adding an extension

Kaspersky has been changed to UltraAV so I need to add or change this extension in my settings. Also will Kaspersky need to be deleted? thx . THe reason for this is becau… (read more)

Kaspersky has been changed to UltraAV so I need to add or change this extension in my settings. Also will Kaspersky need to be deleted? thx . THe reason for this is because Firefox will not restart after an updated has been downloaded.

Asked by Kathy Seymour 1 hour ago

Error code: MOZILLA_PKIX_ERROR_KEY_PINNING_FAILURE

I cannot open the Mozilla download page. It seems not to download anything, as I m taken to the error page (see image). I read a support thread on the issue but I could … (read more)

I cannot open the Mozilla download page. It seems not to download anything, as I m taken to the error page (see image).

I read a support thread on the issue but I could not understand, it seems like an issue that requires previous knowledge, and I think it should be easy for old, loyal users of Mozilla to have a simple solutions for access to Mozilla site, with... Mozilla browser!

It started to happen yesterday, so far I never had such difficulty.

Thanks,

NFB

Asked by NFB 2020 1 hour ago

Macafee antivrius virus.

Upon launching Firefox I noticed a notification from Macafee antivirus, I don't really care how to spell their "company" name. But when clicking on the popup it brought m… (read more)

Upon launching Firefox I noticed a notification from Macafee antivirus, I don't really care how to spell their "company" name. But when clicking on the popup it brought me to a firefox addon for macafee. I assume that this is a virus created by the aforementioned company and not a partnership between the two of you. Just wanted to create awareness of this virus as its targeting your browser.

Asked by Timothy Wheeler 1 hour ago

Protections against Tracking via HTTP/3 QUIC - Privacy

Hello Mozilla Community, I hope I am right with you guys to ask this question though it is a rather technical question. Please let me clarify that I am not a programmer … (read more)

Hello Mozilla Community,

I hope I am right with you guys to ask this question though it is a rather technical question. Please let me clarify that I am not a programmer myself or a network engineer but rather a hobbyist who is especially interested in privacy.

As I was reading about HTTP/3 and QUIC, I came across an academic paper called ""A QUIC Look at Web Tracking".

According to this paper QUIC gives web servers and third parties a good way to track users via the "source-address token" and the "server config" which are both stored on the client('s browser/machine). Now I know that this paper is from 2019 and concerns an older version of QUIC. However, in RFC 9000 "source address tokens" aka "address validation tokens" still exist and are especially used to establish future connections with 0-RTT instead of 1-RTT (see section 8.1 of RFC 9000). Though "server config" is not mentioned in RFC 9000, "transport parameters" is mentioned in section 7.4 and 18 of RFC 9000, which are also used for 0-RTT and are also stored on the client.

Neither RFC 9000 nor RFC 9114, which concerns HTTP3, address these privacy risks in more detail. Both seem to take only MITM attackers into account (see 9.5 in RFC 9000 and 10.11 in RC 9114) [as is done in a newer paper from 2022 Evaluating QUIC for Privacy Improvements Over Its Predecessors which however at least addresses the possibility of third party tracking under 5.1 3)].

I would also like to point towards RFC 9250 of May 2022, which concerns DNS over QUIC ("DoQ"). In Section 7 of RFC 9250 many privacy concerns regarding "0-RTT", "Session Resumption (Token)", "Address Validation Token" and "Long Duration Sessions due to QUIC's connection migration feature" are elaborated in more detail.

To sum up my understanding: - Using HTTP/3 or QUIC's "connection ID" for tracking should not be that viable, even if its function is to migrate connections in case of Layer-3/4 (IP address or Port) changes, because a connections life time is at least in firefox limited to 30 seconds (see Github neqo) so that a user should not be trackable for a longer period via the "connection ID". - However, longer tracking may be possible via "Session Resumption Tokens" and "Address Validation Tokens" (see Section 7.2 and 7.3 of RFC 9250; though I myself don't know the difference between these two) as well as via "transport parameters" (see "A QUIC Look at Web Tracking").

As mentioned in "A QUIC Look at Web Tracking", though a restart of the Browser seems to clear the cached state of prior QUIC connections (to my understanding the stored "tokens" and "transport parameters"), tracking via the above mentioned features of QUIC seems not unreasonable as many users today will not restart their browser, especially on mobile devices but also on desktops (3.7 and 5.1.2 of the paper).

As I was not able to find further information on this topic, I would be very happy to get some assurance that firefox is effectively preventing or at least impeding the tracking possibilities mentioned in RFC 9250 and the paper "A QUIC Look at Web Tracking".

Thank you very much for any reply or pointing me into the right direction (other sources on this topic or a more appropriate page to ask this question).

Asked by radi99 2 hours ago

Turning off autofill of user IDs and passwords

I followed your instructions but they did not work. Specifically, I clicked on "Exceptions" after "Ask to save passwords," next to which I had clicked the box. Under ex… (read more)

I followed your instructions but they did not work. Specifically, I clicked on "Exceptions" after "Ask to save passwords," next to which I had clicked the box. Under exceptions, I put the URL for my bank. I clicked on "Block" and "Save Changes." Nevertheless whenever I go to my bank's log in page, it still autofills my user ID and password. (Yesterday I accidentally clicked the box when signing in to my bank's web page "Save User ID." Even though it only referred to my User ID, it now autofills both that and my password.

Also, even though there is a (non-working) Exceptions page for Saved Passwords, there is no such page for Saved User IDs.

Btw, when I used another browser to sign in to my bank's website, it did not autofill, so it's not the bank's software that is autofilling.

Thanks, Joe

Asked by joescanlon14 4 hours ago

Cookies

Is there a benefit to my changing the cookie settings in Firefox from standard to strict? Will this benefit me overall if I do this or would it cause problems that make m… (read more)

Is there a benefit to my changing the cookie settings in Firefox from standard to strict? Will this benefit me overall if I do this or would it cause problems that make my user experience poor? And if I change to the Firefox strict cookie setting would I then be able to give certain websites permission to use cookies without restriction at their discretion, such as say a website like Fidelity investments, which is a website and corporation I’m fairly certain would only use cookies to improve my user experience and not to sell or track in any way that would harm me. So that particular website would have more cookie ability than all the other websites that would governed by the strict cookie setting. In other words, if I go to the Firefox strict cookie setting, would I be able to make exceptions for websites on a one by one basis, websites that I trust? Thanks for your help, Steve.

Asked by Ateve 9 hours ago

Firefox keeps asking for primary password

Issue with primary password, I'd appreciate if someone could shine a light on this issue. I feel I'm wasting time unnecessary. Here it comes: On a given day and out of t… (read more)

Issue with primary password, I'd appreciate if someone could shine a light on this issue. I feel I'm wasting time unnecessary. Here it comes:

On a given day and out of the blue Firefox starts asking for primary password whenever it needs to save a password for a website. I type my password to no avail. I'm logged in, I can sync but I can't see saved passwords. I reset my password with recovery key. I set a new password. I log in my account. I can see my browsing history but same problem.

Any ideas on how to solve this? Thanks in advance

Asked by milupas 13 hours ago

My life is being threatened which topic best which topic best describes

I have rice to live no one has the right to threaten my life with black magic triangles the cloud Microsoft Google and Moselle I see you in court I have a power of attorn… (read more)

I have rice to live no one has the right to threaten my life with black magic triangles the cloud Microsoft Google and Moselle I see you in court I have a power of attorney and a lawyer tomorrow about time I have the biggest story in the Bay area I'll have much time to tell my story but God gave me this time to tell it Michael thank you for doing me the way you done me you two Alabama YouTube cat with a k Robert you too Denise Kim especially you my family I can't see the serpents in my head I'm a whole body snake somebody better get something to cure me and I mean fast I got daggers in my heart fix it fix it share my data share s*** cement took my cement synonym

Asked by Shermona Littlejohn 14 hours ago

OSX Issues

Firefox 131.0(aarch64) OSX 15.0.1 1st Issue: The 'Clear Cache' doesn't seem to completely clear the cache. Eg: I'm logged into gmail, I go to Privacy & Security and … (read more)

Firefox 131.0(aarch64) OSX 15.0.1

1st Issue: The 'Clear Cache' doesn't seem to completely clear the cache. Eg: I'm logged into gmail, I go to Privacy & Security and then click Clear Cache and History. I navigate back to gmail. I'm still logged in.

2nd Issue: When I right click and 'Open Link in New Private Window' this doesn't actually take me to a private window. I have to select File/New Private Window and paste the link to that window.

Asked by events stage 2 days ago

Last reply by events stage 1 day ago

Delete Browsing History with Search in Firefox Android

I would really appreciate if searching in browser history would also have the same [X] button as the default History list next to each search, so I could type something l… (read more)

I would really appreciate if searching in browser history would also have the same [X] button as the default History list next to each search, so I could type something like "big juicy pineapple" in history search and delete all the records that appear.

Asked by Firefox Enjoyer 1 day ago

Local file access blocked on Ubuntu 24.04.1 LDS Firefox snap version

I just wasted 3 hours trying to figure out why my ComfyUI (local AI image generator) stopped working with Firefox. There were no error messages from ComfyUI, it just fai… (read more)

I just wasted 3 hours trying to figure out why my ComfyUI (local AI image generator) stopped working with Firefox. There were no error messages from ComfyUI, it just failed to load workflow files.

It turns out that it's because Firefox is installed as a snap package and wherever the snap configuration for Firefox lives thinks it knows better than I do what files and directories on my system I can access in Firefox.

I also had this problem with trying to open PDFs in my home directory where I kept getting access denied errors. I tried to solve the problems with the snap version and found several proposed solutions by google search which people claimed worked but did not.

I finally found a web page that described how to uninstall the snap package and install an alternate non-snap version of Firefox, and now everything works like I expect it to.

How do I make sure this snap version does not ever come back?

Asked by David Wootton 1 day ago

Focus settings difference between block cross-site cookies and block 3rd party cookies only

With Focus privacy settings what is the difference between block cross-site cookies and block 3rd party cookies only? It isn't clear because Mozilla defines these as the… (read more)

With Focus privacy settings what is the difference between block cross-site cookies and block 3rd party cookies only? It isn't clear because Mozilla defines these as the same here https://support.mozilla.org/en-US/kb/third-party-cookies-firefox-tracking-protection. So what is the different setting?

This seems to be a part of the Tracking protection which is Google's upstream code and linked to a criminal espionage bug of Google's. The code enabling this upstream criminal espionage bug is referenced by Mozilla as the Polaris project. Google was a little careful to not reject my reports of this criminal espionage bug as (intended) but plays incompetent and rejects the bug as (won't fix can't reproduce) although I have reproduced the bug in full documentation multiple times on multiple devices. My report is here https://github.com/users/freedom-foundation/projects/2

Asked by A_bughunter 2 days ago

Autofill payment methods does not function

Macbook Air - Payments methods are in place in firefox. When hover over payment method required can see payment options but when select does insert payment method in … (read more)

Macbook Air -

Payments methods are in place in firefox. When hover over payment method required can see payment options but when select does insert payment method in field. requires authentication is not activated

Asked by RPM 2 days ago

Last reply by RPM 2 days ago

Firefox No longer supported by my bank. They say it is insecure!

Having spent a frustrating weelend being unable to log into Coventry Building Society's online banking app, I 'phoned the this morning to be told they consider Firefox in… (read more)

Having spent a frustrating weelend being unable to log into Coventry Building Society's online banking app, I 'phoned the this morning to be told they consider Firefox insecure and no longer support its use. The app accepts my username & password, tells me they are going to 'phone me with an access code and then displays "Page not found". Anyone know of any other bank or similar who would believe Firefox to be insecure?

Asked by john800 2 days ago

Last reply by john800 2 days ago

Firefox Ocsp fails at loading private https website

Hello, i have precisely explained issue here with different screens. i would like to have your feedback https://stackoverflow.com/questions/78995057/firefox-ocsp-fails… (read more)

Hello,

i have precisely explained issue here with different screens. i would like to have your feedback


https://stackoverflow.com/questions/78995057/firefox-ocsp-fails-at-loading-private-https-website

order of images is important there are almost 10 different images in uri linked

Asked by Thierry Brémard 2 days ago