Establish secure connection to localhost in Firefox

I have a Greenbone Security Assistant that has me connect to 127.0.0.1 port 9392, with the command:

sudo openvas-start firefox http://localhost:9392 

in Firefox. But before (and sometimes after) connecting, Firefox throws a lot of errors about insecure connection, and always highlights the better part of the URL in red. This also happens when connecting to localhost for, say, Autopsy. Is there any way I can establish a secure connection to localhost? Maybe from the terminal, in the firefox http://whateverURLforyourapp command?

Firefox is not reaching the HAVE_ENOUGH_DATA (4) HTMLMediaElement.readyState [closed]

On the index page of a web service website, I have included a small video that shows some functionalities. But since many users navigate to the login page via the index page I don’t want to use a preload="auto" on the start page. This would mean that the data volume of many users would be unnecessarily consumed. My solution was to set preload to none and start loading the video via JavaScript when the video enters the viewport.

function someScrollDependentFunction() {     videoElement.load(); }  

To make sure that the user can watch the video without interruptions I added a check to the play button which verifies the readyState of the video. Only when 4 is returned, the video is supposed to start.

$  ('#playButton').on('click', function(){     if (videoElement.readyState === 4) {         videoElement.play();     } });  // Note that I have some code that checks the readyState regularly (every 500 ms)  

Under Chrome and Safari this works without problems. But not with Firefox. The problem is that Firefox only loads 400 bytes with videoElement.load() and thus never returns the readyState `4. All options to get Firefox to use a larger buffer volume are based on the browser settings of the individual user, so far I have not found a way for me as a web developer to tell Firefox to load this video completely.

The preload="auto" attribute seems to do exactly that, but for the reasons I mentioned above, I really want to avoid using it. Which solution do you see here? Is my only possibility to load the video at a certain scroll position into the page via Ajax, so that it can be equipped with the preload="auto" attribute?

Firefox and Chrome load resources with max-age differently?

I’m trying to troubleshoot something on the client and I believe it has something to do with the the browser caching requests.

I’m loading the same page on Firefox and Chrome (Canary). When I look in the network tab, I see different behavior.

There server response has a max-age set for cache control. I see that Chrome always loads from (disk cache) if max-age has not been reached. But for Firefox, I’ll see it load the resource not from cache once in a while before max-age has been reached. Also I’m seeing 304 ‘not modified’ in Firefox, but not in Chrome.

Can someone help explain what I’m seeing?

Here are some screenshots of the Network tabs… Firefox network tab Chrome network tab

Firefox: What would be more secure/private: storing session cookies or saving password in the browser?

I am wondering, assuming the latest version of Firefox, which of the following options would be more preferable security-wise (e.g. assess and/or password to user account will be stolen) and which one privacy-wise (exposing user to the least advertisement tracking etc.):

  1. Storing session cookies (i.e. logging in and never logging out), but not saving password & username in browser built-in Password Manager.
  2. Saving password & username in built-in Password Manager (without Master Password) and setting cookies and site data to be cleared when browser is closed.

P.S.: I am aware that using Master Password for password storage will increase security of the stored passwords. Though I am not wondering how to improve given options, but would like to asses them “as is”.

Customize default Prompt options (camera to share) when I trigger camera in Firefox with code development

I am having 2 cameras in my PC. When I try to trigger camera in firefox it always opens a permission prompt box with a webcam options. But I don’t want to show the camera options in the prompt box. So Is there any customizable thingy to customize the Prompt box for firefox by updated any javascript changes (I am a developer. So want to fix it by code updation itself for my web application) Anyone please help me resolve this problem ?

Firefox 72 not displaying CSS Custom Cursor from SVG file

I’m currently experimenting with CSS custom cursors:

cursor: url(' [... URL HERE...'), auto; 

and I’m finding that Firefox 72 is not happy with either SVG cursors or GIF cursors (though it is entirely happy with PNG cursors).

According to: Can I Use CSS property: cursor: url() there shouldn’t be a problem.

But clearly there is.

Can anyone shed any light on what the issue is here, please?

Is it that:

  • Firefox does not support SVG cursors and caniuse.com is misinformed ?
  • Firefox does support SVG cursors and I am doing something else wrong?

Added:

Oh. That’s odd. Not working on Chrome 79 either. No idea what’s up then.

How do I allow Mozilla Firefox to use internet? [closed]

At my school Mozilla firefox is blocked for students, so only teachers could access it. The PCs are running on Linux Gnome. It has nothing to do with the cable, network manager or ifconfig eth0 up. It is only in Mozilla. You think it could be somewhere in Mozilla‘s settings (no proxy is used) .

As I was 12 I went in a IT Academy, where we had the same thing, so we couldn’t play any Flash games. We fixed it, by changing port in Mozilla in the right one, which people have seen once from a teacher.

I am saying it, because I couldn’t find the same option in the settings now.

Any information would help, thanks!

What use would a privacy browser, such as Firefox Focus for iPhone, have for an internal web server?

The Mozilla Foundation has a “privacy browser” called Firefox Focus that is available for example iPhone (here). This browser has an always-on ad blocking function.

I was checking the third-party licenses used by this iPhone version (image shown below) and noticed that it includes the use of GCDWebServer.

[3rd-party licenses used by Firefox Focus]

The GitHub page for GCDWebServer says that:

GCDWebServer is a modern and lightweight GCD based HTTP 1.1 server designed to be embedded in iOS, macOS & tvOS apps.

There is a support information for this browser here but the documentation does not mention the use of an internal web server.

This issue has relevance in evaluating the risks from possible open ports in connection with determining whether to allow this browser in corporate bring-your-own-device configuration.

Question: What use would a mobile device web browser have for running an embedded web server?