פורום התמיכה של Firefox

I using kubuntu (ubuntu with kde) 22.04 and firefox will not recognize my security key. There is a really good thread on this here. It is now closed.

https://support.mozilla.org/en-US/questions/1412073

One of the solutions is to install firefox from the mozilla server. On other forums, this is referred to removing snap and installing the debs. I haven't tried this.

Reading through the thread however, it seems like the snap version should work. The manufacurers id and product code for my Thetis FIDO2 usb key are present in the etc/udev/rules.d/70-snap.firefox.rules

This answer says to disable apparmor. I tried that, but it didn't work.

I have quoted this answer below.

This isn't actually a firefox problem. KDE Neon uses the firefox package from the Mozilla Team PPA and there's nothing wrong with that package. The problem is that Neon enables app armor on firefox which breaks access to password managers and security keys. sudo aa-disable usr.bin.firefox works around the problem by disabling app armor for firefox. aa-complain was not sufficient in this case.

Is there anything else I can try?

Hello, Firefox randomly downloaded a file, with seemingly randomly name, that is 0 bytes and in download manager the source is moz-safe-about. It happened when I was accessing a popular wiki site. I opened the file in notepad, it was empty. I put it on virus total and came back negative, as it is an empty file. I've curbed through the support tickets here, using the keyphrase 'moz-safe-about'. I understand this was/is quite a common problem, but it still makes me quite worried and left a sour taste in my mouth, as I haven't understood any of the explanations. I have enabled firefox to ask me whenever it wants to save something (I have no idea why this isnt the default state). Happened on a somewhat fresh, updated win 11 installation. I'm also attaching more information here with a picture. Long story short: should I be worried? Am I overreacting and this is just some sort of a bug that occurred while getting a sites data? Thank you for your time.

I heard that the newest version of Firefox (which I have not upgraded to yet) has a feature that makes it easier to accidentally visit a website whose URL is on the clipboard. I googled to find out how to disable it, and the Featured Snippet said "go to about:config and change clipboard.autocopy to false." Sounded simple, so I did it, but subsequently found out that the article it quotes from is 10 years of age!

My first question, then, is: what does changing "clipboard.autocopy" to false do if it doesn't turn off the brand-new feature?

The second question is, how do I disable the new URL Paste Suggestion feature? Will setting "clipboard.autocopy" disable it? In particular, I want to make sure that the browser does not pre-load or pre-fetch the clipboard URL, and in fact, I wish to pop up a dialog box any time I do "paste and go." People often copy URLs from e-mails to research them before visiting them directly; jumping directly will increase the likelihood of visiting an imposter site.

Am trying to update my email address. When I try to make the secondary the primary, it wants a verification code entered. The field for this code will not let me paste it or enter it manually. Will this glitch be fixed soon?

#!/bin/bash

# Verzeichnis erstellen
mkdir FoxyAddOnFirewall
cd FoxyAddOnFirewall || exit

# package.json erstellen
cat <<EOF > package.json
{
  "title": "Foxy AddOn Firewall",
  "name": "foxy-addon-firewall",
  "description": "A Firefox addon to control internet access for other addons",
  "author": "Your Name",
  "version": "1.0.0",
  "license": "MIT"
}
EOF

# background.js erstellen
cat <<EOF > background.js
var permissionManager = Components.classes["@mozilla.org/permissionmanager;1"]
                        .getService(Components.interfaces.nsIPermissionManager);

// Addon-Liste abrufen
function getAllAddons() {
    var {AddonManager} = Components.utils.import("resource://gre/modules/AddonManager.jsm", {});
    return new Promise(function(resolve, reject) {
        AddonManager.getAllAddons(function(addons) {
            resolve(addons);
        });
    });
}

// GUI aktualisieren
function updateUI() {
    getAllAddons().then(function(addons) {
        var addonList = document.getElementById("addon-list");
        addonList.innerHTML = ""; // Zurücksetzen der Liste

        addons.forEach(function(addon) {
            var listItem = document.createElement("li");
            listItem.textContent = addon.name;
            
            var blockButton = document.createElement("button");
            blockButton.textContent = "Block";
            blockButton.addEventListener("click", function() {
                blockInternetAccessForAddon(addon);
            });

            listItem.appendChild(blockButton);
            addonList.appendChild(listItem);
        });
    });
}

