Pale Moon has been updated to Version 27.7.0. This is a stability and bugfix release, as well as adding a number of new features to further improve web compatibility.
Release Notes (http://www.palemoon.org/releasenotes.shtml)
QuoteAdded "My home page" as an option for new tabs.
The lack of this option always bugged me. There was a hack to make it the home page but I always thought it was a strange and annoying omission.
I've always set start-up tabs via Tools > Preferences > General > Startup. Under "When Pale Moon starts:" I have selected "Show my Home Page". Under "Home Page" is the list of tabs to be opened when Pale Moon launches. Those links were set after I had the desired tabs open and selected "Use current".
I think you are talking about different things.
I think Digerati wanted home page as an option when he opened a new tab.
Under Tabs, When opening a new tab there were only 3 options: blank page, the PM start page and the Quickdial page.
If I understand there with now be a 4th option: My Home Page
I'm off to update so I will check this out.
Yeah, plodr is right. I have my home page set to www.bing.com (http://www.bing.com) (the plain one, not with all the feeds) and when I open a new tap, I like to see that. Until now under Preferences > When opening an new tab, show: "My home page" was not an option. It has been forever with IE.
Yup, I now see the 4th option. ;D
I usually select blank page so I never noticed the lack of being able to see the Home Page.
Got it! :)
I prefer a blank page also, particularly since I already have as one of the tabs opening at launch.
Pale Moon has been updated to Version 27.7.1. This is a small emergency update to Pale Moon 27.7.0 to address website breakages as a result of an incomplete addition of a new feature in JavaScript. This also addresses too thick tab borders in some situations on Windows.
Linux versions will follow shortly.
Release Notes (http://www.palemoon.org/releasenotes.shtml)
hmmm, I hope this fixes the problems I've been having with 3 of my email accounts. (Nothing major just a minor annoyance but it would be nice if this fixes it.)
I noticed the PM update over at Security Garden, and quickly chose to update ... merely out of habit.
When I restarted PM, I suddenly received a pop-up firewall alert and a warning stating that PM does not have a valid digital signature (see the attached image capture).
This has never happened before, and it's not a comfy feeling. Anything to be worried about? Comments appreciated.
The lack of a digital signature shouldn't be a problem, it's real if downloaded from a safe source, though there's an ongoing issue around finding a cost-effective, trusted supplier. It's all a bit above my head: https://forum.palemoon.org/viewtopic.php?f=1&t=17859
satrow, thanks very much! Quite a bit over my head also, yet the link you provided nailed it. Thanks again! Much appreciated.
Interesting to note...
in hindsight, during installation of PM 27.7.0, avast's "Web Reputation" module intercepted both Pale Moon's Helper, and (the new) Pale Moon itself... analyzing each for several seconds... until concluding it was safe to run them. Guess we now know why.
Worth a read:
https://www.howtogeek.com/239950/dont-use-your-antivirus-browser-extensions-they-can-actually-make-you-less-safe/
Thanks for the information/link.
In my case, I long-ago disabled... and eventually removed... avast's "Safe Price" add-on. I've also disabled avast's MitM "interception" of httpS traffic.
But I have retained use of avast's "security" add-on, and have not noted/had any issues with it.
As noted in my post, the "problem" with PaleMoon was with "file reputation"... any "new"/unfamiliar program is temporarily intercepted by avast, for cloud-analysis of its behavior, to make sure there's no malicious intent. I do believe there's an option among avast's numerous settings to disable file-rep analysis... but it's very rare that this feature "kicks-in"... and when it has, there's seems to be a reasonable justification why. So I will be keeping it enabled.
(Note: I did not have the file-rep interception with PM 27.7.1... perhaps because avast had "learned about" the changes in PM's signing by then.)
I've been having lots of little irritating problems with PM lately. :( Some web pages don't load properly (like my MVP profile page - PM will not let me log in - no problems with other browsers). Spell check sometimes is either very slow of simply does not detect clearly misspelled words unless I disable then re-enable spell checking again.
I have disabled Adblock Latitude, no luck. Purged all PM history and cookies with no luck. Ran Windows cleanup and CCleaner with no luck. I even totally uninstalled PM and reinstalled from scratch and the problems persist. :(
That's strange. Your MVP Profile (https://mvp.microsoft.com/en-us/PublicProfile/4000549?fullName=Bill%20%20Bright) loaded just fine here with PM. (Reminder: Update the entry for Sysnative to Forum Moderator. ;) )
@satrow - thanks for that link. I wonder, however, about Malwarebytes 3.x and its web protection feature? Should that then also be disabled going by the same logic?
@ Corrine - yeah, it loads fine for me too. But it shows I am not signed in. When I click to sign in, I get the following weird page. If I click Sign in again on that weird page, I go back to that same weird page. I have no problems at all with any other browser. I can sign in and stay signed in.
https://imgur.com/a/WQpfd (https://imgur.com/a/WQpfd)
Oh, and under recognitions on the left, it shows I am moderator for hardware. Thanks.
I don't have signing in issues. (except my main 3 email sites now no longer want to remember my password; since I have long complicated passwords, this is very annoying.) I have MBAM v 3 all protection on.
I don't use AdBlock Latitude. I use uBlockOrigin in Palemoon. It wasn't updating but someone wrote an addon that will allow it to update. Let me see if I can find that addon.
https://forum.palemoon.org/viewtopic.php?t=16543
I've had uBO installed for such a long time that I didn't need to do all the things mentioned in the 13 posts.
I just had to install this https://addons.palemoon.org/addon/ublock0-updater/
You can over-ride the change for the password change made for privacy in the Pale Moon update. Go to Tools >Preferences > Security tab. Check the box by "Automatically fill in log-in details".
I never have allowed my browsers to remember passwords. I feel it is not good "physical" security. It is kinda like leaving your keys in the door lock.
I thought about using uBlockOrigin when I uninstalled and reinstalled PM, but talked myself out of it after reading through this thread (https://forum.palemoon.org/viewtopic.php?t=12736).
QuoteI don't have signing in issues.
I forgot to say, that signing in issue seems to be only with that Microsoft site. I may see sites warn that I am using an outdated or unsupported browser, but I still get in with no problems.
So it seems to me it is something Microsoft is doing that affects Pale Moon, but no other browser. :-\
As to remembering passwords not being good "physical" security, yes, that would be a problem if someone who wasn't supposed to had physical access to the device. However, I really don't see the benefit of having the option to turn on/off the ability to automatically fill in log-in details unless it is for "over the shoulder" privacy. Otherwise, anyone with physical access to the device could easily change that setting to obtain the passwords. I have four unique/complex passwords for Sysnative -- logon, mod, admin and dev server. Sure I could write them down since there is no way I remember them or am likely to type them correctly because of the complexity but that would be the same as having them filled in by the browser if someone got access to where they were written.
I started using ABL but found that I preferred uBlockOrigin. I like the additional features available via the Dashboard. Unfortunately, it needs the uBlockOrigin Update extension which "provides updates for uBlock Origin directly from GitHub. It intercepts Add-ons Manager requests and returns the latest XUL (legacy) version compatible with Pale Moon or SeaMonkey, Thunderbird and Firefox." because it wasn't being updated on Pale Moon.
The fact that browsers can be "synchronized" across devices. leads me to believe that somewhere out in cyberspace there is a storage device containing my "memorized" passwords, just waiting for a hacker who's clever enough. There's also the less likely "stolen computer" problem.
I don't have a problem with forum passwords, (unless I'm a moderator, or an administrator), or social media, but the passwords to my bank, insurance carrier, and broker DO NOT get memorized.
I agree completely regarding passwords to bank, insurance, credit card, etc., Pete. I also don't synchronize passwords across devices. If need a password for another device, I look it up.
QuoteOtherwise, anyone with physical access to the device could easily change that setting to obtain the passwords.
No sure what you mean. They would only be stored if the option is enabled in the first place. Turning the option on would only save them from that point on so no one would be about to obtain passwords previous used.
It is not just about "over the shoulder" concerns - though that typically means they have to watch your fingers, not the screen since most screen passwords are hidden as ********. The problem I am concerned about is a thief breaking into the home as Pete just mentioned, and stealing the computer and then having access to the sites.
I have 100s of passwords. No way can I remember them all. So I use a password manager and only have to remember it's password. I use that to remember credit car PINs and other sensitive numbers too. I can create my own password or have the manager create super strong ones and then cut and paste them in. That is what I do for many sites. My manager, Splash ID has a smart phone companion program that can be synced up too - but I don't use on my phone. When I used to carry a Palm PDA, I synced it to that, but that was via USB cable, not over the air so I was not worried about anyone hacking or intercepting it.
QuoteThe fact that browsers can be "synchronized" across devices. leads me to believe that somewhere out in cyberspace there is a storage device containing my "memorized" passwords.
Good point. That data should be encrypted - just common sense - but then I sure would have thought it common sense the data at Equifax would have been encrypted too. >:(
QuoteCheck the box by "Automatically fill in log-in details".
Thank-you, thank-you, thank-you!
This was driving me crazy because gmail and yahoo weren't working and I could not figure out why.
I don't synchronize any of our computers, my tablets nor my phone.
There is only 1 computer that I want things filled in: my desktop computer. This is only for forums and email. I never save info on shopping sites, paypal nor bank sites. I also don't put passwords on PostIt notes and attach to the monitor!!!
I also save nothing and have to login and fill in items if I grab my laptop, a tablet or my phone.
Here's the reason for the change in "autofill" by Pale Moon: You Should Turn Off Autofill in Your Password Manager (https://www.howtogeek.com/338209/you-should-turn-off-autofill-in-your-password-manager/)
Nice find, Corrine. So clearly, it is not just about "physical" security. I am glad I never let my browsers save my passwords. And my password manager does not integrate with my browsers either. :)