Jump to content
Strawberry Orange Banana Lime Leaf Slate Sky Blueberry Grape Watermelon Chocolate Marble
Strawberry Orange Banana Lime Leaf Slate Sky Blueberry Grape Watermelon Chocolate Marble

MSFN is made available via donations, subscriptions and advertising revenue. The use of ad-blocking software hurts the site. Please disable ad-blocking software or set an exception for MSFN. Alternatively, register and become a site sponsor/subscriber and ads will be disabled automatically. 

Mathwiz

Member
  • Content Count

    1,142
  • Donations

    $0.00 
  • Joined

  • Last visited

  • Days Won

    34

Everything posted by Mathwiz

  1. I must be missing something. Wouldn't you expect an error if you try to log into a banking site with bogus credentials? Huh? What's not true? I'm not missing anything? You wouldn't expect an error if you try to log into a banking site with bogus credentials? Are we even speaking the same language here? You can do that if you wish, but to me, testing someone's browser issues by trying to log into a banking site with bogus credentials, probably repeatedly in order to test various possible workarounds, sounds like a pretty terrible idea. Most of us aren't particularly interested in prompting an uncomfortable visit from the authorities, so asking for more information and letting the OP test possible workarounds with their real Citi.com account seemed to be the more prudent approach. I'm sorry my caution seems to have offended you, but the OP has let me know they're content to let the issue drop, so I won't pursue it any further.
  2. I must be missing something. Wouldn't you expect an error if you try to log into a banking site with bogus credentials? Or are you saying the error appears whether the credentials are valid or not? If so, try this site: https://www.whatismybrowser.com/detect/what-is-my-user-agent. Try it with both the browser that works and the browser that doesn't, and post the results here. If the results are different, try a site-specific user-agent override; in the browser that doesn't work, set general.useragent.override.citi.com to the value returned by the browser that works. Then try logging on to citi.com and see if that fixes it.
  3. In Firefox, site-specific user agents don't work (well, they can be made to work with some JavaScript sleight-of-hand, but it's complicated.) So you need an add-on in order to feed Slack, YouTube, etc. their own separate user agents. But the default UA for FF 52.9 should work with YouTube without giving you the browser warning Your problem really sounds like a memory leak somewhere. Try it in "safe mode" to eliminate add-ons as a possible source of the problem. If the scrolling slowdowns and full-screen weirdness go away in safe mode, try turning off add-ons a block at a time to isolate the one causing the memory leak. (It's tedious, I know.) For multiprocess mode, try increasing dom.ipc.processCount to 2-4 instead of 1. That will let FF kill processes when you close tabs.
  4. This had all happened automagically so I hadn't even noticed, but I just checked about:addons and sure enough, uBO Updater is up to version 1.6.9 (presumably to handle the new repo) and uBO itself is up to 1.16.4.16 on my browser! I was noticing the referenced WaPo article worked fine on my system, but hadn't a clue why. (Not that I was wont to complain!) But anytime I install a new browser, whether FF, Chrome, or Edge, the first thing I do nowadays is install uBO on it, so this would explain it. (Internet advertising is so out of control nowadays that you just can't go without something to tame the chaos!) I've run into a couple of sites that require (or at least work better with) service workers, so I too have them enabled in about:config, even though the legacy uBO I use doesn't need them. But I restrict service workers to the sites that do need them with a line in My Filters in the uBO dashboard: *$csp=worker-src 'none',domain=~mediafire.com|~html5test.com There are probably a few other sites I should add to that line (mega.nz perhaps?) but I haven't gotten around to it yet. Ironic to say the least, given the article's content: "Don't use Kaspersky AV because the Russians will violate your privacy; let the WaPo do it instead!" I guess Jeff Bezos doesn't think he's rich enough yet; after all, he only has his own space program.... (FWIW, Elon Musk's space program is better though ) The current legacy version is newer, but it's numbered 1.16.4.16, so AMO thinks 1.17.4 is newer and "updates" it accordingly. Perhaps now that it's separate, JustOff should consider bumping the version number to avoid this issue. Meanwhile, you can turn off automatic updates for uBO, or you can install the "uBlock Origin Updater" add-on, which will force the browser to update uBO from the legacy repo instead.
