Firefox's Parenting Technique



  • Encountered while toying with the console in the "0>=null" thread.

    Giving a warning the first time you hit paste and then ceasing to nag would make sense. Making me have to type "allow pasting" is ridiculous. Why not have me type, "Please, mum?" instead? Chrome doesn't even have cut/copy/paste in its context menu unless you select something, and then you only get copy. You have to use the top menu (Edit->Paste). However, the Chrome devs seem to have resisted the urge to nanny.


  • Discourse touched me in a no-no place



  • @FrostCat said:

    This seems familiar.

    I swear, I'm going to fork Firefox just to add this whenever you try to paste.



  • Didn't we use to have a similar threads toaster?


  • area_deu

    WORKAROUND:
    Use Firebug.


  • area_deu

    WORKAROUND 2:


  • area_deu

    NOTE:
    I do not endorse Mozilla's level of idiocity.



  • Introducing the only browser made for developers like you.

    Features: pasting code.

    Actually, the notion of a "developer" FF version is really fucking scary. Next time they're gonna remove "View source" from the base. And the dev console altogether. And then it's gonna turn out that the versions are incompatible between each other, so you now need to account for base FF with no possibility to debug.

    Maybe I'm getting a little carried away; but then again, it is Mozilla we're talking about.


  • sockdevs

    I like how people are getting so worked up about a feature designed to protect the 99.999% of users who aren't developers :laughing:


  • Discourse touched me in a no-no place

    @RaceProUK said:

    I like how people are getting so worked up about a feature designed to protect the 99.999% of users who aren't developers

    .. and who will never see that interface...


  • sockdevs

    @PJH said:

    .. and who will never see that interface...

    ... until they hit the wrong button, see a strange new window, and start fiddling :stuck_out_tongue:


  • area_deu

    Imagine cmd.exe or bash having such a "feature" ...
    *shudders*


  • sockdevs

    @aliceif said:

    Imagine cmd.exe or bash having such a "feature" ...
    *shudders*

    How many bash scripts or BAT files could steal your bank login details? :stuck_out_tongue:


  • Discourse touched me in a no-no place

    @aliceif said:

    WORKAROUND:Use Firebug.

    Workaround: Stay away from Firefox.


  • Discourse touched me in a no-no place

    @PJH said:

    .. and who will never see that interface...

    I know this was mentioned on another thread, but if you open the console while on facebook, you get a big warning, including with large red text, warning you not to paste stuff because it's people trying to hijack your account.

    Obviously this is an attempt to protect them, not devs.


  • area_deu

    @RaceProUK said:

    How many bash scripts or BAT files could steal your bank login details?

    Every single one that can access one's passwords.txt?


  • sockdevs

    @aliceif said:

    Every single one that can access one's passwords.txt?

    You store your bank login details in passwords.txt?


  • area_deu

    People who aren't developers probably do!



  • @RaceProUK said:

    I like how people are getting so worked up about a feature designed to protect the 99.999% of users who aren't developers :laughing:

    The users that it's designed to protect will just say "Nuts to that, I want the Facebook private photo viewer. allow pasting"


  • sockdevs

    @hungrier said:

    The users that it's designed to protect will just say "Nuts to that, I want the Facebook private photo viewer. allow pasting"

    Never said it was foolproof :stuck_out_tongue:



  • @RaceProUK said:

    How many bash scripts or BAT files could steal your bank login details?

    Is that a challenge?


  • sockdevs

    @PleegWat said:

    Is that a challenge?

    Are you willing to accept?



  • @RaceProUK said:

    Are you willing to accept?

    I am not sure my bash-fu is strong enough. I was thinking of making a coder challenge topic, but it's a tad on the evil side...



  • @FrostCat said:

    I know this was mentioned on another thread, but if you open the console while on facebook, you get a big warning, including with large red text, warning you not to paste stuff because it's people trying to hijack your account.

    Obviously this is an attempt to protect them, not devs.

    The warning comes from Facebook, I think. And I'm perfectly okay with it.

    I'd be perfectly okay with Firefox displaying a big giant red warning every time I open the console too. Just don't get in my way.


  • Discourse touched me in a no-no place

    @RaceProUK said:

    You store your bank login details in passwords.txt?

