recentpopularlog in

mozilla

« earlier   
Firefox Send
ref: https://www.grc.com/sn/sn-623-notes.pdf
Firefox's VERY INTERESTING new "Send" service
https://send.firefox.com/
Firefox Test Pilot / web experiment
All public and open source on Github.
Uses AWS for file storage.
1. Drop a file into the page.
2. JavaScript running in the browser generates a random symmetric key and encrypts the file.
3. Gets a unique file identifier token from the server & uploads the encrypted file to the server.
4. The browser displays a URL containing the server-provided file ID plus the decryption key
following a # pound sign.
5. This URL is then sent to someone else who may use it to:
6. Download the encrypted file and decrypt it on the user's machine.
7. Once downloaded the file is deleted from the server.
8. After 24 hours the file is deleted from the server.
"For the most reliable operation, it’s best to keep your file under 1GB"
Quote: "Send lets you upload and encrypt large files (up to 1GB) to share online. When you
upload a file, Send creates a link to pass along to whoever you want. Each link created by Send
will expire after 1 download or 24 hours, and all sent files will be automatically deleted from the
Send server.
Unlike other Test Pilot experiments, Send does not require an add-on, and can be used in any
modern browser."
https://send.firefox.com/download/10cb15a779/#MH-CW3onPdrrswDShACgVA
download / {file identifier} /# {symmetric encryption key}
VERY CLEVER: The data folllowing the '#" pound sign is never sent to the server.
Wikipedia says: The fragment identifier functions differently than the rest of the URI: namely, its
processing is exclusively client-side with no participation from the server. When an agent (such
as a Web browser) requests a resource from a Web server, the agent sends the URI to the
server, but does not send the fragment. Instead, the agent waits for the server to send the
resource, and then the agent processes the resource according to the fragment value. In the
most common case, the agent scrolls a Web page down to the anchor element which has an
attribute string equal to the fragment value. Other client behaviors are possible.
The IETF says: 4.1. Fragment Identifier
When a URI reference is used to perform a retrieval action on the identified resource, the
optional fragment identifier, separated from the URI by a crosshatch ("#") character,
consists of additional reference information to be interpreted by the user agent after the
retrieval action has been successfully completed. As such, it is not part of a URI, but is
often used in conjunction with a URI.
file_transfer  Mozilla  open_source 
3 days ago by fareed
Inside Mozilla: Firefox fights back
Inside Mozilla, CEO Chris Beard and his team are preparing to outmaneuver Google’s Chrome browser. The battle begins in November, with their release of Firefox 57.
browser  firefox  web  mozilla  drupaleasypodcast 
4 days ago by liberatr
Inside Mozilla: Firefox fights back
Inside Mozilla, CEO Chris Beard and his team are preparing to outmaneuver Google’s Chrome browser. The battle begins in November, with their release of Firefox 57.
browser  web  mozilla  vs  chrome 
5 days ago by gdw
Two Issues with the JPEG Standard
This report is a follow­up to a recent security audit of a JPEG­implementing codebase, libjpeg­turbo, conducted by the audit firm Cure53 at the behest of Mozilla. It is concerned with two particular issues uncovered by the auditors. In examining the code, they were able to find two scenarios under which they could make the JPEG library consume resources significantly out of proportion to the size of the data being processed. While these were originally thought to be issues with the implementation, further investigation has revealed that they stem from the design of the JPEG format itself. The problems can be triggered using JPEG images which entirely conform to the spec, and the issues have been observed in multiple JPEG implementations. This report explains those two issues in detail and provides advice to application developers as to how to work around them if their applications are processing untrusted input.
jpeg  mozilla 
5 days ago by jchris
A Visual Browser History, from Netscape 4 to Mozilla Firefox - Part 4
Firefox is the next major step in the Mozilla story. This software originated in mid-2002 as an experimental branch off the existing Mozilla 1.x codebase, and used a number of codenames (initially "Phoenix") prior to the adoption of the "Firefox" name in February 2004. Unlike the existing Mozilla suite—which included e-mail and HTML composer utilities in addition to the core browser—Phoenix was conceived as a standalone browser and nothing more (actually quite similar to Netscape Navigator 1.x and 4.0 in that respect), with attention focused instead on advantages in software size, performance, and customizability. The Mozilla e-mail client and HTML composer tools were re-developed as the standalone Thunderbird and Nvu applications in the same manner.
history  firefox  mozilla  browser 
5 days ago by mikael
Honoring Our Friend Bassel: Announcing the Bassel Khartabil Free Culture Fellowship - @mozilla
Mozilla announces the Bassel Khartabil Free Culture Fellowship, in honor of "Bassel Khartabil’s legacy and his lasting impact on the open web." We learned in early August that, after disappearing in 2015, Bassel was executed by the Syrian government. "Khartabil was a Palestinian Syrian open internet activist, a free culture hero, and an important member of our community...To honor that legacy, the Bassel Khartabil Free Culture Fellowship will support outstanding individuals developing the culture of their communities under adverse circumstances. The Fellowship — organized by Creative Commons, Mozilla, the Wikimedia Foundation, the Jimmy Wales Foundation, #NEWPALMAYRA, and others — will launch with a three-year commitment to promote values like open culture, radical sharing, free knowledge, remix, collaboration, courage, optimism, and humanity." - Mozilla
otf  mena  syria  bassel  alt  fellowship  culture  mozilla 
6 days ago by dmcdev
Inside Mozilla: Firefox fights back
Inside Mozilla, CEO Chris Beard and his team are preparing to outmaneuver Google’s Chrome browser. The battle begins in November, with their release of Firefox 57.
Mozilla  mozilla_firefox  CNet 
8 days ago by GameGamer43
Twitter
Today I was in a meeting while driving but was in a kayak. A KAYAK.
mozilla  mobile  mobileaf  firefox  from twitter_favs
9 days ago by deusx

Copy this bookmark:





to read