Damn Small Linux (DSL) Forums
Welcome, Guest. Please login or register.
Did you miss your activation email?
December 18, 2014, 05:29:32 PM

Login with username, password and session length
News
The new DSL forums are now open.
Stats
297849 Posts in 294161 Topics by 222 Members
Latest Member: garith89
Search:     Advanced search
* Home Help Search Login Register
Get The Official Damn Small Linux Book. Great VPS hosting provided by Tektonic

+  Damn Small Linux (DSL) Forums
|-+  Recent Posts
Pages: 1 2 [3] 4 5 ... 10
 21 
 on: October 31, 2014, 12:16:53 PM 
Started by og1958 - Last post by fatmac
Check that you have a good download. Burn the .iso file to CD as an 'image' file.
Most distros theses days are 'hybrid', which means they can be used to create CD's or USB/Pendrive systems.

 22 
 on: October 31, 2014, 12:09:29 PM 
Started by cosmicpoop - Last post by fatmac
Check the BIOS for 'legacy usb' support, (might be the problem).

 23 
 on: October 31, 2014, 11:36:23 AM 
Started by cosmicpoop - Last post by artmantic


A lot of useful information here. Read Long that can be applied to everyday life, really.

 24 
 on: October 31, 2014, 11:36:11 AM 
Started by og1958 - Last post by artmantic

A useful data were very popular but many shabby lot. I was able to read the works.

 25 
 on: October 31, 2014, 11:02:37 AM 
Started by synergist - Last post by PadPukNumMunHoy

This web site is really quality post. Can make lots of people who do not know each other. Have met and known to be a shared experience acquired across

 26 
 on: October 31, 2014, 11:02:19 AM 
Started by thyrsus - Last post by PadPukNumMunHoy
I believe that there will be a website that tells the details of this
That have come into this story, it made me so impressed with the experience gained from many people that I do not recognize.

 27 
 on: October 27, 2014, 03:19:36 PM 
Started by Veeshush - Last post by Veeshush
Edit > Preferences > Advanced > Encryption > and deselect "Use SSL 3.0" in the protocols area. I'm not too concerned about this sort of thing (if I was, I probably wouldn't be using Firefox 2 anyway), though I have just disabled SSL 3.0 because it looks like nothing uses it nowadays anyway.

Sure enough, that test website now says my browser isn't vulnerable to any stray POODLEs lurking in the interwebs (though I think the work involved in that attack would be far less than worthwhile for anyone looking at my internet data.

More so than that too, most web servers will hopefully disable SSL3 on their end. But also obviously as you mention,

Quote
Finally, that first web page you linked to doesn't work in Forefox 2 (it uses a later encryption method (probably TLS 1.2 or 1.1) that Firefox 2 doesn't support and for sume silly reason they haven't enabled TLS 1.0 as a fallback)

So if there's not a way to enable 1.1 or 1.2 then most sites are going to end up not working anyway. This is more an issue after the Snowden leaks because now more than ever are sites using HTTPS where as 3 year ago they wouldn't had unless they were a shopping/banking site. https://www.eff.org/https-everywhere/deploying-https (To be fair also, this is somewhat an issue with Dillo until it gets better HTTPS support http://www.dillo.org/FAQ.html#q12 )

Quote
As for those plugins. I'm not going to go through that web page, but the NoScript Download Page (https://noscript.net/getit) says under "Direct Download":

"Users of Firefox 2.0 and below are urged to upgrade their very unsafe browser. For those few who can't, latest legacy-compatible NoScript version is 1.10."

With a link to V. 1.10. So that's easy.

Yeah, at the very least having some version of Noscript would be a ton better than nothing. (thanks for that btw, I'll give it a try later)

Quote
AdBlock Edge is too new for Firefox 2.0 support, but AdBlock Plus which it's based on will work if you use the old V. 1.0.2 (https://addons.mozilla.org/en-US/firefox/addon/adblock-plus/versions/?page=2#version-1.0.2). Though funnilly enough, the Firefox website is now so broken with Firefox 2.0 that the download link doesn't seem to work.

Actually, the more I got thinking about it the more I'd try to avoid any version of Adblock for DSL. Adblock can be pretty cpu/ram heavy on modern machines at times. I think just Noscript would be the way to go.