// Internetzugriff für ein bestimmtes Addon blockieren
function blockInternetAccessForAddon(addon) {
    var host = addon.getResourceURI("").host;
    permissionManager.remove(host, "allAccess");
    console.log("Internetzugriff für " + addon.name + " wurde blockiert.");
}

document.addEventListener("DOMContentLoaded", function() {
    updateUI(); // GUI beim Laden der Seite aktualisieren
});
EOF

# index.html erstellen
cat <<EOF > index.html
<!DOCTYPE html>
<html lang="en">
<head>
  <meta charset="UTF-8">
  <meta name="viewport" content="width=device-width, initial-scale=1.0">
  <title>Foxy AddOn Firewall</title>
  <link rel="stylesheet" href="style.css">
</head>
<body>
  <h1>Foxy AddOn Firewall</h1>
  <p>Welcome to Foxy AddOn Firewall!</p>

  <h2>Installed Addons:</h2>
  <ul id="addon-list">
    <!-- Addon-Liste wird hier eingefügt -->
  </ul>

  <script src="background.js"></script>
</body>
</html>
EOF

# style.css erstellen
cat <<EOF > style.css
body {
  font-family: Arial, sans-serif;
  background-color: #f0f0f0;
  text-align: center;
}

h1 {
  color: #007bff;
}

h2 {
  margin-top: 20px;
}

ul {
  list-style-type: none;
  padding: 0;
}

li {
  margin-bottom: 10px;
}

button {
  background-color: #007bff;
  color: white;
  border: none;
  padding: 5px 10px;
  border-radius: 5px;
  cursor: pointer;
}

button:hover {
  background-color: #0056b3;
}
EOF

# manifest.json erstellen
cat <<EOF > manifest.json
{
  "manifest_version": 2,
  "name": "Foxy AddOn Firewall",
  "version": "1.0",
  "description": "A Firefox addon to control internet access for other addons",
  "icons": {
    "48": "icon.png"
  },
  "permissions": [
    "management"
  ],
  "browser_action": {
    "default_popup": "index.html",
    "default_icon": "icon.png"
  }
}
EOF

# Icon herunterladen
wget -O icon.png "https://img.icons8.com/ios-filled/50/000000/firewall.png"

# Installationsanweisungen anzeigen
echo "FoxyAddOnFirewall wurde erfolgreich initialisiert!"
echo "Um das Addon in Firefox zu installieren:"
echo "1. Öffnen Sie Firefox und geben Sie 'about:debugging' in die Adressleiste ein."
echo "2. Klicken Sie auf 'Dieses Firefox installieren' unter 'Temporäre Add-ons laden'."
echo "3. Navigieren Sie zum Verzeichnis 'FoxyAddOnFirewall' und wählen Sie die 'manifest.json' Datei aus."
echo "4. Das Addon wird nun installiert und kann verwendet werden."

While this is a Privacy and Security setting issue - at least tangentially - my question isn't about security so much as how this data is being stored/retrieved.

I navigated to an entirely new site the other day and it requested a username and password. When the cursor was in the Username field, a set of proposed entries showed up. These were all (recognizable) first names - not emails. When I checked the Privacy and Security settings, I couldn't find any of the names in stored data. While this may be just cached entries for similar fields ("username" or "name" etc...), the list I saw was heavily curated. One of the names I don't ever recall even entering in any name field (and wouldn't have been used for any login) - but even if I had, the list that I saw was far from exhaustive and would only have been a very specific subset of any data I would have entered into any "name" or "username" field.

Is there somewhere I can find how that list was generated?

Thank you,

I am using the credit card autofill function. I select a card and payment is taken from a different saved card. I have quit and restarted Firefox but still wrong card used???

hello, I've been trying to follow Firefox's official guide in the docs and ready 3rd party articles in order to enable payment method auto-fill in Firefox. however, this section seems to be missing from my settings page.

under Privacy and Security, I cannot find anything to do with saved payment methods or the checkbox to enable payment method auto-fill.

how can I resolve it?

On the page listing passwords, it was possible to sort them by "Alerts".

In settings, there is an option to enable checking the vulnerable passwords: https://support.mozilla.org/en-US/kb/firefox-password-manager-alerts-breached-websites

On my other laptop using Firefox v121, the alerts are properly displayed. But on my second laptop using Firefox v124, the alerts are gone. I can't sort password by "Alerts", the option isn't there. Both laptops share the same Firefox account and have password synchronized between each other.

