Problems? See this thread at archive.org.
besides using one's common sense while surfing!
for Firefox:
- an interesting article to start
http://www.cnet.com/8301-13739_1-9784163-46.html
that Google Customisation is totally new to me
** added 14dec07:
https://addons.mozilla.org/en-US/firefox/addon/743
** added 14dec07
firefox 2.0.0.12 adressing security issue
http://www.mozilla.org/security/announce/2008/mfsa2008-02.html
** added 15feb08
for Opera:
- to be filled .....
- added 14dec07 at 18:00:
direct from the horse's mouth
http://www.opera.com/support/tutorials/security/
- added 15dec07 at 03:00:
. it is strongly recommended that Opera users upgrade to the latest 9.24
. this was, as in the past, a security upgrade of previous version
. matter of fact, Opera users are urged to watch for all official upgrade versions, or turned on the automatic update screener within Opera
. do not use Opera 9.5 beta unless u r in for test and inputs purposesm as this version has many "unanounced" security leaks and issues
. the "unanounced" security issues and leaks are conformed with Opera official handling of Security Reports and disclosement of Vulnerabilities; as per extracted quote from the official page ( http://www.opera.com/security/policy/ )
. " How we handle security reports
Security reports are always dealt with as a matter of the highest priority. When security reports are received, the potential threat is assessed as soon as possible. When a reported issue is identified as a security issue, the reporter is contacted. As is the industry convention, a disclosure date is agreed with the reporter.
A disclosure date is agreed on a case-by-case basis. Delay between report and disclosure allows a fix to be prepared and tested, and checked for any other related problems. At the same time, it ensures that users are not left with a publicized vulnerability, without any means to upgrade.
When and where necessary, the reporter may also be asked for more information about how to reproduce the issue. Occasionally, reports of possible security issues are found not to be about exploitable security issues. Where appropriate, the reporter will be contacted with an explanation of why we believe this is not a security issue.
How vulnerabilities are disclosed
On the date agreed with the reporter, a security advisory is issued by us. We publish details of the issue, our solution to the issue, and in most cases a recommendation to upgrade to the latest official release. Typically, this advisory release would coincide with the release of a new Opera version, and the changelog for that version would include a mention of the issue and a link to the corresponding advisory. The original reporter will usually be credited. An advisory will not usually explain how an issue may be exploited, but will contain enough information to identify a specific issue."
- added 19dec07 at 10:40:
. Opera 9.25 security and performance update is out
. http://www.filehippo.com/download_opera/
. namely 4 most vulnerable security holes have been stated, see min detail under change log at filehippo or direct from Opera changelog
- look out for 9.26 in next week for security patching, possible pertaining to the security report above from mozilla
. ** added 15feb08
added 20feb08:
9.26 security fixes
Security
* Fixed an issue where simulated text inputs could trick users into uploading arbitrary files, as reported by Mozilla. See our advisory.
* Image properties can no longer be used to execute scripts, as reported by Max Leonov. See our advisory.
* Fixed an issue where the representation of DOM attribute values could allow cross site scripting, as reported by Arnaud.lb. See our advisory.
Miscellaneous
* Fixed a stability issue found in Opera 9.0 to 9.25, when Opera connects securely to Windows Server 2008 or other servers supporting the TLS Certificate Status extension.
* Additional stability fixes.
- end add 20feb08 update
for Safari:
- to be filled .....
- added 18dec07 at 17:00:
. interesting note, that by installing, one SHOULD uncheck "install Bonjour Service" - this was earmarked as potential vulnerability under Windows platform
. in saving downloaded files, assign ur own directory and UNcheck "open Safe Files after download" option
. do not use AutoFill option, it is not yet securely implemented as under OSX
. turn on Private Browsing option, this would ensure ur browsing history will be zapped
for IE:
- to be filled ......
- added 14dec07 at 06:00: sites reporting tool? http://toolbar.netcraft.com/
for ????
- to be filled ....
** added 14dec07 at 06:00:
- sites reporting tool? taken from the comments in the article link above with quote "Both offer anti-phishing protection, which by my experience is way better than FF-2.x's built-in anti-phishing protection.
Also, Siteadvisor tries to warn against sites known to host malware.
Both are free, and have stopped many a phishing-scam in its tracks for me before i even had a chance to look and see for myself if the site or URL even looked suspicious."
http://toolbar.netcraft.com/ & http://www.siteadvisor.com/
- and from another comment:
"Another Way to Perform http to https Redirection" by by ckoester October 20, 2007 9:47 AM
I've been using a Greasemonkey script to perform automatic http to https redirection, and it is fantastic.
You first need to install the Greasemonkey extension - https://addons.mozilla.org/en-US/firefox/addon/748
Then add the HTTP-to-HTTPS redirector script - http://userscripts.org/scripts/show/2588
You can add whatever sites you want to automatically redirect, and use the wildcard character * to customize. Great stuff!"
** added 14dec07
cheers ...
-
ghn...this list is a bit....unfinished.
-
LOL
Not a good start! Qhn ?
-
yeah, why ?
I don't think it's a g
-
-
Just use Opera, and experience the securest browsing experience.
-
-
and expressing thanks to Mozilla community. Without it, Opera users - not least urself - would be hit left and right and would not know where the security vulnerability came from
http://www.informationweek.com/news/showArticle.jhtml?articleID=201800584
.... and I am sure that Opera is now sweating, realizing that each new version development will depend on this open source tooling from Mozilla to QA their so called most secure snapshot
u have any constructive inputs and tips and experiences, do share them, we are all here to learn (I myself personally). And if u do believe why certain things r tip top for u, do state ur environment (system, apps, ur browsing preferences etc ...) so that simple users (me particularly) can follow ur reasonments.
cheers ...
Things that one can do to make ur browsers a bit more secured
Discussion in 'Security and Anti-Virus Software' started by qhn, Dec 12, 2007.
