Pdaxrom/linux Security

[hbo]

I'm using an insecure browser right this minute! Be afraid. Be very.. wait, that's me that should be afraid. Rats.

Where did the project pick up the source code (besides mozilla.org) for the 1.0 version of Firefox? is someone tooled to do the build of the latest versions of ff and mozilla? I haven't checked, but I imagine thunderbird and sunbird need refreshing. too. I'm prepared to help, but I'm not set up for cross compiling with this toolkit. And I'm not patient enough to build anything like Mozilla on any of my Zaurii.

The kernel probably needs multiple security patches too. See my post later in this thread.

[adf]

a good idea, but the security isssues weren'texactly serious

[hbo]

a good idea, but the security isssues weren'texactly serious
[div align=\"right\"][a href=\"index.php?act=findpost&pid=81375\"][{POST_SNAPBACK}][/a][/div]

Yeah, but you can't download "skins" from mozilla.org unless you are running the latest. (Actually, you can't use the "update service." I'm pretty sure you could grab the skins th old fashioned way.)

[adf]

I never even tried skinning my Z-firefox.  tried a few plugins with limited success, and basically made an unconscious decision to live with whatever version installs from the distro feed.
I guess (because of the "fix") an update would do more than I had thought.

[hbo]

I never even tried skinning my Z-firefox.  tried a few plugins with limited success, and basically made an unconscious decision to live with whatever version installs from the distro feed.
I guess (because of the "fix") an update would do more than I had thought.
[div align=\"right\"][a href=\"index.php?act=findpost&pid=81492\"][{POST_SNAPBACK}][/a][/div]

Actually, if you turn off the bookmarks toolbar, and go to "full screen" mode, the default interface is pretty darn skinny. Still, I know of at least one extension that does work. It's a good idea to stay up to date with security patches. I think that several of the security bugs relate to opportunities to aid "phishing" attacks. They may be corner cases, but a really bad flaw could show up tomorrow, be patched within a week by mozilla, and wait for months to get integrated into the smaller community based distros like pdaXrom.

Mozilla is just the tip of the iceberg, of course. The two security patches in the "combined" kernel that Guylhem is working on are the first two I've seen on the Lineo/embedix/whatever base. I know for certain that there are multiple dozens of severe security bugs that apply to that level of the kernel. (I worked at supporting RH 7.3 after end-of-life, so I patched several myself.) How many of these have been addressed in the base release, vs. those that don't apply because a particular feature isn't used vs those that do apply but have been addressed by patches vs those that are still a threat is likely to be a difficult question to answer. I think this question gets more relevant as the capabilities of these machines improve. I'd like to use my 6K and 860 for secure remote access into Fortune 500 companies, for instance.  I can probably do that, but should I?? (From a public wireless network for instance?)

[adf]

For that and other reasons (like the fast floating point) I'd really love to see guylhem's kernel available  for pdax/6k (or the pdaX 6k branch use gulhem's source) .  I'll see if it doesn't just "update"  in tonight.

maybe we ought to learn how to setup pdax crosscompiler? (not that i have any ambition to crosscompile firefox--I'd rather have dentistry---)

[hbo]

maybe we ought to learn how to setup pdax crosscompiler? (not that i have any ambition to crosscompile firefox--I'd rather have dentistry---)
[div align=\"right\"][a href=\"index.php?act=findpost&pid=81505\"][{POST_SNAPBACK}][/a][/div]

Hah! Laughing gas makes dentistry a positive pleasure, or so I've heard.

And building Mozilla isn't that tough. It just takes a long time. I haven't tried to build Firefox. so I don't know how much more or less complex that is. I do want to set up the pdaXrom toolchain in cross-compile mode. One of the really attractive things about this distro is the very compatible X11 environment. "Porting" nonpareil was a simple matter of dealing with the packaging issues. the code itself Just Worked™. And it has non-trivial dependencies recent versions of gtk+ and glib.

[BarryW]

I downloaded the favorites sync extension and installed it manually.  Worked really well.  What I want is a browser that will render my avatar correctly!!!   -------------------->

[jerrybme]

Anyone have any ideas on how to lock down pdaxrom so that a password is required to recover from a suspend?    I guess you could install xscreensaver, set it to lock the screen. Any other ideas?