Free Republic
Browse · Search
News/Activism
Topics · Post Article

Skip to comments.

Firefox once again proves to be the most vulnerable browser at Pwn2Own hackfest
VR-Zone ^ | March 17, 2014 | Sam Reynolds

Posted on 04/10/2014 10:33:23 PM PDT by ari-freedom

CanSecWest wrapped up on Friday in Vancouver, and while there was a minor controversy over self-censorship of a talk said to be a “blueprint for terrorists”, the most watched part of the event once again proved to be the Pwn2Own hacking competition.

Pwn2Own offered some serious cash incentives for teams to develop exploits for Chrome, Internet Explorer, Firefox and Safari. During the competition no browser proved invulnerable, but Firefox had the most security shortcomings with four separate exploits being developed for Mozilla’s browser. In comparison Internet Explorer, Chrome and Safari were all exploited only once...

Historically Firefox has always been the most pwned browser at Pwn2Own. This has been largely attributed to Firefox not having a “sandbox” — a memory space that creates a virtual firewall between the browser and the rest of the computer’s memory. Usually sandboxes have two components: Address space layout randomization (ASLR) and Data Execution Prevention (DEP). These prevent malicious code from accessing the computer’s RAM and running code in executable memory space, respectively....

(Excerpt) Read more at vr-zone.com ...


TOPICS: Culture/Society; News/Current Events
KEYWORDS: backdoor; brendaneich; exploits; firefox; homosexualagenda; pwn2own

1 posted on 04/10/2014 10:33:23 PM PDT by ari-freedom
[ Post Reply | Private Reply | View Replies]

To: ari-freedom

I understand it now has a very large back door.


2 posted on 04/10/2014 10:37:03 PM PDT by edpc (Wilby 2016)
[ Post Reply | Private Reply | To 1 | View Replies]

To: ari-freedom

Go Google /s


3 posted on 04/10/2014 10:39:04 PM PDT by mylife (Ted Cruz understands the law, and is not afraid of the unlawful.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: edpc

A big gaping back door that is always open


4 posted on 04/10/2014 10:40:07 PM PDT by GeronL (Vote for Conservatives not for Republicans!)
[ Post Reply | Private Reply | To 2 | View Replies]

To: GeronL

The rainbow browser?


5 posted on 04/10/2014 10:42:44 PM PDT by Olog-hai
[ Post Reply | Private Reply | To 4 | View Replies]

To: Olog-hai

Brown and red isn’t a rainbow


6 posted on 04/10/2014 10:45:47 PM PDT by GeronL (Vote for Conservatives not for Republicans!)
[ Post Reply | Private Reply | To 5 | View Replies]

To: ari-freedom

I am interested to know what Firefox FReepers are doing.
I do have Google Chrome available on this XP computer, but have not used it. My wife and child use another laptop with Windows Vista.


7 posted on 04/10/2014 10:46:04 PM PDT by AlexW
[ Post Reply | Private Reply | To 1 | View Replies]

To: ari-freedom

It is depressing that Google (!) Chrome is purported to have the best browser security and that the most flexible and user-friendly, Firefox, has the poorest security. There is no mention of Opera. Does anyone have an assessment of Opera’s security?


8 posted on 04/10/2014 10:57:03 PM PDT by Kennard
[ Post Reply | Private Reply | To 1 | View Replies]

To: AlexW

I installed Chrome on my old XP computer the other day, just for the heck of it. Now I’m having second thoughts.


9 posted on 04/10/2014 11:01:38 PM PDT by smokingfrog ( sleep with one eye open (<o> ---)
[ Post Reply | Private Reply | To 7 | View Replies]

To: AlexW
Pale Moon seems to be a popular replacement.
10 posted on 04/10/2014 11:05:12 PM PDT by OneWingedShark (Q: Why am I here? A: To do Justly, to love mercy, and to walk humbly with my God.)
[ Post Reply | Private Reply | To 7 | View Replies]

To: smokingfrog

“I installed Chrome on my old XP computer”
__________________________________________________
I did the same a few years ago, but I never used it.
I am still using Firefox
Are you having problems with Chrome?


