Archive for February, 2004

Next Entries »

RLP #3

Friday, February 20th, 2004

Posted in Humor | 3 Comments »

MozillaZine fixes information leak

Wednesday, February 11th, 2004

Three hours before Firefox 0.8 was released, I found a security hole in Mozillazine: you could see the titles of unpublished articles (e.g. http://mozillazine.org/talkback.html?article=4283) in the titlebar. Using this hole, I accidentally discovered the name change before the release. The hole has been fixed.

jesus_X informs me that long ago, MozillaZine let you see the full text of unpublished articles. I guess the original hole was partially fixed, leaving only the title of the article visible.

Posted in Mozilla, Security | 8 Comments »

New version of Flash Click-to-View XBL

Saturday, February 7th, 2004

The new version fo my Flash Click-to-View XBL works with <embed> Flash in addition to <object> Flash.

Previous versions didn't block <embed> because they used <xbl:content>, which doesn't work with replaced plugin elements (bug 190970). Previous versions didn't really work with <object> either; instead, they took advantage of the fact that Mozilla ignores most <object>s and looks at the <embed>s they contain instead. The new version uses JavaScript in the <xbl:constructor> to replace the Flash with the placeholder.

The extensions that use modified versions of my XBL, Ted Mielczarek's Flash Click-to-View and Theodore Drake's Flashblock, haven't been updated to use the new code yet. These extensions make it easier to install the XBL, but they must be reinstalled each time you get a new build.

Posted in CSS | 2 Comments »

Pornzilla is back!

Monday, February 2nd, 2004

The goal of the Pornzilla project is to make Mozilla into a great porn browser. We contribute to Mozilla directly, promote bookmarklets and extensions that enhance porn surfing, and maintain a list of bugs that impact porn surfing.

Posted in Mozilla, Porn | 14 Comments »

Next Entries »