Leaderboard

here. https://www.nathanbar.net/xp/

https://tonsky.me/blog/disenchantment/

WinNTSetup 4.2.3 - fixed Vista images could be applied in compact/wimboot mode - fixed compact:xpress4k using 8k compression with newer wimgapi.dll - fixed some command line ini option combinations - fixed vmware mounted drives disappear on winntsetup exit - new cmdline option regtweaks support wildcard file pattern - new scan offlines services to exclude Driverstore *.sys files from WOF Compression

Even if you don't use the browser itself, the engine is still deeply integrated into the operating system, so exploits can still affect you...

Should be all non-IE Pre EOL

This looks pretty complete, minus any IE updates

After winload and ntoskrnl were successfully cracked, I decided to try loading custom ntdlls, with new sections added to their ends. It failed to load them. So if even a modified winload/ntoskrnl couldn't load them, perhaps some signature checking routine exists in ntdll as well? And much like in the kernelmode files, it may have been something that could only be picked up on with the debugging symbols. You can get the full debug symbol packages for Windows 2000 to 7 SP1 from here: http://web.archive.org/web/20110903004616/http://msdn.microsoft.com/en-us/windows/hardware/gg463028.aspx They took down the offline packages because of Windows 10's frequent updates making its symbols outdated rapidly. Since there has always been a desire to experiment with drivers and kernelmode code, no one has had the same drive to manipulate ntdll in such a way (exploits notwithstanding). So there isn't much information on the subject. First I see a function named LdrpCheckCorImage. It seems to be linked to .NET Framework 2.0. Not very interesting. But I do see RtlCreateUserStack which calls RtlImageNtHeader. The latter is also called by LdrpSetProtection. But most interesting of all may be RtlpCheckHeapSignature and RtlpGetColdpatchDebugSignature. And now I wonder about how other usermode files have their signatures checked in NT 6.2 and up. UPDATE: it appears that the ntdll failure was not directly related to digital signatures, but to the way the file was modified. After testing with 2012R2's explorer.exe, I found that you must use another tool to remove the digital certificate before modifying the file, or else it will be broken. Once the signature was removed with this tool, and a miniature section was added to the explorer.exe, Windows complained about the lack of a digital signature. Booting with DSE disabled allowed the modified explorer.exe to run. Now I need to replicate these results with Vista's ntdlls, but it will be six days before I can return to an appropriate testing environment.

Why? I have a NTFS formatted 4KiB sectored USB 3.0 WD My Passport using a single primary partition of 4TB for a long time already (since Mar 11, 2018, to be exact), with no issues at all. At the time I said (link, it's in the 1st attached .pdf): And there is report by @Asp of having created a single 6 TB patition (in the 3rd attached .pdf to the post linked above), too.

If this is on NTFS, just replace the old folder with a junction pointing to the new one.

Thanks, could reproduce it, seems to only happens with UAC disabled.

new path should be "%appdata%\OpenSource\MailNews" and "%appdata%\OpenSource\BNavigator"

New NewMoon 27 Build! 32bit https://o.rths.ml/palemoon/palemoon-27.9.7.win32-git-20200815-bc7c63219-xpmod.7z 32bit SSE https://o.rths.ml/palemoon/palemoon-27.9.7.win32-git-20200815-bc7c63219-xpmod-sse.7z 32bit noSSE https://o.rths.ml/palemoon/palemoon-27.9.7.win32-git-20200815-bc7c63219-xpmod-ia32.7z 64bit https://o.rths.ml/palemoon/palemoon-27.9.7.win64-git-20200815-bc7c63219-xpmod.7z source repo: https://github.com/roytam1/palemoon27 repo changes since my last build: - import changes from `dev' branch of rmottola/Arctic-Fox: - Bug 1151848 - Bump the priority of this message so that cpowWindow.screen works without crashing. r=billm (73e9f5249) - Bug 1166277 - Fix type policy for instruction storing object pointers to unboxed/typed objects, r=jandem. (8321c9d99) - Bug 1160311. JITs should be enabled by default. r=jorendorff (9a47275b7) - pointer style (4d60b301e) - Bug 731683 - IonMonkey: Improve Ion compilation/bailouts checks. r=nbp (4e19e6e14) - Bug 1092544 - Assert that instructions are recovered on bailouts. r=bbouvier (7dbbef779) - Bug 1146364 - use resumeAfter after effectful instructions. r=nbp (4921d436f) - adjust order (599bf7564) - Bug 1092544 - Use assertRecoveredOnBailout in the test suite. r=bbouvier (2fc6c8625) - Bug 1147405: Have math_ceil_handle use setNumber rather than setDouble; r=nbp (1dcf4a821) - Bug 1147414 - Check of that Scalar Replacement is working as expected. r=h4writer (381966bd2) - pointer style (69f271f0b) - Bug 1145416 - IonMonkey: Add range to MFilterTypeSet, r=nbp (5e9d54337) - Bug 1147810 - a barriered load has an effect. r=luke (6c9890445) - Bug 1133529 - Parametrize MVariadicInstruction to allow for MVariadicControlInstructions. r=luke (bcfa647bc) - Pointer style (32f169413) - Bug 1038839 followup: Add missing MOZ_OVERRIDE annotation to mightAlias() impls in MIR.h. r=ehsan (8a51afbc4) - Bug 1146311: Make some SIMD nodes cloneable and movable; r=sunfish (3933d1874) - Bug 1141583 - Store nargs in LambdaFunctionInfo to avoid a TSan false positive. r=bhackett (8abce87ba) - Bug 1147180 - Introduce a new, strongly-typed tracing path; r=jonco, r=sfink (8db64942d) - Bug 1147670 - Remove duplicate IsMarked/IsAboutToBeFinalized for off-thread use; r=jonco (fe480f38a) - pointer style (6a277c22d) - Pointer style (e60c77c84) - Bug 1147533 - Add cross-compartment tracing methods via the new tracing paths; r=jonco (bb028c6f7) - Bug 1147180 - Replace the generic Mark functions with TraceEdge; r=jonco (52feebf99) - Bug 1147665 - Replace value marking functions with TraceEdge; r=jonco (8df1f6518) - Bug 1147588 - Replace slots marking functions with TraceEdge; r=jonco (2c2814fe7) - Bug 1137478 - Add a read barrier for Debugger::debuggees r=terrence (15bd1d4a4) - Bug 1131715 - Fix an innocuous data race in the HeapSlot pre barrier; r=jonco (52b72cb32) - Bug 1147669 - Replace id marking functions with TraceEdge; r=jonco (d3025f087) - Bug 1149352 - Templatize IsMarked and IsAboutToBeFinalized; r=jonco (ea2efef1d) - Bug 1149352 - Part 0: Only mark live entries when marking a range; r=meow (604038453) - Bug 1149352 - Part 1: Move BaseShape marking to TraceEdge; r=jonco (24df278b3) - Pointer Style (897521ce1) - Bug 1149352 - Part 2: Move Shape marking to TraceEdge; r=jonco (21fb83b96) - Bug 1149352 - Part 3: Move Script marking to TraceEdge; r=jonco (304a8a5de) - Bug 1149352 - Part 4: Move Symbol marking to TraceEdge; r=jonco (e588f435a) - pointer style (ce0325bff) - Bug 1140077 - Don't invoke read barriers inside IsTypeMarkedFromAnyThread. (r=terrence) (cfcefccb9) - Bug 1149352 - Part 5: Move ObjectGroup marking to TraceEdge; r=jonco (0b43776df) - pointer style (5c73c52ab) - Bug 1149352 - Part 6: Move JitCode marking to TraceEdge; r=jonco (e86a4ecd7) - pointer style (8a265e185) - Bug 1149352 - Part 7: Move String marking to TraceEdge; r=jonco (0b7308d02) - pointer style (39ad597d2) - pointer style (8590cb9c4) - Bug 1149352 - Part 8: Move Object marking to TraceEdge; r=jonco (b667a7f37) - Bug 1151118 - Remove recently orphaned tracing paths; r=jonco (99989fd6c) - pointer style (7fa4f2cff) - Bug 1151981 - Remove the void* marking functions; r=jonco,terrence (beffebcec) - Bug 1151155 - Loosen barrier assertion for pre-barrier verifier; r=jonco (1e7d71104) - Bug 1153354 - Share SetMaybeAliveFlag between the two places we use it; r=jonco (eff549c26) - No Bug - Remove an accidentally checked-in testing note; r=meow (9674176cb) - pointer style (3551a48d1) - Bug 1152964 - Remove browser users of setTracingDetails; r=mccr8 (8e3293483) - Bug 991752 - Always check has[G|S]etterObject before updating the Shape; r=jonco (20c1ca4a9) - Bug 1153959 - Use RAII to manage tracing details; r=jonco (07fbcfdaf) - Bug 1158809 - Only use a single output from getTracingEdgeName; r=jonco (35688a0bd) - pointer style (c5b26422c) - Bug 1153999 - Rename markChildren to traceChildren; r=sfink (a0ed3b335) - Bug 1154086 - Move DoTracing to Tracer.cpp; r=sfink (8c8a9ce09) - pointer style (42740b9ed) - Bug 1154085 - Move eager scanning under the ambit of GCMarker::traverse; r=sfink (f275397c0) - Bug 1154101 - Remove PushMarkStack indirection; r=sfink (d45894e81) (dd1ea6c7f) - import changes from `dev' branch of rmottola/Arctic-Fox: - Bug 1154950 - Share permanent atom and well-known symbol marking; r=sfink (1a2f43d38) - Bug 1156632 - Remove unused forward class declarations - patch 7 - JS, r=sfink (80d86b771) - Bug 1157628: Reformat spidermonkey source directory, again; r=jandem (d319a1e4e) - fix typo applying Bug 1147180 (5b62ca909) - Bug 1156390 - Do CheckMarkedThing on internal edges as well as roots; r=sfink (382778860) - Bug 1157533 - Share Value and jsid typed dispatch code; r=jonco (43f1115f1) - Bug 1157829 - The markAndScan functions are now just an additional assertion; r=sfink (1b16dcb0f) - Bug 1156533 - Simplify how we trace Shapes for marking; r=sfink (50861816c) - Bug 1156552 - Move BaseShape marking out-of-line; r=sfink (0a843db77) - Bug 1156888 - Do not go out-of-line to eagerly scan LazyScript instances; r=sfink (871555c46) - Bug 1157828 - Move ShouldMarkCrossCompartment adjacent to other marking invariant logic; r=jonco (78afe9dc7) - pointer style (d0acfa0f7) - Bug 1155033 - Handle cyclic or deep ObjectGroup tracing chains during cycle collection, r=terrence. (9c2df72c6) - Bug 1158313 - Move Symbol marking out-of-line; r=jonco (02f5bc494) - Bug 1158353 - Clean up eager string marking; r=jonco (55c49952f) - Bug 1158354 - Clean up ObjectGroup marking; r=sfink (372e90498) - pointer style (ce9ee4a12) - Bug 1158357 - Inline processMarkStackOther to make the dispatch obvious; r=jonco (024202539) - Bug 1159465 - Automatically check for cross-compartment edges between objects when marking; r=jonco (f6e01f005) - pointer style (1de5dbac3) - add missing bit of Bug 1147180 (2952a13ae) - missing bit of Bug 1117753 (0998c336a) - pointer style (1d6d60c63) - Bug 1159540 - Organize and comment the marking paths; r=sfink (e4a9ded85) - Bug 1159402 - Remove the zone-specialized Value barriers; r=sfink (881aaf77c) (bc7c63219)

New build of BOC/UXP for XP! Test binary: MailNews Win32 https://o.rths.ml/boc-uxp/mailnews.win32-20200815-b8025053-uxp-d3383327a-xpmod.7z BNavigator Win32 https://o.rths.ml/boc-uxp/bnavigator.win32-20200815-b8025053-uxp-d3383327a-xpmod.7z source repo (excluding UXP): https://github.com/roytam1/boc-uxp/tree/custom Official repo changes since my last build: - Explicitly state branding restrictions (8218fe28) - [Navigator] Add UX consistency to sanitize, cookies, and permissions (3cac2538) - [Navigator] Refine Cookie Manager's layout slightly (3507421c) - Comment out component LOCAL_INCLUDES for shellservice (d4874e78) - [Navigator] Create missing global icon map for folder-item (46121812) - [Navigator] Add missing stylesheet for Password Manager in the modern theme (ce5a05ad) - [Navigator] Override the Password Manager and apply the continuing UX enhancements (b8025053) My changes since my last build: - remove official brandings (5fc25b4e) - remove most of application-branding.js and replace uaoverrides.inc with platform application one (ef15160f) - remove abprime (8758c8cf) - remove unstable brandings (bd8ae615) - restore Translate function (335024b6) - change mailnews defines (471fe9ab) * - change bnavigator defines (83da58b3) * - remove upstream customized 7zstub (8892b642) - restore Translation service prefs (c8b42366) * Notice: since official names are not allowed to be used in resulting binaries, the profile prefix (i.e. parent folder names) are also changed, you may rename their names before using new binaries. -- New build of IceApe-UXP for XP! Test binary: https://o.rths.ml/gpc/files1.rt/iceape.win32-20200815-id-eed056673-ia-41157bf-uxp-d3383327a-xpmod.7z for UXP changes please see above.

New build of Serpent/UXP for XP! Test binary: Win32 https://o.rths.ml/basilisk/basilisk52-g4.6.win32-git-20200815-57e81f0-uxp-d3383327a-xpmod.7z Win64 https://o.rths.ml/basilisk/basilisk52-g4.6.win64-git-20200815-57e81f0-uxp-d3383327a-xpmod.7z source code that is comparable to my current working tree is available here: https://github.com/roytam1/UXP/commits/custom IA32 Win32 https://o.rths.ml/basilisk/basilisk52-g4.6.win32-git-20200815-57e81f0-uxp-d3383327a-xpmod-ia32.7z source code that is comparable to my current working tree is available here: https://github.com/roytam1/UXP/commits/ia32 NM28XP build: Win32 https://o.rths.ml/palemoon/palemoon-28.10.2a1.win32-git-20200815-1d4aec201-uxp-d3383327a-xpmod.7z Win64 https://o.rths.ml/palemoon/palemoon-28.10.2a1.win64-git-20200815-1d4aec201-uxp-d3383327a-xpmod.7z Official UXP changes since my last build: - Issue #1620 - Use Intrinsic Aspect Ratio for Images (3ed884a6a) - Issue #1620 - Remove Development Comments (644f617e6) - Issue #1620 - Enable Intrinsic Ratio by Default (05ee48943) - Merge pull request #1613 from RealityRipple/AspectRatio (666e37029) - [CSS] Alias -webkit-appearance for compatibility reasons (d3383327a) No official Basilisk changes since my last build. Official Pale-Moon changes since my last build: - [SSUAO] Update user-agent overrides and reorganize. (df97d7d5b) - Issue #1824 - Fix broken page style menu selection for alternative style sheets (ac536a2a9) - Merge pull request #1825 from FranklinDM/issue-1824-work (1d4aec201)

Flash 32.0.0.414 is out!

Technically the original FBI advise it is not FUD in itself, it is much more standard, boiler plate warning: http://www.documentcloud.org/documents/7013778-FBI-PIN-alert-on-Windows-7-End-of-Life.html What would you expect them to say? Brought to you by the same culture that produced: https://en.wikipedia.org/wiki/Objects_in_mirror_are_closer_than_they_appear and of course toothpick intructions. jaclaz

Who's "we"? MSFN's policy is simple: we do not propagate FUD. Period.

That's bad... I mean, putting notifications, fair enough, introducing a banner saying that it will be discontinued, fair enough, but removing the whole archive and putting a time-bomb inside an executable?! I mean, c'mon... I know that they're doing it for security concerns, but honestly, they shouldn't take such an extreme measure, 'cause perhaps I'm not on a machine connected to internet, perhaps I wanna run .swf files locally... Adobe shouldn't artificially block Flash, it should be up to the users, really...