Obviously, I ticked the "Show alerts about passwords for breached websites" box in the settings but it looks like it does not nothing. I also checked in "about:config" and everything seems good.

Is this feature gone?

When I go into Privacy & Settings, then cookies & site data, I uncheck the box for cookies & site data. It doesn't save. Next time I go in it is checked again. How do I get this setting to save? I'm using Windows 10, Firefox 124.0.2.

I am very surprised and somewhat disappointed that the Password manager protection does not sync across devices. I refer to thread:"Firefox Primary Password is different on my 2 PC's" in the archived Q&A section.

I love the Password manager and this is my main source to keep track of the 1000's of passwords we have to have to operate nowadays and they are easily accessible. It was always my issue that I felt they were very vulnerable as I had not turned on the Password protection due to bad past experience with not properly understanding the feature at first and being locked out of all my passwords or so it felt. I have now re-established this option and feel more secure(maybe foolishly). But, I believe there is a serious security flaw in Mozilla. I can understand that you offer the option to have different password on a per device basis. However I feel the implementation of this is very dangerous and can inadvertently expose all my passwords without my consent.

When I opened my new computer, I did set-up Firefox as my primary browser and enabled Syncing data. I made the foolish assumption that Syncing my password would offer me the same protection as the one I have on my main PC. I was surprised not to be asked for my main password when opening the browser nor do I recall been asked to set-up one new one for the new machine.

If my profile says that I want my passwords to be protected, I would at minima force the same default on any new browser install and require either authorization and / or verification from the original or another previously registered device before sharing the passwords. Passwords should be protected by default as defined i my profile. Otherwise, if my Firefox account is compromised, I will automatically expose all my passwords to anyone.

I do not recall, because I do not install Firefox everyday, but on my Android device, I was not asked whether I wanted to protect my passwords or not. They were by default or so it felt. Yes, they do not use my main password, they rely on my bio-metric info. So, there is a basic layer of protection. Why not in Windows?

Your thoughts?

Jag använder ovpn satt 10 timmar igår med att lösa ett dns läckage men det fungerar inte ovpn säger att det är ni på firefox som kan lösa detta och inte de. Jag vill gärna få hjälp via teamviewer. Mvh Carl Sverige

Hi, Following https://support.mozilla.org/en-US/questions/1199797 where I can't reply.

The provided solution isn't enough (in my case, the certificate was already there, although there were intermediate certificates without websites allowed - I added that trust, as well as imported more corporate root certificates but I'm not sure any of this was necessary).

Anyway, many web pages didn't work, as all http requests beyond the original one were redirected through zscaler proxy 2-factor auth. All js, css, images came back with a 307 and the corporate authentication page, immediately followed by a call to the redirection, coming back as 200 ... but with the same auth page. I saw that the original request (the base html) was always sent with "ssm_au_c" cookie but page resource requests were not.

I did solve the issue. I had to change the tracking protection options from "Standard" to "Custom" and uncheck "Cookies". Now everything works.

I don't really need an answer but, as others may have the issue and I can't post in the original thread (which is archived), I figured that I should post it somewhere. However, if there is a way to keep tracking protection in place and only add an exception for ZScaler, that'd be great. Adding "zscalerthree.net" in the exceptions didn't do the trick.

I have a bunch of stuff on my LAN, all with static IPs (so I can find things). New Reolink security camera can't be accessed via a browser and it's static IP.

Secure Connection Failed

An error occurred during a connection to 10.1.1.27. PR_END_OF_FILE_ERROR

Error code: PR_END_OF_FILE_ERROR

   The page you are trying to view cannot be shown because the authenticity of the received data could not be verified.
   Please contact the website owners to inform them of this problem.

Am I truly unable to have access to my own LAN? There has to be a way around this, doesn't there?

I go to about:memory > Save memory reports - Measure and save and then view the output, a report called memory-report.json.

In this report I see approximately 30 blocks of text, each of which contains approximately 50 to 100 website URLs. Several blocks contain only porn URLs. I have viewed porn, but only in Google Images; I don't visit the websites.

Why is this information being stored by Firefox?

Note: my Firefox is set to Delete cookies and site data when Firefox is closed. However, even after closing and opening Firefox, all the information is still in the report.

A sample of two of these blocks of text is attached.