“Our results reveal that 16 (including Adobe Acrobat and
Foxit Reader) of the 29 PDF viewers tested were vulnerable
to shadow attacks. We introduce our tool PDF-Attacker which
can automatically generate shadow attacks. In addition, we
implemented PDF-Detector to prevent shadow documents from
being signed or forensically detect exploits after being applied to
signed PDFs.”
OK, I’ll do that. Also, I’ve noticed a couple of my banks are reporting that the firefox version in 15.2 is no longer “supported.” (Latest Brave works OK. Didn’t try Chromium.) Do you think that might be a bug report to the overall Suse builders - that is, to move to a much more recent ff version?
I usually ignore that. There are two firefox versions – the standard version and the “esr” (extended support release) version. Many site look only for the standard firefox version and complain even when you have the latest esr version.
Not only banks, also the registration for THE virus vaccination – I ignored it …
Sadly, my banks are also quite suspicious about Linux and, open source HBCI banking applications – they seem to be very pro-Redmond and pro-Alphabet (Google – Android) – their support for Apple also seems to be fairly minimal …
The good news is, that Free Software Foundation Europe – FSFE – seems to be making progress with changing views in the European Parliament. And, some of the German government’s applications, such as THE Virus tracking App, are open source …
And in case you absolutely want the latest Firefox version you can add the Mozilla repository:
kasi@pluto:~> zypper lr -u Mozilla
Alias : openSUSE_Leap_15.2_2
Name : Mozilla
URI : http://download.opensuse.org/repositories/mozilla/openSUSE_Leap_15.2/
**pluto:~ #** zypper se -s mozilla
Loading repository data...
Reading installed packages...
S | Name | Type | Version | Arch | Repository
---+----------------------------------------+------------+----------------------+--------+--------------------------------
i+ | MozillaFirefox | package | 86.0-lp152.2.1 | x86_64 | (System Packages)
v | MozillaFirefox | package | 86.0.1-lp152.1.1 | x86_64 | Mozilla
This confuses me a little. When wanting to install the esr version, how can one tell it is it by the packages? Apparently your version shows the “esr” but I can’t find any hint in the package list. In the Mozilla repo the package seems to be:
| firefox-esr | package | 78.8.0-lp152.1.2 | x86_64 | Mozilla
This is great info! Thank you - I saw ESR in the repos. I had stopped updating to the “latest version” of ff b/c of the versioning issue which originally spawned this thread.
I’m becoming a tad worried about remaining committed to ff/tb. Although thunderbird seems very stable; ff doesn’t. In addition to the versioning problem(s), he behavior of ff on many websites has changed. Basically it’s very slow to connect to many sites (I don’t know if this is related to the way ff accesses the internet, ff-code security, cloudflare, or …?). When I use brave, there are no such slowdowns. I suppose it could be ABP/Ghostry/noscript/httpsE/etc., but I believe similar codes are installed default on Brave - it certainly seems so - I never see ads, for instance. (I am not sure about chrome/chromium.)