  5. Don't believe everything you read. Almost all Internet logins today are TLS-encrypted and all TLS sessions are end-to-end encrypted; no one in between has unencrypted access to the contents, unless they've managed to compromise the servers and steal their private keys. (And even that only works until the certificate is renewed in a year or two.) You can do man-in-the-middle attacks, but unless the client software doesn't properly verify the server's certificate, the user will just get an error message. They may be able to bypass, but security experts and paranoid types are gonna squeal. Some of the Goog's Android software doesn't do that verification (hence the ability to spy on your phone while it spies on you) but pretty much every Web browser does. Corporations who censor their employees' Internet access (as most do) have to install special trusted certificates on all their PCs to get around this. It's good to be a bit paranoid in our modern world, but don't let your paranoia override your common sense. Almost privacy leaks today come from spyware, especially on smart phones, but also PC software, including - unfortunately - Avast. (Despite Avast's efforts to anonymize the data they sell, they probably have underestimated the Goog's ability to match a user's "fingerprint" to the copious databases collected by Android smart phones.)
  6. The thing is, @roytam1 didn't write and doesn't maintain the installer; @i430VX does! It probably wouldn't be hard for his installer to ask if you wanted a portable install, and add the necessary options to the shortcuts it creates. But @i430VX is the one to ask.
  7. Yes it does. Personally, I think if the broadcasters mandate DRM (as appears likely at this point) it will merely ensure the new standard never becomes the dominant one. DRM would require anyone selling a 3.0 tuner to figuratively sign their business's life away to get a key. Only the biggest TV manufacturers (Samsung, LG, etc.) will be able to afford to do so. TiVo will be the only DVR maker that can do so. SiliconDust, maybe (they managed it for CableCard access), but you can forget about any $40 3.0 tuners, as the 1.0 world now enjoys. And of course the tuners would have to use HDCP, so say goodbye to component video; and the TiVo recordings would be encrypted, as they are for (some) cable recordings now (depending on what channels your cable provider flags with DRM). So we'd be paying more for equipment that does less. And for what? Higher resolutions than most folks can even see? "Interactivity" (which failed with ATSC 2.0)? At best, it sounds like ATSC 3.0 might become a niche market for videophiles, like HD Radio became for audiophiles. OTOH, maybe the broadcasters will force the issue, by (say) lowering ATSC 1.0 picture quality back down to SD and/or dropping some of the subchannels you've come to enjoy. You want to keep what you have now? Then you must "upgrade" (and put up with all the DRM restrictions).
  8. The legal way to get the POSReady '09 updates also required payment (for POSReady '09). I suppose a distinction could still be made: if the POSReady '09 XP hack wasn't published until after POSReady '09 was no longer available for sale, then the hack could be considered not stealing since you couldn't buy it from M$ anyway. But it does seem like a rather fine line we're not crossing. At any rate, perhaps a more acceptable route would be to do what POSReady '09 did: spoof a different Win 7 version, perhaps Server 2008 R2. It would be more challenging than the XP registry hack - I think you'd need to hook GetProductInfo, so it would require some programming - but sounds prima facie doable.
  9. You could also try petrus's suggestion: That idea should work with any FF-derived browser (NM, Serpent, Navigator, etc.)
  10. I haven't read the topic (registration required, and it's not a big enough deal to bother registering) so I'm just guessing that they're following Google's timeline for Chrome, rather than M$'s timeline for Win 7 itself: As to Win 8, it's interesting that it's newer than Win 7, but also hit EoS earlier (since everyone was "supposed" to upgrade to 8.1). So if/when they do stop supporting Win 7, they might just set the minimum required version to 8.1 and we'd all be out of luck. But it may also have to do with programming. Another guess of mine is, it's not really any harder to support Win 7/8 than it is to support 8.1. If so, MCP may not see much advantage in cutting off Win 7/8 support in terms of removing code from the product. The chance to remove code and make the browser package smaller seems to have been one of their motivations to drop XP support (less sure about Vista) back in the day. You were perfectly clear; that's why I said you probably wouldn't like my solution! FF 52 doesn't support SSUAOs (at least, not without considerable tweaking), so an extension like "Good Twitter" is needed to send Twitter a different UA (so their Web server will use the old interface). However, this also causes Twitter to send the audio that @roytam1's built-in support wouldn't have handled correctly, but since you're (of necessity) using Primetime with FF 52, it plays fine anyway. As for getting it to work in NM, his built-in support is probably getting the sampling rate wrong somehow. Unfortunately I don't think anyone yet knows quite how to fix it.
  11. OK, so it appears that, to avoid distorted audio, you have to include Gecko and/or Firefox in the UA - but then, you either get the new Twitter interface or the mobile version of Twitter (depending on the spoofed FF version), neither of which you want. (Side rant: I wish Twitter and other Web sites would quit doing this! Just because your company's marketing geniuses think everyone will love whatever new UI you've cooked up doesn't mean it's true! And obviously you still support the old interface - so is it that hard to give folks a "new/classic" interface checkbox in your user preferences screen, instead of making them fool around with user agent strings?) I think I have a solution, but I'm not sure either of you will like it. This solution requires FF 45 or Serpent. Use the Pale Moon or IE user agent to get the old interface (and distorted audio) To fix the audio, turn off the internal A/V support (in about:config, set media.ffvpx.enabled to false); instead, install the Adobe Primetime CDM. That should play the audio without distortion. (Installation instructions are a few threads below this one.) In Vista and above, you could use the WMF support built into Windows instead, but IIRC, WMF in Vista has bugs of its own with Twitter, so on Vista you may want to use Primetime anyway.
  12. Looks like Cloudflare updated their TLS security. Old versions of wget no longer work (even with up-to-date OpenSSL). New wget versions work fine. Same is probably true of browsers. Which browser is having the problem and what message is it giving you?
  13. That's true. Most folks under 30 probably only watch traditional TV for sports, or maybe because the business they're patronizing has a TV on. Most of them stream pretty much everything else. WMC and similar software is just for old-timers like me who refuse to let go of our dinosaur viewing habits. It's ironic, therefore, that the two biggest features Micro$oft removed from WMC over its lifetime were the sports line and Netflix.
  14. Try this SSUAO: general.useragent.override.twitter.com = Mozilla/5.0 (Windows NT 6.1; WOW64; rv:52.9) Gecko/20100101 Firefox/52.9 "FF compatibility" spoofs FF 68.9 ESR. The one @roytam1 gave you spoofs IE 11. The one above spoofs FF 52.9 ESR.
  15. ATSC 3.0 doesn't have a hard cut-over date like the transition from analog to digital did. And for the next few years, stations have to continue broadcasting at least their primary channel in ATSC 1.0 if they decide to broadcast in ATSC 3.0. And the FCC doesn't even plan to ever mandate ATSC 3.0 tuners in new TVs! So I don't think we'll see an end to ATSC 1.0 broadcasts anytime soon. At any rate, though, that's a tuner issue. Presumably, once ATSC 3.0 tuners hit the market, SiliconDust will make an HDHR with them, and you can just put one on your network. There's a question of whether it'll be compatible with current models, and if not, whether drivers will be available for a product as old as WMC, but I'll cross that bridge when I come to it. That's correct. Unless you're using cable TV with a CableCard tuner, you don't need WMC. Any other PVR freeware would do. (Is MediaPortal still maintained? That one looked like the best alternative a few years back when I was considering my options.) But as always, it's a hassle to switch; so as long as WMC is working for me, I'll stick with it. Kind of like Windows XP, Vista, 7.... PSIP guide length varies greatly from station to station and from market to market. In my market (D/FW) most stations broadcast 2 days of guide data. PBS leads the pack with 3 days! A few only give 12 or 24 hours, though. At one time, I looked for programming that would convert PSIP guide data to WMC's peculiar format, just in case it ever came to that point. I found something that I thought would work, but since Microsoft's guide was working, I never tried it ... if SD ever goes away, I don't know if I could find it again.... but my standalone DVR will use PSIP data if/when its Internet guide goes away, so I can fall back on that while I consider my PC options. Again, I'll cross that bridge when I come to it.
  16. Actually I'm OTA I think I saw that once, but not since I switched. It's possible the nag comes from one of two .dll's I've long reverted: markup.dll and StartResources.dll. The M$ guide update process regularly replaces these .dll's, so if you have the latest/not-so-great versions from M$ on your system, you may get the nag. Usually I'd notice those .dll's had been updated because the old, defunct "Sports" line and/or the Netflix app would disappear, so I'd shut WMC down and revert them from backups. It's possible I saw the nag during a time when the updated .dll's had been installed. Switching guide providers seems to have stopped the periodic update of those .dll's (another reason I don't want to switch back), but if you don't have older versions to revert to, you may be stuck with the nag.
  17. Well, I already paid six bucks to Schedules Direct to get me through March. Now that I've made the switch, I don't think I want to go back. Still, it's good that M$ has backed off its plans to EoL their free guide for now. I set EPG123 to retrieve up to 21 days. I've never gotten that much, but it's consistently given me about 16 days, give or take a day - more than I get on my DVR+. Also the images for the shows are finally correct (I kept getting wrong ones with Rovi).
  18. That seems suspicious to me. Why do we need a servicing stack update at end of service? The vagueness of that description doesn't exactly quell my paranoia. For now, I think I'll pass.
  19. GitHub relies way too much on the UA, and none of our browsers provides GitHub with a suitable UA out of the box (or .7z). Well, Serpent 52 does, but only in "native" move (not in FF-compatible mode). So Iset an SSUAO with Serpent 52's native UA string, Mozilla/5.0 (Windows NT 6.1; rv:52.0) Goanna/4.4 Basilisk/52.9.0, for github.com (to be consistent and safe, I also set the same SSUAO for githubassets.com and githubusercontent.com, although I don't think those are strictly necessary). Note that FF 60.9 also works, but the MCP's latest browsers now default to FF 68.9, which doesn't work (unless you're running a Quantum browser). It's nonsense like this that makes me somewhat sympathetic to what Google is proposing to do with user agents. Web sites should base their functionality on the capabilities of the browser, not its version or what OS it's running on. I've been wondering the same thing. My first thought was that the vulnerability probably affects versions based on FF 49, when the JS engine was rewritten, or later; if so, then FF 45, NM 27, ArcticFox, etc. wouldn't be vulnerable. But as you say, the javascript.options.ion pref does exist in those older browser versions, so I'm not all that confident about that assessment.
  20. @Destro and @TechnoRelic - I like both of your suggestions. (But don't forget we need a name for MailNews too, even though it isn't a browser.) But Moonchild might think of "Wolf Moon" the same way @roytam1 thought of "Royfox;" it would be best if he's OK with whatever names we choose. I can't see Moonchild or @Matt A. Tobin having objections to "celestial" names in general; after all, the latter suggested Neptune as a name. And I think it's OK to acknowledge the Pale Moon heritage of whatever we end up calling New Moon, as long as it's not so similar that folks might think MCP created these. @TechnoRelic's names seem to me to be in the "sweet spot" where the names are different enough (especially with the RFox prefix) to avoid confusion but still subtly give credit to the original works.
  21. Glad you hear you got it working again. It was a rough few weeks, I'm sure - and right around the holidays too.
  22. The latter pref is the one you need for general browsing, and it is supported in current browser versions. (AIUI the "chrome" pref is for the JS in add-ons and such.) Sadly, setting this false results in a significantly slower browsing experience here at MSFN. Even this results in a painful performance penalty on my home PC (not the best, but it is a 64-bit dual-core AMD, so it shouldn't be that horrible). So I think using @roytam1's latest versions (if you can use them), and leaving these prefs at their default, is the best choice.
  23. So, taking off those "deny" permissions fixed it. I guess from now until Office 2010 EoS, I'll need to delete the Excel.Sheet.12\shell key and re-import my custom changes after each month's updates. The only thing I can't figure is why a "security update" even bothers resetting those registry entries. Maybe it just runs "Repair Office Installation" under the covers after it replaces the files included in the update.
  24. Found it! I actually have two Excel versions on my VM: Excel 2000 and Excel 2010. Because I want .xls files to open in 2000 and .xlsx files to open in 2010, I altered the shell registry entries for both. Otherwise double-clicking a spreadsheet file tries to use DDE, which tries to open the sheet in whichever version is open. Obviously, if 2000 is open and I double-click an .xlsx file, that fails miserably. But I've been having a problem: something keeps going in and resetting all my shell registry entries, forcing me to fix them over and over. So I went into regedit and revoked permission to change these entries. And guess what? It's these monthly "security" updates that have been resetting my shell registry entries! And now that it's not allowed to do that any more, the update fails to install.
  25. Presumably not, but I do have Excel 2010 installed I'll try downloading it and installing it manually, I guess
×
×
  • Create New...