Thursday, July 30, 2015

Firefox

 

From Wikipedia, the free encyclopedia
Not to be confused with Foxfire.
This article is about the web browser. For the operating system, see Firefox OS. For other uses, see Firefox (disambiguation).
Mozilla Firefox
Mozilla Firefox logo 2013.svg
Mozilla Firefox 39.0 Windows 10.PNG
A screenshot of Firefox 39 running on Windows 10
Developer(s) Mozilla Foundation and contributors
Mozilla Corporation
Initial release September 23, 2002; 12 years ago
Stable release 39.0 (July 2, 2015; 28 days ago[1]) [±]
ESR 38.1.0 (July 2, 2015; 28 days ago[2]) [±]
ESR 31.8.0 (July 2, 2015; 28 days ago[3]) [±]
Preview release
Beta
40.0 Beta 8 (July 28, 2015; 2 days ago[4][5]) [±]
Developer Edition
41.0a2 (July 3, 2015; 27 days ago[6]) [±] daily release
Nightly
42.0a1 (June 29, 2015; 31 days ago[7]) [±] daily release
Development status Active
Written in C++,[8] JavaScript,[9] C, CSS,[10] XUL, XBL
Operating system Windows, OS X, Linux, Android,[11] Firefox OS
Engines Gecko, SpiderMonkey
Size
Available in 79 languages[15]
Type Web browser
Feed reader
Mobile web browser
License MPL 2.0[16][17]
Website mozilla.org/firefox
Standard(s) HTML5, CSS3, RSS, Atom
Mozilla Firefox (known simply as Firefox) is a free and open-source[18] web browser developed by the Mozilla Foundation and its subsidiary, the Mozilla Corporation. Firefox is available for Windows, OS X and Linux operating systems, with its mobile versions available for Android and Firefox OS. It uses the Gecko layout engine to render web pages, which implements current and anticipated web standards.[19]
Firefox was created in 2002 under the name "Phoenix" by the Mozilla community members who wanted a standalone browser rather than the Mozilla Application Suite bundle. Even during its beta phase, Firefox proved to be popular by its testers and was praised for its speed, security and add-ons compared with Microsoft's then-dominant Internet Explorer 6. Firefox was released in November 2004,[20] and was highly successful with 60 million downloads within nine months, which was the first time that Internet Explorer's dominance was challenged.[21] Firefox is considered the spiritual successor of Netscape Navigator,[22] as the Mozilla Foundation was created by Netscape in 1998 before their acquisition by AOL.[23]
As of February 2015, Firefox has between 12% and 20% of worldwide usage as a "desktop" browser, making it, per different sources, the third most popular web browser.[24][25][26][27] Still, the browser is most popular in several countries, as a desktop browser[28][29] (or even across all platforms[30]) including Indonesia, Germany, and Iran, at 50%,[31] 44%[32] and 37%,[33] of the market share, respectively. According to Mozilla, as of December 2014, there are half a billion Firefox users around the world.[34]

Contents

History

Main article: History of Firefox
The Firefox project began as an experimental branch of the Mozilla project by Dave Hyatt, Joe Hewitt and Blake Ross. They believed the commercial requirements of Netscape's sponsorship and developer-driven feature creep compromised the utility of the Mozilla browser.[35] To combat what they saw as the Mozilla Suite's software bloat, they created a stand-alone browser, with which they intended to replace the Mozilla Suite.[36] On April 3, 2003, the Mozilla Organization announced that they planned to change their focus from the Mozilla Suite to Firefox and Thunderbird.[37] The community-driven SeaMonkey was formed and eventually replaced the Mozilla Application Suite in 2005.
Phoenix 0.1 screenshot on Windows XP
The Firefox project has undergone several name changes. It was originally titled Phoenix, which carried the implication of the mythical firebird that rose triumphantly from the ashes of its dead predecessor, in this case from the "ashes" of Netscape Navigator after it had been killed off by Microsoft's Internet Explorer in the "First browser war". Phoenix was renamed due to trademark issues with Phoenix Technologies; the replacement name, Firebird, provoked an intense response from the Firebird database software project.[38][39] In response, the Mozilla Foundation stated that the browser would always bear the name Mozilla Firebird to avoid confusion. After further pressure, on February 9, 2004, Mozilla Firebird became Mozilla Firefox.[40] The name Firefox was said to be derived from a nickname of the red panda,[41][42] which became the mascot for the newly named project. For the abbreviation of Firefox, Mozilla prefers Fx or fx, though it is often abbreviated as FF.[43]
The Firefox project went through many versions before the version 1.0 was released on November 9, 2004.

