to the spyware world. Do you ask them to wait one week, too ?
Wót j_jobs
I was going to write a more technical answer for NoScript but realized it would more than likely go over your head and I don't want to hurt you.
An update by the NoScript author in case you still care. https://hackademix.net/2017/11/18/the-week-is-not-over-yet/
James said
An update by the NoScript author in case you still care. https://hackademix.net/2017/11/18/the-week-is-not-over-yet/
Thank you, but i have consulted with my employers and we have decided to uninstall firefox in the entire company, since any software that auto-updates to a version that disables its protection layers is too big a security risk.
Moses said
I was going to write a more technical answer for NoScript but realized it would more than likely go over your head and I don't want to hurt you.
It would have been better to not reply at all then.
Wubrane rozwězanje
j_jobs said
James saidAn update by the NoScript author in case you still care. https://hackademix.net/2017/11/18/the-week-is-not-over-yet/Thank you, but i have consulted with my employers and we have decided to uninstall firefox in the entire company, since any software that auto-updates to a version that disables its protection layers is too big a security risk.
The NoScript author has a new webextension version now out for Firefox 57+
https://addons.mozilla.org/firefox/addon/noscript/
https://hackademix.net/2017/11/21/noscript-1011-quantum-powerball-finish-and-rebooting/
James said
The NoScript author has a new webextension version now out for Firefox 57+
Only until firefox will release another patch that will disable this extension too. I had to clean 18 workstations after the last one. Not anymore.
As i said, at least until firefox gets a proper product manager that can think before releasing a version that exposes hundreds of thousands of computers to the risk of being infected, this browser is out of our company.
I was kinda hoping i would get a good explanation for this move, but i guess there is none.
Thank you anyway for your post.
Wót j_jobs
This part of the 17 Your posts will be flagged soon.
j_jobs said
Thank you, but i have consulted with my employers and we have decided to uninstall firefox in the entire company, since any software that auto-updates to a version that disables its protection layers is too big a security risk.
Generally speaking, software platforms upgrade on their own schedule irrespective of what is happening with third party add-ons. Are you aware of products that work differently?
Anyway, you (or your IT) should consider using the Extended Support Release for business environments. It offers nearly a year of feature stability per major update and will help with administration and support. See: https://www.mozilla.org/firefox/organizations/
jscher2000 said
Generally speaking, software platforms upgrade on their own schedule irrespective of what is happening with third party add-ons. Are you aware of products that work differently?
Actually, are you aware of any product that would upgrade AUTOMATICALLY to a new version that is not backward-compatible with any installed 3rd party extensions ? And especially extensions providing security services that the product itself lacks ?
It's like windows not only not having a firewall but also updating one day to a version that does not support installed security software. To what i know, Windows still supports programs written 20 years ago.
Or Android or IOS updating automatically to a version which does not support existing apps anymore.
Wót j_jobs
Closing thread since it looks like it is going nowhere. OP, your original question was on NoScript support and since that has been added, I am inclined to mark James' as the solution and be done with it. Your issues seem to stem more towards your discontent for Mozilla than anything else. Proper place for feedback on Mozilla products is at input.mozilla.org.
Wót Moses