11 posted on 04/10/2014 11:22:52 PM PDT by AlexW
[ Post Reply | Private Reply | To 9 | View Replies]

To: ari-freedom; All

And while we are on the subject of computer security, what about this “heartbleed” bug? Anybody know anything or had a bad experience or whatever?


12 posted on 04/10/2014 11:26:45 PM PDT by gleeaikin
[ Post Reply | Private Reply | To 1 | View Replies]

To: AlexW

I played around with it a little bit and didn’t have any problems. During the installation process, it seemed to be a little too nosy about wanting information about your browsing habits and installing 3rd party extensions/add-ons.

I mostly use Opera.


13 posted on 04/10/2014 11:32:57 PM PDT by smokingfrog ( sleep with one eye open (<o> ---)
[ Post Reply | Private Reply | To 11 | View Replies]

To: gleeaikin

Hard for us to do anything about heartbleed since it’s server side. Be careful with giving any financial info that was ordinarily protected by SSL encryption (such as bank, shopping, etc) unless you know they’ve taken care of the problem on their end.


14 posted on 04/10/2014 11:40:01 PM PDT by ari-freedom (Obama is the biggest joke. But I can't laugh.)
[ Post Reply | Private Reply | To 12 | View Replies]

To: Kennard
I think it's kinda sad that Internet Explorer is now more secure than Firefox
15 posted on 04/10/2014 11:41:31 PM PDT by ari-freedom (Obama is the biggest joke. But I can't laugh.)
[ Post Reply | Private Reply | To 8 | View Replies]

To: ari-freedom; All

I don’t do much of anything financial on line. My Pay Pal is linked to a bank account that has under $500 in it and I plan to keep it that way. I don’t pay bills on line and don’t plan to. My sweetheart keeps urging me to pay and buy on line. I refuse, and pay him to buy things for me on line if necessary.


16 posted on 04/10/2014 11:49:08 PM PDT by gleeaikin
[ Post Reply | Private Reply | To 14 | View Replies]

To: ari-freedom

Most of my security efforts are keeping google from stealing my life.


17 posted on 04/10/2014 11:55:13 PM PDT by Born to Conserve
[ Post Reply | Private Reply | To 1 | View Replies]

To: gleeaikin

“HeartBleed” was a server-side problem with SSL (a big one!) if you visit a lot of “secure/encrypted (https://)"; sites and have accounts on them you might want to change your password. (about 500,000 sites involved?)
See: http://www.freerepublic.com/focus/f-news/3142312/posts


18 posted on 04/10/2014 11:57:53 PM PDT by Drago
[ Post Reply | Private Reply | To 12 | View Replies]

To: gleeaikin

Problem is even if you don’t pay online, many businesses rely on internet financial transactions. So it has the potential to really wreck the economy.


19 posted on 04/10/2014 11:59:24 PM PDT by ari-freedom (Obama is the biggest joke. But I can't laugh.)
[ Post Reply | Private Reply | To 16 | View Replies]

To: Kennard

Opera is running a chrome base, nearly indistinguishable.


20 posted on 04/11/2014 12:00:32 AM PDT by ican'tbelieveit
[ Post Reply | Private Reply | To 8 | View Replies]

To: ari-freedom

for later


21 posted on 04/11/2014 12:06:12 AM PDT by WKUHilltopper (And yet...we continue to tolerate this crap...)
[ Post Reply | Private Reply | To 1 | View Replies]

To: All

Here’s what Eric S Raymond (”Cathedral and the Bazaar”) had to say
http://www.ibiblio.org/esrblog/
“When I heard that Brendan Eich had been forced to resign his new job as CEO at Mozilla, my first thought was “Congratulations, gay activists. You have become the bullies you hate.”

On reflection, I think the appalling display of political thuggery we’ve just witnessed demands a more muscular response. Eich was forced out for donating $1000 to an anti-gay-marriage initiative? Then I think it is now the duty of every friend of free speech and every enemy of political bullying to pledge not only to donate $1000 to the next anti-gay-marriage initiative to come along, but to say publicly that they have done so as a protest against bullying.

This is my statement that I am doing so. I hope others will join me.

It is irrelevant whether we approve of gay marriage or not. The point here is that bullying must have consequences that deter the bullies, or we will get more of it. We must let these thugs know that they have sown dragon’s teeth, defeating themselves. Only in this way can we head off future abuses of similar kind.