Features

Main article: Features of Firefox
Features include tabbed browsing, spell checking, incremental find, live bookmarking, Smart Bookmarks, a download manager, private browsing, location-aware browsing (also known as "geolocation") based on a Google service[44] and an integrated search system that uses Google by default in most localizations. Functions can be added through extensions, created by third-party developers,[45] of which there is a wide selection, a feature that has attracted many of Firefox's users.
Additionally, Firefox provides an environment for web developers in which they can use built-in tools, such as the Error Console or the DOM Inspector, or extensions, such as Firebug.

Standards

The result of the Acid3 test on Firefox 17
Firefox implements many web standards, including HTML4 (partial HTML5), XML, XHTML, MathML, SVG 1.1 (partial),[46] CSS (with extensions),[47] ECMAScript (JavaScript), DOM, XSLT, XPath, and APNG (Animated PNG) images with alpha transparency.[48] Firefox also implements standards proposals created by the WHATWG such as client-side storage,[49][50] and canvas element.[51]
Firefox has passed the Acid2 standards-compliance test since version 3.0.[52] Mozilla had originally stated that they did not intend for Firefox to pass the Acid3 test fully because they believed that the SVG fonts part of the test had become outdated and irrelevant, due to WOFF being agreed upon as a standard by all major browser makers.[53] Because the SVG font tests were removed from the Acid3 test in September 2011, Firefox 4 and greater scored 100/100.[54][55]
Firefox also implements[56] a proprietary protocol[57] from Google called "Safe Browsing", used to exchange data related with phishing and malware protection.

Security

See also: Browser security
Firefox uses a sandbox security model,[58] and limits scripts from accessing data from other websites based on the same-origin policy.[59] It also provides support for smart cards to web applications, for authentication purposes.[60] It uses SSL/TLS to protect communications with web servers using strong cryptography when using the HTTPS protocol.[61] The freely available HTTPS Everywhere add-on enforces HTTPS, even if a regular HTTP URL is entered. Firefox now supports HTTP/2.[62]
The Mozilla Foundation offers a "bug bounty" (up to US$3000 cash reward and a Mozilla T-shirt) to researchers who discover severe security holes in Firefox.[63] Official guidelines for handling security vulnerabilities discourage early disclosure of vulnerabilities so as not to give potential attackers an advantage in creating exploits.[64]
Because Firefox generally has fewer publicly known unpatched security vulnerabilities than Internet Explorer (see Comparison of web browsers), improved security is often cited as a reason to switch from Internet Explorer to Firefox.[65][66][67][68] The Washington Post reported that exploit code for known critical unpatched security vulnerabilities in Internet Explorer was available for 284 days in 2006. In comparison, exploit code for known, critical security vulnerabilities in Firefox was available for nine days before Mozilla issued a patch to remedy the problem.[69]
A 2006 Symantec study showed that, although Firefox had surpassed other browsers in the number of vendor-confirmed vulnerabilities that year through September, these vulnerabilities were patched far more quickly than those found in other browsers – Firefox's vulnerabilities were fixed on average one day after the exploit code was made available, as compared to nine days for Internet Explorer.[70] Symantec later clarified their statement, saying that Firefox still had fewer security vulnerabilities than Internet Explorer, as counted by security researchers.[71]
In 2010 a study of the National Institute of Standards and Technology (NIST), based on data compiled from the National Vulnerability Database (NVD), Firefox was listed as the fifth most vulnerable desktop software, with Internet Explorer as the eighth, and Google Chrome as the first.[72]
InfoWorld has cited security experts saying that, as Firefox becomes more popular, more vulnerabilities will be found,[73] a claim that Mitchell Baker, president of the Mozilla Foundation, has denied. "There is this idea that market share alone will make you have more vulnerabilities. It is not relational at all," she said.[74]
In October 2009, Microsoft's security engineers acknowledged that Firefox was vulnerable to a security issue found in the 'Windows Presentation Foundation' browser plug-in since February of that year. A .NET Framework 3.5 SP1 Windows Update had silently installed the vulnerable plug-in into Firefox.[75] This vulnerability has since been patched by Microsoft.[76]
As of February 11, 2011, Firefox 3.6 had no known unpatched security vulnerabilities according to Secunia.[77] Internet Explorer 8 had five unpatched security vulnerabilities, the worst being rated "Less Critical" by Secunia.[78] Mozilla claims that all patched vulnerabilities of Mozilla products are publicly listed.[79]
On January 28, 2013, Mozilla was recognized as the most trusted internet company for privacy in 2012.[80] This study was performed by the Ponemon Institute and was a result of a survey from more than 100,000 consumers in the United States.
In February 2013, plans were announced for Firefox 22 to disable third-party cookies by default. However, the introduction of the feature was then delayed so Mozilla developers could "collect and analyze data on the effect of blocking some third-party cookies." Mozilla also collaborated with Stanford University's "Cookie Clearinghouse" project to develop a blacklist and whitelist of sites that will be used in the filter.[81][82]
Version 23, released in August 2013, followed the lead of its competitors by blocking iframe, stylesheet, and script resources served from non-HTTPS servers embedded on HTTPS pages by default. Additionally, JavaScript could also no longer be disabled through Firefox's preferences, and JavaScript was automatically re-enabled for users who upgraded to 23 or higher with it disabled. The change was made due to its use across the majority of websites, the potential repercussions on non-experienced users who are unaware of its impact, along with the availability of extensions such as NoScript, which can disable JavaScript in a more controlled fashion. The following release added the ability to disable JavaScript through the developer tools for testing purposes.[83][84][85]
In January 2015, TorrentFreak reported that using Firefox when connected to the internet using a VPN can be a serious security issue due to the browser's support for WebRTC.[86]

Telemetry

In Firefox versions prior to 7.0, an information bar appears on the browser's first start asking users whether they would like to send performance statistics, or "telemetry", to Mozilla. It is enabled by default in development versions of Firefox, but not in release versions.[87] According to Mozilla's privacy policy,[88] these statistics are stored only in aggregate format, and the only personally identifiable information transmitted is the user's IP address.

Localizations

Main article: Mozilla localizations
Firefox 22 in the Portuguese language
Firefox is a widely localized web browser. The first official release in November 2004 was available in 24 different languages and for 28 locales, including British English/American English, European Spanish/Argentine Spanish and Chinese in Traditional Chinese characters/Simplified Chinese characters.[89] As of July 2015, currently supported 39.0, 38.1.0esr and 31.8.0esr versions are available in 89 locales (79 languages).[15]

Platform availability

Desktop version of Firefox is available and supported for Windows, OS X and Linux, while the Firefox for mobile is available for Android and Firefox OS. In September 2013, the Windows 8 Touch interface, optimized for touchscreen use, was introduced on the "Aurora" release channel; however, the project has since been cancelled as of March 2014, citing a lack of user adoption of the beta versions.[90][91][92]
Firefox has also been ported to FreeBSD,[93] NetBSD,[94] OpenBSD,[95] OpenIndiana,[96] SkyOS, and an unofficial rebranded version called Timberwolf has been available for AmigaOS 4.

DRM with HTML5, Windows-only

Starting with version 38.0, on Windows Vista and later Firefox implements a "sandbox" for proprietary software digital rights management (DRM), called Encrypted Media Extensions (EME). The DRM playback functionality is provided through an automatically downloaded plugin that runs inside the implemented sandbox, provided by Adobe and called Adobe Primetime Content Decryption Module (CDM); the plugin itself and the DRM playback functionality can optionally be disabled in browser preferences.
According to Mozilla:
While some DRM-controlled content can be viewed using the Microsoft Silverlight and Adobe Flash plugins, many services are moving towards HTML5 video that requires a different DRM mechanism called a Content Decryption Module (CDM).
Beginning in version 38, Firefox desktop supports HTML5 playback of DRM-controlled video and audio through the Adobe Primetime CDM. This CDM implements a DRM system called Adobe Primetime, which was previously available via the Adobe Flash plugin. [..]
Currently, Adobe Primetime is only available in Microsoft Windows Vista and above when using 32-bit versions of Firefox. Mac OS X, Linux, Windows XP and 64-bit versions of Firefox are currently not supported.
—Mozilla, Watch DRM content on Firefox[97]

No comments: