Jump to content
  1. The Highlands

    1. Announcements

      General announcements of note for all forum members.

      1.8k
      posts
    2. Bruno's All Things Linux

      The place to free your mind and explore Linux, which for many, isn't an "alternative" operating system — it's their only OS.

      210k
      posts
    3. All Things Windows

      Topics related to Windows, Microsoft, help with Windows, techniques, performance, betas, all types of Applications, Windows news, Windows server OSes, the future of operating systems, and more.

      39k
      posts
    4. All Things Mac

      Topics and discussions related to Apple, Macintosh hardware and accessories, OS X, Classic, iTunes / iTMS (Mac & PC), mainstream Mac software, and more.

      3.3k
      posts
    5. Hardware

      Exploring CPUs, motherboards, overclocking, building your own PC, case mods, PC brands, handhelds, peripherals of all types, DVDs, CD burners, hardware-specific software, device drivers, and anything else related to hardware.

      19.7k
      posts
    6. Mobility

      Topics related to ANY AND ALL Mobile Platforms, Mobile Devices, Mobile Operating Systems, Mobile Apps, and more.

      2.3k
      posts
    7. Security & Networking

      Protecting PCs from attack, networking, network hardware, remote access, sharing broadband, different broadband technologies, network troubleshooting, spam, encryption, firewalls, and more.

      23.3k
      posts
    8. Social Media

      Social Media will cover all topics related to Social Media, Web 2.0, browsers and web applications, email, and more.

      17.6k
      posts
    9. The Restaurant at the Edge of the Universe

      The The Restaurant at the Edge of the Universe, previously known as The Water Cooler, is a place to post stuff that has absolutely nothing at all to do with computers, broadband, Scot's Newsletter, or anything that's "supposed" to be here.

      50.8k
      posts
    10. Forum Feedback

      Forum-Related Feedback Only, Please: Bugs, problems, forum software, skins, graphics, webhost, stuff we're testing, suggestions, and more. NOTE: Testing Subforum is under the Forum Feedback forum.
      6.6k
      posts
  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Recent Posts

    • crp
      sometimes love is not enough ,  https://www.instagram.com/reel/DAF67qJN4TJ/  
    • Corrine
      The Microsoft September 2024 security updates have been released and consist of 117 new patches to Microsoft products.    Of the Microsoft CVEs released, 3 are rated critical, 115 important, and 2 moderate in security. At the time of release, five of the CVEs is listed as being publicly known and two are listed as under active attack.   The security updates apply to the following products, features and roles: Windows and Windows Components; Office and Office Components; Azure; .NET and Visual Studio; OpenSSH for Windows; Power BI; Windows Hyper-V; and Windows Mobile Broadband.   See the list of KBs at the bottom of the page at October 2024 Security Updates - Release Notes - Security Update Guide - Microsoft for information regarding known issues with the security updates as well as the CVEs with FAQs, Mitigations and/or Workarounds.   For specific information on Windows 11, Version 24H2 see KB5044284, Version 21H2, see KB5044280.  For Windows 10, Versions 22H2 and 21H2, see KB5043273 (OS Builds 19044.4894 and 19045.4894).   Recommended Reading:   See Dustin Childs review and analysis in Zero Day Initiative -- The September 2024 Security Update Review.
    • Corrine
    • Corrine
      Pale Moon has been updated to version 33.4.0.  This is a development and security update.     Changes/fixes: Introduced the "ghostbuster" concept; this is an automated internal mechanism to attempt cleanup of particularly problematic web content after a tab or window is closed. See implementation notes. Added support for the PROT_MPROTECT security feature on targets that use it (notably PaX and NetBSD). Implemented preferences to give the user control over the Same-Origin Policy (SOP) and CORS preflight. See implementation notes. Improved buildability on NetBSD and Altivec architectures. Fixed building issues on Apple Silicon Mac with XCode 16. Added workarounds for non-standard MSE/WebM/VPx encoding on YouTube that could cause video buffering and halting issues. Dev: Changed the default credentials mode for module scripts from 'omit' to 'same-origin', aligning with mainstream. Dev: Implemented getTransform and setTransform with DOMMatrix arguments. Dev: Implemented ES2023 Hashbang grammar proposal. Fixed an issue with JavaScript's StructuredClone. Security issues addressed: CVE-2024-9396. Rejected: CVE-2024-9398 (properly informing the user about attempts to use unhandled protocols by web pages is considered more important than potential determination whether a handler for such a protocol is installed) Implementation notes: When very complex "modern" websites get closed by the user, it is possible that the browser is unable to properly release all the resources attached to it, especially those resources, modules and scripts that were part of Shadow DOM or complex interlinked module scripts. This can then result in "detached" web content and scripts that continue to use memory, have active event listeners and loaded scripts. Mainstream browsers are less affected by this as their multi-process setups will effectively "throw the baby out with the bath water" by simply killing the relevant content process. Since we don't have that luxury of a lazy solution to an architectural problem, we need to handle these so-called "ghost windows" resulting from this problem internally without restarting the browser process. This version of Pale Moon introduces the "ghostbuster" concept to try and address this: an automated, internal mechanism that periodically checks for the existence of ghost windows and severs links of them, so that garbage/cycle collection can come in afterwards and release the resources, hopefully preventing browser slowdowns and inflated memory usage over time. If this, for some reason, causes issues for you, you can disable the ghostbuster by setting the preference browser.ghostbuster.enabled to false. Also please report (in detail) on the forum about the issue you're having if flipping this preference to false resolves it, so we can look into improving this new feature. By user request, primarily for advanced power users who need this for their local setups, 2 new preferences were introduced to control how the browser deals with same-origin and CORS. security.same_origin_policy.enabled, when set to false, will completely disable checking if scripts are allowed to be loaded based on the same-origin policy. Security warning: this is a really bad idea on the open web and you should never blanket disable the Same-Origin Policy check in a web browser for normal use. content.cors.bypass_preflight_request, when set to true, will no longer send CORS preflight requests or check preflight responses and always allow cross-origin requests. Note that this kind of request is normally only made if sending a request to a server might result in data changes server-side (e.g. POST). This preference only does something when CORS is already disabled; provided primarily for specific corner cases where CORS is disabled and preflight checks (providing an extra safety net for server data) need to be shut off too. There are dragons hiding in these two preferences. Please handle them responsibly. *DiD: This means that a fix is "Defense-in-Depth": It is a fix that does not apply to a (potentially) actively exploitable vulnerability in Pale Moon, but prevents future vulnerabilities caused by the same code, e.g. when surrounding code changes, exposing the problem, or when new attack vectors are discovered. **Rejected security patches: This means that patches were theoretically applicable to our code but considered undesirable, which could be due to unwanted changes in behavior, known regressions caused by the patches, or unnecessary risks for stability, security or privacy.   Pale Moon includes both 32- and 64-bit versions for Windows: Pale Moon for Windows downloads.   Update: To get the update now, select "Help" from the Pale Moon menu at the upper left of the browser window.  Select About Pale Moon > Check for Updates.   Release Notes
    • securitybreach
  • Who's Online (See full list)

    • There are no registered users currently online
  • Member Statistics

    • Total Members
      5455
    • Most Online
      1793

    Joel
    Newest Member
    Joel
    Joined
×
×
  • Create New...