All in all, there's probably also a ton of unpatched browser exploits that Bon Echo is vulnerable to as well. That, along with it being pretty draining on older system with little ram compared to Dillo. Like, I can easily run the latest Firefox on another system I have, and it's just a 500mhz AMD K6 III rig with 512mb ram- yet if you have a 83mhz Pentium (which is my DSL rig) then Bon Echo chugs until you close it. I mean, I get Bon Echo was never meant to be more than what it is, but I'm just wondering if it's worth the hassle these days. (but don't confuse me in saying it should be straight out scrapped altogether, I'm just thinking outloud of all the difficulties).

 28 
 on: October 27, 2014, 02:26:33 AM 
Started by Veeshush - Last post by AE7XQ
I bought the book. It was a great investment. I am going to get into shell scripting soon so that I can write my own script for controlling the repeater. Yes, I have plans to put a video on youtube once the station is setup. I will post when the video is up, but that is still a couple of months down the road.

 29 
 on: October 26, 2014, 09:41:37 PM 
Started by Veeshush - Last post by CNK
Disabling it is easy:

Edit > Preferences > Advanced > Encryption > and deselect "Use SSL 3.0" in the protocols area. I'm not too concerned about this sort of thing (if I was, I probably wouldn't be using Firefox 2 anyway), though I have just disabled SSL 3.0 because it looks like nothing uses it nowadays anyway.

Sure enough, that test website now says my browser isn't vulnerable to any stray POODLEs lurking in the interwebs (though I think the work involved in that attack would be far less than worthwhile for anyone looking at my internet data.

Actually I would rather my Email was secure than my Web browsing, though my Slypheed logs don't make it clear what encryption method is used with my IMAP accounts. I might look into that some time, but I'm still not that fussed.


As for those plugins. I'm not going to go through that web page, but the NoScript Download Page (https://noscript.net/getit) says under "Direct Download":

"Users of Firefox 2.0 and below are urged to upgrade their very unsafe browser. For those few who can't, latest legacy-compatible NoScript version is 1.10."

With a link to V. 1.10. So that's easy.

AdBlock Edge is too new for Firefox 2.0 support, but AdBlock Plus which it's based on will work if you use the old V. 1.0.2 (https://addons.mozilla.org/en-US/firefox/addon/adblock-plus/versions/?page=2#version-1.0.2). Though funnilly enough, the Firefox website is now so broken with Firefox 2.0 that the download link doesn't seem to work.

After looking at the page's source code (one gets used to this technique after using Firefox 2 for a while these days), here's the download URL (https://addons.mozilla.org/firefox/downloads/file/51047/adblock_plus-1.0.2-fx+sm+tb.xpi).

Finally, that first web page you linked to doesn't work in Forefox 2 (it uses a later encryption method (probably TLS 1.2 or 1.1) that Firefox 2 doesn't support and for sume silly reason they haven't enabled TLS 1.0 as a fallback), so here's a link to the Google cache of the page (http://webcache.googleusercontent.com/search?hl=en-AU&q=cache:RmrAAP0cnwwJ:https://community.qualys.com/blogs/securitylabs/2014/10/15/ssl-3-is-dead-killed-by-the-poodle-attack%2Bhttps://community.qualys.com/blogs/securitylabs/2014/10/15/ssl-3-is-dead-killed-by-the-poodle-attack&gbv=2&&ct=clnk). Though of course that means revealing to Google that you are worried about angry POODLEs, and archive.org doesn't have it archived! Ahh!!! Oh, wait, there's a link to add it to the archive... The power of collective web users triumphs again! (https://web.archive.org/web/20141026212757/https://community.qualys.com/blogs/securitylabs/2014/10/15/ssl-3-is-dead-killed-by-the-poodle-attack)

 30 
 on: October 26, 2014, 10:11:16 AM 
Started by Veeshush - Last post by fatmac
Don't forget that you can make up for difficient ram by using a swap partition.Smiley

Pages: 1 2 [3] 4 5 ... 10
Powered by SMF 1.1.19 | SMF © 2013, Simple Machines
Mercury design by Bloc