Bug#881802: Firefox gets unusable and with broken security after update

Klaus Ethgen Klaus at Ethgen.de
Wed Nov 15 10:44:41 UTC 2017 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package: firefox
Version: 57.0-1
Severity: grave

The new update of firefox render it completely unusable and unsafe to
use as essential addons are disabled without asking the user.

- - Foxproxy - In the setup where I use firefox, I need to configure proxy
  far behind the possibilities that firefox gives me. So without that
  addon, I am actually cut of from internet completely.
  On one hand, that is good as otherwise I would be endangered due to
  the following disabled addons.
- - Noscript - Present internet is absolutely to dangerous to browse
  without Noscript. As a short term solution, JS could be completely
  disabled but it is needed to enable it on some trusted sites.
- - HTTPS Everywhere
- - Status-4-Evar - Without this addon, it is a blind flight without
  instruments to browse internet. Every link will be a surprise where it
  leads to.
- - Y U no validate - Without that addon it is easily possible to
  accidentally accept an invalid TLS certificate forever. That opens up
  for many problems.
- - DNSSEC/TLSA Validator - I need to be able to check the validity of
  TLSA entries. It is sad that firefox has no buildin check for that.
  But now it even disables the only addon that was able to verify them.
- - Cookie Monster

Beside that there are several addons that bring back some stuff that was
dropped from firefox but without, browsing is impossible.

- - Tabgruppen - Without that feature, I have about 1000 Tabs open at the
  same time. Firefox is unusable without that addon.
- - Tab Mix Plus - The same, it makes Tabbed browsing even more usable.
- - UAControl - Several sites require to set special UA to be able to
  access them. Including some embedded devices I need to use at work.

"Funny" think ist that noscript was updated too but the update is
incompatible to currect firefox.

- -- System Information:
The problem happened on a host without direct access to the internet so
I deleted the informations from the host where I report that bug from.

Note also, that the paging output of firefox prereportbug scripts break
the further usage of reportbug.
- -- 
Klaus Ethgen                                       http://www.ethgen.ch/
pub  4096R/4E20AF1C 2011-05-16            Klaus Ethgen <Klaus at Ethgen.ch>
Fingerprint: 85D4 CA42 952C 949B 1753  62B3 79D0 B06F 4E20 AF1C
-----BEGIN PGP SIGNATURE-----
Comment: Charset: ISO-8859-1
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=lJO8
-----END PGP SIGNATURE-----

More information about the pkg-mozilla-maintainers mailing list