New Chatbot AI recording copy and keylogs: can't uncheck it.

AI chatbot: Does the text I write and highlight in Firefox automatically get recorded even if the AI it is turned off? I noticed that even if the AI is turned off, the c… (อ่านเพิ่มเติม)

AI chatbot: Does the text I write and highlight in Firefox automatically get recorded even if the AI it is turned off?

I noticed that even if the AI is turned off, the check box for  "Show prompts on text select

Displays a shortcut to prompts when you select text. Firefox sends the text, page title, and prompt to the chatbot." is always checked and greyed out.

What gives Firefox folks of knowledge?

Asked by 4portswitch 33 นาทีก่อน

Cannot clear history

Cannot clear browsing history. Delete page does not work. Clear recent history does not work. I tried uninstalling and reinstalling but I think it automatically importe… (อ่านเพิ่มเติม)

Cannot clear browsing history. Delete page does not work. Clear recent history does not work.

I tried uninstalling and reinstalling but I think it automatically imported everything which was not desirable in this case.

Do not have account or sync so it is not pulling from either of those places

Asked by tr4vis414 2 ชั่วโมงก่อน

Zero Day

Does MacOS requires the version 131.0.2 Firefox update to address the recent zero-day active exploit? The reason I ask is Tanium Deploy Software Gallery only includes … (อ่านเพิ่มเติม)

Does MacOS requires the version 131.0.2 Firefox update to address the recent zero-day active exploit?

The reason I ask is Tanium Deploy Software Gallery only includes updates to Windows Firefox versions to address this zero-day.

Description: Mozilla 0-day. CVE-2024-9680 is a use after free vulnerability in the Animation timelines component of Mozilla. Animation timelines are a part of Firefox’s Web Animations API, which controls and synchronizes animations on the web pages. An attacker may exploit the vulnerability to achieve code execution in the content process. Use-after-free vulnerability occurs when the memory that has been freed is still used by the program. The vulnerability may allow attackers to add their malicious data to the memory region for code execution. *Affected Versions* * Firefox versions before 131.0.2 * Firefox ESR versions before 128.3.1 * Firefox ESR versions before 115.16.1. *Mitigation* Customers can upgrade to the following versions to mitigate the vulnerability: * Firefox 131.0.2 * Firefox ESR 128.3.1 * Firefox ESR 115.16.1 For more information, please refer to the [Mozilla security advisory|https://www.mozilla.org/en-US/security/advisories/mfsa2024-51/].

Asked by Robert Bogan 6 ชั่วโมงก่อน

Have to keep denying cookies every few hours

Hey all firefox doesnt save the preferences for long and every site I go back to I have to keep denying cookies etc. This started recently but my settings are as before w… (อ่านเพิ่มเติม)

Hey all firefox doesnt save the preferences for long and every site I go back to I have to keep denying cookies etc. This started recently but my settings are as before whats up with this? I think its the total cookie protection but i cannot turn it off I'm fed up of denying over and over again. cheers

Asked by Elvas K 10 ชั่วโมงก่อน

Autofill credit cards isn't filling?

For a credit card field, my card options show up. When I choose one it fills, but when I hit enter or tab, the filled info disappears. It appears to be this (2nd) proble… (อ่านเพิ่มเติม)

For a credit card field, my card options show up. When I choose one it fills, but when I hit enter or tab, the filled info disappears.

It appears to be this (2nd) problem and known fixed bug. But it was fixed in v118, and I'm using v125.03 and it's still happening. https://support.mozilla.org/questions/1416148 https://bugzilla.mozilla.org/show_bug.cgi?id=1817926

(I whited out the card numbers.)

Asked by curls3 2 สัปดาห์ก่อน

Hiding IP Address

When i search something on Google it shows the results based on my IP address. Towards the bottom of the search results at the bottom of the webpage the location of the I… (อ่านเพิ่มเติม)

When i search something on Google it shows the results based on my IP address. Towards the bottom of the search results at the bottom of the webpage the location of the IP address mentions the city I live in.

I frequently share my screen and don't want to share that information with others. How can I remove that information from appearing when I search for something on Google?

Asked by Thomas Maalouf 23 ชั่วโมงก่อน

adding an extension

Kaspersky has been changed to UltraAV so I need to add or change this extension in my settings. Also will Kaspersky need to be deleted? thx . THe reason for this is becau… (อ่านเพิ่มเติม)

Kaspersky has been changed to UltraAV so I need to add or change this extension in my settings. Also will Kaspersky need to be deleted? thx . THe reason for this is because Firefox will not restart after an updated has been downloaded.

Asked by Kathy Seymour 1 วันก่อน

Macafee antivrius virus.

Upon launching Firefox I noticed a notification from Macafee antivirus, I don't really care how to spell their "company" name. But when clicking on the popup it brought m… (อ่านเพิ่มเติม)

Upon launching Firefox I noticed a notification from Macafee antivirus, I don't really care how to spell their "company" name. But when clicking on the popup it brought me to a firefox addon for macafee. I assume that this is a virus created by the aforementioned company and not a partnership between the two of you. Just wanted to create awareness of this virus as its targeting your browser.

Asked by Timothy Wheeler 1 วันก่อน

Protections against Tracking via HTTP/3 QUIC - Privacy

Hello Mozilla Community, I hope I am right with you guys to ask this question though it is a rather technical question. Please let me clarify that I am not a programmer … (อ่านเพิ่มเติม)

Hello Mozilla Community,

I hope I am right with you guys to ask this question though it is a rather technical question. Please let me clarify that I am not a programmer myself or a network engineer but rather a hobbyist who is especially interested in privacy.

As I was reading about HTTP/3 and QUIC, I came across an academic paper called ""A QUIC Look at Web Tracking".

According to this paper QUIC gives web servers and third parties a good way to track users via the "source-address token" and the "server config" which are both stored on the client('s browser/machine). Now I know that this paper is from 2019 and concerns an older version of QUIC. However, in RFC 9000 "source address tokens" aka "address validation tokens" still exist and are especially used to establish future connections with 0-RTT instead of 1-RTT (see section 8.1 of RFC 9000). Though "server config" is not mentioned in RFC 9000, "transport parameters" is mentioned in section 7.4 and 18 of RFC 9000, which are also used for 0-RTT and are also stored on the client.

Neither RFC 9000 nor RFC 9114, which concerns HTTP3, address these privacy risks in more detail. Both seem to take only MITM attackers into account (see 9.5 in RFC 9000 and 10.11 in RC 9114) [as is done in a newer paper from 2022 Evaluating QUIC for Privacy Improvements Over Its Predecessors which however at least addresses the possibility of third party tracking under 5.1 3)].

I would also like to point towards RFC 9250 of May 2022, which concerns DNS over QUIC ("DoQ"). In Section 7 of RFC 9250 many privacy concerns regarding "0-RTT", "Session Resumption (Token)", "Address Validation Token" and "Long Duration Sessions due to QUIC's connection migration feature" are elaborated in more detail.

To sum up my understanding: - Using HTTP/3 or QUIC's "connection ID" for tracking should not be that viable, even if its function is to migrate connections in case of Layer-3/4 (IP address or Port) changes, because a connections life time is at least in firefox limited to 30 seconds (see Github neqo) so that a user should not be trackable for a longer period via the "connection ID". - However, longer tracking may be possible via "Session Resumption Tokens" and "Address Validation Tokens" (see Section 7.2 and 7.3 of RFC 9250; though I myself don't know the difference between these two) as well as via "transport parameters" (see "A QUIC Look at Web Tracking").

As mentioned in "A QUIC Look at Web Tracking", though a restart of the Browser seems to clear the cached state of prior QUIC connections (to my understanding the stored "tokens" and "transport parameters"), tracking via the above mentioned features of QUIC seems not unreasonable as many users today will not restart their browser, especially on mobile devices but also on desktops (3.7 and 5.1.2 of the paper).

As I was not able to find further information on this topic, I would be very happy to get some assurance that firefox is effectively preventing or at least impeding the tracking possibilities mentioned in RFC 9250 and the paper "A QUIC Look at Web Tracking".

Thank you very much for any reply or pointing me into the right direction (other sources on this topic or a more appropriate page to ask this question).

Asked by radi99 1 วันก่อน

Cookies

Is there a benefit to my changing the cookie settings in Firefox from standard to strict? Will this benefit me overall if I do this or would it cause problems that make m… (อ่านเพิ่มเติม)

Is there a benefit to my changing the cookie settings in Firefox from standard to strict? Will this benefit me overall if I do this or would it cause problems that make my user experience poor? And if I change to the Firefox strict cookie setting would I then be able to give certain websites permission to use cookies without restriction at their discretion, such as say a website like Fidelity investments, which is a website and corporation I’m fairly certain would only use cookies to improve my user experience and not to sell or track in any way that would harm me. So that particular website would have more cookie ability than all the other websites that would governed by the strict cookie setting. In other words, if I go to the Firefox strict cookie setting, would I be able to make exceptions for websites on a one by one basis, websites that I trust? Thanks for your help, Steve.

Asked by Ateve 1 วันก่อน

Firefox keeps asking for primary password

Issue with primary password, I'd appreciate if someone could shine a light on this issue. I feel I'm wasting time unnecessary. Here it comes: On a given day and out of t… (อ่านเพิ่มเติม)

Issue with primary password, I'd appreciate if someone could shine a light on this issue. I feel I'm wasting time unnecessary. Here it comes:

On a given day and out of the blue Firefox starts asking for primary password whenever it needs to save a password for a website. I type my password to no avail. I'm logged in, I can sync but I can't see saved passwords. I reset my password with recovery key. I set a new password. I log in my account. I can see my browsing history but same problem.

Any ideas on how to solve this? Thanks in advance

Asked by milupas 1 วันก่อน

OSX Issues

Firefox 131.0(aarch64) OSX 15.0.1 1st Issue: The 'Clear Cache' doesn't seem to completely clear the cache. Eg: I'm logged into gmail, I go to Privacy & Security and … (อ่านเพิ่มเติม)

Firefox 131.0(aarch64) OSX 15.0.1

1st Issue: The 'Clear Cache' doesn't seem to completely clear the cache. Eg: I'm logged into gmail, I go to Privacy & Security and then click Clear Cache and History. I navigate back to gmail. I'm still logged in.

2nd Issue: When I right click and 'Open Link in New Private Window' this doesn't actually take me to a private window. I have to select File/New Private Window and paste the link to that window.

Asked by events stage 3 วันก่อน

Last reply by events stage 2 วันก่อน

Delete Browsing History with Search in Firefox Android

I would really appreciate if searching in browser history would also have the same [X] button as the default History list next to each search, so I could type something l… (อ่านเพิ่มเติม)

I would really appreciate if searching in browser history would also have the same [X] button as the default History list next to each search, so I could type something like "big juicy pineapple" in history search and delete all the records that appear.

Asked by Firefox Enjoyer 2 วันก่อน

Local file access blocked on Ubuntu 24.04.1 LDS Firefox snap version

I just wasted 3 hours trying to figure out why my ComfyUI (local AI image generator) stopped working with Firefox. There were no error messages from ComfyUI, it just fai… (อ่านเพิ่มเติม)

I just wasted 3 hours trying to figure out why my ComfyUI (local AI image generator) stopped working with Firefox. There were no error messages from ComfyUI, it just failed to load workflow files.

It turns out that it's because Firefox is installed as a snap package and wherever the snap configuration for Firefox lives thinks it knows better than I do what files and directories on my system I can access in Firefox.

I also had this problem with trying to open PDFs in my home directory where I kept getting access denied errors. I tried to solve the problems with the snap version and found several proposed solutions by google search which people claimed worked but did not.

I finally found a web page that described how to uninstall the snap package and install an alternate non-snap version of Firefox, and now everything works like I expect it to.

How do I make sure this snap version does not ever come back?

Asked by David Wootton 3 วันก่อน

Focus settings difference between block cross-site cookies and block 3rd party cookies only

With Focus privacy settings what is the difference between block cross-site cookies and block 3rd party cookies only? It isn't clear because Mozilla defines these as the… (อ่านเพิ่มเติม)

With Focus privacy settings what is the difference between block cross-site cookies and block 3rd party cookies only? It isn't clear because Mozilla defines these as the same here https://support.mozilla.org/en-US/kb/third-party-cookies-firefox-tracking-protection. So what is the different setting?

This seems to be a part of the Tracking protection which is Google's upstream code and linked to a criminal espionage bug of Google's. The code enabling this upstream criminal espionage bug is referenced by Mozilla as the Polaris project. Google was a little careful to not reject my reports of this criminal espionage bug as (intended) but plays incompetent and rejects the bug as (won't fix can't reproduce) although I have reproduced the bug in full documentation multiple times on multiple devices. My report is here https://github.com/users/freedom-foundation/projects/2

Asked by A_bughunter 3 วันก่อน

Autofill payment methods does not function

Macbook Air - Payments methods are in place in firefox. When hover over payment method required can see payment options but when select does insert payment method in … (อ่านเพิ่มเติม)

Macbook Air -

Payments methods are in place in firefox. When hover over payment method required can see payment options but when select does insert payment method in field. requires authentication is not activated

Asked by RPM 3 วันก่อน

Last reply by RPM 3 วันก่อน