And while I’m at it – shame on you, Mozilla, for knuckling under. I’ll switch to Chrome over this, if it’s not totally unusable.”


22 posted on 04/11/2014 12:14:38 AM PDT by ari-freedom (Obama is the biggest joke. But I can't laugh.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: ican'tbelieveit
Opera is running a chrome base, nearly indistinguishable.

Does Opera, therefore, offer the security of Chrome without the Google back door, or am I kidding myself?

23 posted on 04/11/2014 12:30:37 AM PDT by Kennard
[ Post Reply | Private Reply | To 20 | View Replies]

To: Kennard

“Does Opera, therefore, offer the security of Chrome without the Google back door, or am I kidding myself?”

It depends on how fast they deliver security updates. If it takes them a long time to fix a problem (and everyone will have problems no matter what engine they use), you may be exploited in the meantime.


24 posted on 04/11/2014 12:36:52 AM PDT by ari-freedom (Obama is the biggest joke. But I can't laugh.)
[ Post Reply | Private Reply | To 23 | View Replies]

To: ari-freedom

For reference, “Chrome” is actually based on the Chromium opensource browser. Chromium doesn’t have any of Google’s tracking/reporting code in it.


25 posted on 04/11/2014 1:53:48 AM PDT by Little Pig (Vi Veri Veniversum Vivus Vici.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Kennard

Probably kidding yourself. There are options in both to not track your activities online...

And I have ghostery and no ad running.


26 posted on 04/11/2014 3:26:27 AM PDT by ican'tbelieveit
[ Post Reply | Private Reply | To 23 | View Replies]

To: ari-freedom

Use both. Firefox allows video downloaders for Youtube and all other websites with video. Chrome won’t.


27 posted on 04/11/2014 4:04:18 AM PDT by Dallas59 ("Remember me as you pass by, As you are now, so once was I, As I am now, so you will be," -Epitap)
[ Post Reply | Private Reply | To 1 | View Replies]

To: ari-freedom; rdb3; Calvinist_Dark_Lord; JosephW; Only1choice____Freedom; amigatec; ...

28 posted on 04/11/2014 4:15:34 AM PDT by ShadowAce (Linux -- The Ultimate Windows Service Pack)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Dallas59
Firefox allows video downloaders for Youtube and all other websites with video. Chrome won’t.
VFD Downloader works perfectly well in Chrome.
29 posted on 04/11/2014 4:42:58 AM PDT by Mycroft Holmes (<= Mash name for HTML Xampp PHP C JavaScript primer. Programming for everyone.)
[ Post Reply | Private Reply | To 27 | View Replies]

To: ari-freedom

Good for Eric Raymond! I’m impressed.


30 posted on 04/11/2014 4:56:05 AM PDT by Campion
[ Post Reply | Private Reply | To 22 | View Replies]

To: ari-freedom

So, who cares?

GOODBY Firefox!


31 posted on 04/11/2014 5:40:35 AM PDT by Flintlock ( islam is a LIE, mohammed was a CRIMINAL, sharia is POISON.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: ican'tbelieveit

Note to self - install ghostery.


32 posted on 04/11/2014 5:51:27 AM PDT by aquila48
[ Post Reply | Private Reply | To 26 | View Replies]

To: ari-freedom

Why is that sad? IE is more widely used and is very secure overall. I’d say more so than even chrome.


33 posted on 04/12/2014 1:39:36 PM PDT by for-q-clinton (If at first you don't succeed keep on sucking until you do succeed)
[ Post Reply | Private Reply | To 15 | View Replies]

To: Ernest_at_the_Beach; ShadowAce; AdmSmith; AnonymousConservative; Berosus; bigheadfred; Bockscar; ...

Thanks ari-freedom.

I found this one yesterday, it’s newly uploaded to, hmm, CNet? Also available on its own website. Small d/l, works acceptably, fast enough, one weird quirk (has to do with search results on Google) that I noticed, tabs (I like having tabs open in the background for example), can zoom pages (I’m using a monitor across the room).

http://www.slimbrowser.net/en/


34 posted on 04/17/2014 10:13:16 AM PDT by SunkenCiv (https://secure.freerepublic.com/donate/)
[ Post Reply | Private Reply | View Replies]

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
News/Activism
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson