Jump to content

Mathwiz

Member
 View Profile  See their activity

  • Posts

    1,836

  • Joined

  • Last visited

  • Days Won

    50

  • Donations

    0.00 USD 

  • Country

    United States

 Content Type 

Everything posted by Mathwiz

  1. Mathwiz
    Yes, it does; and Chase is working on my old phone again. Firefox retains compatibility with phones even older than mine - although I went with 115 instead of 125, just to be stubborn. At least I know I can upgrade again when that nag comes back, and the phone itself will work as long as I don't drop it and 4G still exists. (4G will go away at some point, but my old phone probably has another year or two left.) Almost certainly, at least if you use Facebook/Instagram/Snapchat. At least Meta isn't quite as pervasive as Alphabet (yet); you can avoid using anything Meta owns - at least, if you know that they own it! But the whole darn Internet buys Google ads, uses Google products and services, watches YouTube videos (even on other sites), etc.
  2. Mathwiz
    Good question; here's an answer, straight from Moonchild himself: https://forum.palemoon.org/viewtopic.php?f=62&t=18678#p137637 TL;DR: Using https to encapsulate another protocol is inefficient, and a VPN would accomplish the same thing more efficiently; therefore DoH isn't needed. Counter-arguments are provided in other posts on the thread. I agree that it's inefficient, but I'm not sure everyone is willing to haul out the VPN sledgehammer just to thwart ISP snooping. After all, if you don't trust your ISP, you're probably skeptical of most commercial VPNs too. DoH lets you separate the knowledge of your browsing into different buckets: your ISP knows which IP addresses you visit, but not which sites at those addresses; the DoH provider knows which sites your IP address is looking up, but not who you are (only your ISP - and probably Google - know that), nor which of those sites are active visits and which are just "noise" from browser plugins and whatnot. (Of course, if you're really worried about these things, you should probably choose a DoH provider other than Google!)
  3. Mathwiz
    Interesting. I may have to go this route on Win 7. As much as I love @roytam1's Serpent, it looks increasingly like the end is near. My hunch (that's all it is) would be no. The author wouldn't expect anyone to run r3dfox on Win 10 since they could just run vanilla Mo. Besides, why? The question reminds me a bit of @Jody Thornton's request for a 64-bit build of MailNews. Sure, it could be done - the program could check the Windows version and then make different OS calls based on the result - but what advantage would it bring?
  4. Mathwiz
    You're right, but it's not a matter of DoH someday becoming the "only option" because the last holdout, MCP, finally caved and supported it! DoH's mere existence threatens ad blocking at the router. Let's say you have a Roku app, which of course is completely unrelated to your computer or Web browser. The author of that app doesn't want you to block ads, so he/she/it already has a huge financial incentive to build DoH into the app so you can't. And DoH already exists, so there's nothing (besides a little development cost) to stop the author from doing so. Thanks for the suggestions, but what does it buy me? You of all people should know how much work it takes to remove all the telemetry from 360Chrome. BTW, the soon-to-be-minimum versions at chase.com are Chrome 116 and FF 115. The former won't run on W7, so it's either Supermium, Thorium, one of the 360Chrome versions above, or Mo (my new abbreviation for modern Firefox) 115 ESR. I think I trust Supermium v118 most, but in any case, there's very little true choice left among "modern" browsers. Edit: I just learned of r3dfox (pronounced "red fox"), a Win 7-compatible fork of Mo that will hopefully outlast v115 ESR. Which proves the point @VistaLover was making - that's only five versions above your current "primary" and only five versions older than the "latest and [supposedly] greatest." Google has us all on their "upgrade" treadmill now, even if you skip a handful of versions each time.
  5. Mathwiz
    Well, that explains the otherwise odd-seeming upping of the required minimum from 113 to 115, at least, if it's the last Win 7-compatible version. In any event, Chase lowered the boom rather quickly this time. I can no longer sign in using either Serpent or 360EE. There appears to be a JSON parsing error in my Chase-specific StructuredClone polyfill. @UCyborg's more sophisticated polyfill doesn't do the trick either since it doesn't handle self-referential objects (same problem as with the StructuredClone built into UXP). Also not working: Chrome 106 on Android 6.0. Edge 109 (on Win 7) still works (so, I assume, Chrome 109 would too), but for how long? It too now has the ominous "We'll stop supporting this browser soon" nag. FF 115 ESR will presumably have a somewhat longer lifespan, but the end is in sight there too. Looks like it's gonna be Thorium and/or Supermium in my future, whether I like non-unGoogled Chromium derivatives or not. I appreciate your honesty; but I daresay your "not-so-humble" opinion very likely puts you out of step with the vast majority of MSFN members. Yes, I know you "upgraded" to Windows 10 and are currently using Chromium 114, so perhaps you don't care what happens to those of us who still use earlier Windows versions (even 8.1); but there will come a day when your OS/browser will stop working too, at which point I will be overjoyed to remind you of your "not-so-humble" opinion! I just rename the folder; e.g., rename "New Moon" to "Old Moon" (delete the "Old Moon" folder first, if it still exists from the last update) and restore the new version into a new "New Moon" folder. I even wrote a batch file that automates the process. You don't lose any settings (unless you made your New Moon installation portable). Yes, I noticed that too, some time ago. It's a longstanding bug that also affects the pages shown by long-clicking the Back button. I just decided to live with it. I think their discussion was specifically about DNS over HTTPS, which wasn't a thing until long after XP EOS. Unfortunately, not likely, given MCP's position: DoH is a double-edged sword. It can be used to conceal your browsing habits from your ISP (probably a good thing) but it can also be used by apps to thwart ad blockers like Pi-Hole, which most users would consider a bad thing. But as usual, MCP fails to understand that their decision not to support DoH will have exactly zero effect on its "bad" uses coming to fruition; all it does is mean that Pale Moon users can't easily avail themselves of its "good" uses. (The apostrophe - D'OH - was clever though.)
  6. Mathwiz
    https://www.tomsguide.com/ looks to me like that stupid link rel="preload" issue we also see at Micro$oft's Web pages. Proxomitron and/or Modify HTTP Response might be able to fix it. Someday I'll find the person who came up with that "preload" nonsense and wring his neck. AFAICS it accomplishes nothing other than breaking Web pages on older browsers. OTOH, I cannot understand why MCP still hasn't addressed link rel="preload" in UXP. It's been an issue for a long time, it breaks major sites like Micro$oft's, and (although I'll admit I don't know enough to be sure) it doesn't seem like something that would be all that hard to implement.
  7. Mathwiz
    To me, that indeed sounds like the most plausible explanation, especially considering that they did not increase the minimum version for Chrome/Edge! Although if "security" is the reason, I would've expected them to require at least the WebP fix, which V115 lacks.
  8. Mathwiz
    Hi folks! My bank's site, chase.com, is once again upping the minimum browser version for Firefox. (This hasn't yet been implemented. At this point, a nag appears if your user agent reports a version that's "too old," but everything still works - for now.) The last time they did this, they raised the minimum to v113, and I changed my user agent to match that minimum. This time, they're raising it to ... v115. Setting the user agent to v115 or later removes the nag. I was flabbergasted! I half expected v117, the last version for Windows 7, at least. What's the point of raising the minimum by a mere two versions? What did FF v115 bring to the CSS/Javascript table that Chase just had to have? I'm anticipating a future breakage of chase.com with bated breath.
  9. Mathwiz
    From the r3dfox readme:
  10. Mathwiz
    I hate things like that. Whose side is the browser on, anyway? If it can download an image for display, it should be able to download the same image to disk. Win 7+ (maybe Vista too; IDK) have a "snipping tool" you can use to save images, but I don't know if there's an XP app that does something similar.
  11. Mathwiz
    Here's part of what @VistaLover wrote recently about NM 27 vs. 28. Actually this was in the context of discussing why we were getting so many NM 27 updates:
  12. Mathwiz
    Forum search functions generally suck - not just ours but every one I've ever tried. What would be really helpful is Bing's new AI search - just type in the question, et voila! But you have to be running Edge to use it and if you're able to do that, you probably aren't interested in NM 27 or 28!
  13. Mathwiz
    Agreed. I wasn't casting aspersions on the user for asking - that was the right thing to do. Just pointing out that the question does come up a lot, and will probably continue to do so. Rather than a long response, it would probably be easiest to beef up the FAQ with links to one of @VistaLover's detailed replies on those two topics. I wouldn't use it, but it (and its sister K-Meleon) are more lightweight than current UXP browsers, so they might be reasonable "first browser" choices on older hardware where UXP is unacceptably slow. If it fails to render a site properly you could always fire up Serpent, go make a cup of coffee, drink it....
  14. Mathwiz
    There's a thread on Supermium here at MSFN: https://msfn.org/board/topic/185045-supermium/
  15. Mathwiz
    That question comes up so often, it probably should be addressed in the FAQ at the beginning of this thread.
  16. Mathwiz
    Agreed; it's your Dropbox account and you can put what you want there. But folks will keep finding this thread, and this will repeat, unless you at least remove the dead links from post 1. Also, if you follow the quote above back to the original post, you'll find a link to build 2036, whose links are also dead. Please don't frustrate new would-be users! If it were me, I'd not only remove all those dead links, but also replace them with a link to the redux thread so folks can download the "newer, improved" version. Unfortunately I doubt there's much more that can done with 360EE. I'm just happy we have a reasonably modern (at least when beefed up with polyfills), lightweight, unGoogled Chromium for XP.
  17. Mathwiz
    Is this where the "Offline Web Content and User Data" shown when you go to Tools / Preferences / Advanced is stored? I think logins and passwords are stored in a different table, but I'm not sure.
  18. Mathwiz
    Wow - it's good to be back after that scary outage! Also good to see that nothing appears to have been lost. It's been 2 1/2 weeks since I posted about pdf.js; unfortunately I was stopped by a problem I couldn't resolve and had to go back to the drawing board. Although the pdf.js V2.15 I downloaded from GitHub works fine with some sites, it simply won't work with others. Problem is (or at least appears to be) that the downloaded version was intended to be hosted on a Web site, not run from within the browser (either built-in or as an extension). As a result, Serpent's cross-site scripting protection keeps kicking in if the site you're trying to download a .pdf from doesn't send the right "CORS" header saying it's OK for another "Web site" to access the pdf. I couldn't figure out how to get around it, so I gave up on the GitHub versions. Instead I started extracting pdf.js from newer versions of Firefox. This worked better, without the XSS errors I was getting with the downloaded versions. I got up to FF 79, but that was still only at version 2.6.47. (Unfortunately Mozilla shuffled everything around in FF 80 and I haven't yet found the pdf.js in that or any newer version.) So, a disappointing setback, and RL issues haven't helped. But I haven't given up yet.
  19. Mathwiz
    I hear you. But I still update more often than once every five months! I believe the 2-24 Serpent versions are stable and that's what I'm running now. There have been no updates in several weeks, long enough to identify and fix any big issues.
  20. Mathwiz
    NM 27 and NM 28 typically use the same profile folder: %appdata%\Moonchild Productions\Pale Moon. If you wish to use both NM 27 and NM 28 on the same PC, you should make one or both portable to keep their profiles separate. (I believe a portable loader is mentioned in the first post of this thread.)
  21. Mathwiz
    Found a polyfill for that and tried it. Unfortunately, I think my polyfill needs a polyfill of its own: renderView: "TypeError: ctx.getTransform(...).invertSelf is not a function" viewer.js:9719:19 "invertSelf?" Good grief....
  22. Mathwiz
    That is certainly possible. I'm sure it was part of Chase's decision to require 109 (although only 106 on Android), since Chrome 109 was the oldest version to get the WebP fix last year. But again, at least Chase can argue that they're trying to protect their customers' money; what's Science Direct trying to protect? As you noted, a Web server is at no risk from older browsers. But I bet a lot of Web developers don't understand that. I think a lot of folks, even cybersecurity experts, don't really understand cybersecurity. They just know there are "vulnerabilities" and don't delve into what exactly is "vulnerable" and what isn't - so they just blindly try to close off every "vulnerability" they can get away with.
  23. Mathwiz
    Most likely, Science Direct didn't develop their Web site at all; they just hired some Web developer to do it, and the Web developer is still doing things the old way (UA sniffing). Chase.com is guilty of this too, but at least you don't expect better from bankers. In (sort of) defense of UA sniffing, if the site wouldn't work, it's probably better to sniff the UA and give a message than to just have the Web site not work properly and frustrate the user. But in that case, they shouldn't require a newer version than what's actually needed for the site to work. Since the site apparently runs fine with Chromium 87, they don't need to be requiring (say) Chromium 109. I suspect the developers tested with 109 (or whatever version), saw that it worked, and just blindly put in the version that they tested with as the requirement. Lazy, but who's going to complain (other than us)? Anyway, thanks for the tip on a SSUAO extension for Chrome. I've been wanting one, but the user agent extensions I've seen recommended here haven't been site-specific.
  24. Mathwiz
    Yes, previous calendar month. I suppose what I really meant was, "within the past 30 days or so...." Rats. 2.16 legacy didn't work on Serpent 52 either. Web console says something about "ctx.GetTransform is not a function." 'Twas worth a try, though....
  25. Mathwiz
    Standard version of 2.14 works; legacy version of 2.15 works; neither version of 2.16 works. I actually haven't tried the standard version of 2.15 yet, so it's possible that it will work too - but as long as the legacy version works, I'm happy. These experiments were actually with the Serpent 55 build from Feb. 8, 2024 (i.e., earlier this month); I haven't tried them with UXP (Serpent 52) but I expect that, if it works with 55, it works with 52 as well. Of course I'll confirm that before I publish anything.
×
×
  • Create New...