Cert recommendations: How to make your firefox browser even more secure!

Hi malware fighters and users of firefox,

  • Make it your standard browser.
    * Only accept cookies coming from original sites.
    * Use and install a Master Password.
    * Disable Java support.
    * Disable all JavaScript specific settings.
    * Warn for sites that install extensions.
    * Do not open automatically but download media files.
    * Delete all private data.

This are CERT recommendations, but do not forget NoScript, an obligatory add-on for every Firefox surfer that wants to make the browser more secure from malware vectors and penetration.

polonus

They might as well add, don’t bother browsing the web, when the measure to make it safe ruin the browsing experience they really need to rethink the solution.

They should be recommending NoScript and a healthy dose of common sense.

Hi DavidR,

I agree with you. You have to make the browser more secure without seriously hampering the browser experience. But the other way is also wrong like the route to a more secure firefox 3.0 is found by getting features on board that can be delivered by existing extensions and/or add-ons. What they are planning for the postponed firefox 3.o release you can read here:
http://wiki.mozilla.org/Firefox3/Product_Requirements_Document#P1

polonus

I didn’t realise FF 3.0 was postponed, I thought it was due in November 2007, which seems to fall in line with other releases.

1.0 Nov 9th 2004
1.5 Nov 29th 2005
2.0 Oct 24th 2006.

guess it will only be better when its released 8)
http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9026639&source=rss_news50 some more news on the delay…

http://i10.tinypic.com/4lf5wr8.jpg