    Is that better or worse than using a post-it on the underside of the keyboard?


  • sockdevs

    @dkf said:

    Is that better or worse than using a post-it on the underside of the keyboard?

    Worse actually; a post-it note is only weak to physical access.


  • Discourse touched me in a no-no place

    But a passwords.txt (provided the system uses an encrypted filesystem and requires a password to unlock) is extremely strong against physical access.

    Pick which threat model you're going to address. ;-)


  • BINNED

    passwords.txt contains a map to the location of your post-it note. Impenetrable!


  • sockdevs

    @dkf said:

    provided the system uses an encrypted filesystem and requires a password to unlock

    And mow many users that store all their sensitive passwords in a passwords.txt will also password-protect and encrypt the filesystem? Not many, I'd wager.

    I give you a cocaine-fuelled Zippy :stuck_out_tongue:



  • BUT WHERE IS GRUMPY CAT!?


    Filed under: [fuck you discourse is the body valid now?] (#)



  • @mikeTheLiar said:

    GRUMPY CAT


  • Discourse touched me in a no-no place

    @RaceProUK said:

    And mow many users that store all their sensitive passwords in a passwords.txt will also password-protect and encrypt the filesystem? Not many, I'd wager.

    That sort of thing is trivial to set up, especially as it can be done by the admin before letting the user on the machine in the first place. All it takes is a competent admin and a not-very-competent user. Now, is that a combination we've heard of before, ever?



  • @aliceif said:

    WORKAROUND:Use Firebug.

    Actually, I do use Firebug; it's probably how I managed to avoid seeing this message for so long. It's also why I don't care much for Chrome. Maybe I'm just used to it, but Firebug is more comfortable of a tool than Chrome's built-ins (or Firefox's, for that matter).

    @RaceProUK said:

    I like how people are getting so worked up about a feature designed to protect the 99.999% of users who aren't developers

    I think "worked up" may be an exaggeration. "Glumly ticked" would be closer to my reaction.

    @RaceProUK said:

    How many bash scripts or BAT files could steal your bank login details?

    This... is a dangerous question. I think the answers in the positive here actually far outnumber the examples of Javascript that would work.

    @FrostCat said:

    I know this was mentioned on another thread, but if you open the console while on facebook, you get a big warning, including with large red text, warning you not to paste stuff because it's people trying to hijack your account.

    I am going to have to try this sometime...

    @Zecc said:

    Just don't get in my way.

    This was my only real issue with it... well, other than it's condescending tone.

    @RaceProUK said:

    And mow many users that store all their sensitive passwords in a passwords.txt will also password-protect and encrypt the filesystem? Not many, I'd wager.

    This is still not very secure since the pasted script running as that user presumably has transparent access to those files just like the user does. A password manager that keeps an encrypted store is a better choice here, though if we're pasting code into the command line blatently it shouldn't be too hard to get a keylogger and all sorts of malware in to breach the whole system.



  • @VaelynPhi said:

    Maybe I'm just used to it, but Firebug is more comfortable of a tool than Chrome's built-ins

    How's that? They're almost identical.


  • I survived the hour long Uno hand

    @hungrier said:

    They're almost identical.

    They do all the same things, but they call them by different names and put them in different places. So whichever you learn on feels "comfortable" and whichever you didn't learn on is "strange"



  • /ba(t|sh)/ files and javascript? I can steal your bank account details with a wrench held dangerously close to your face.



  • @ben_lubar said:

    /ba(t|sh)/ files and javascript? I can steal your bank account details with a wrench held dangerously close to your face.

    @algorythmics prefers to steal bank account details with jumper cable clamps to the nipples



  • @chubertdev said:

    @algorythmics prefers to steal back account details with jumper cable clamps to the nipples

    ... or some body part held dangerously close to your face.



  • Wasn't that the Bastard? Sure sounds like the Bastard.



  • @hungrier said:

    How's that? They're almost identical.

    Almost, but there are many small differences that do add up. The defaults (Chrome displays filenames with icons in the network section of its debugger) also influence this. I looked at them for a bit just now and I did notice one thing about Chrome's that I prefer: network requests are presented as a file list | information pane, where Firebug presents them as a list with the request information as an expandable subsection to the file. Firefox's own debugger presents it more like Chrome, funny enough.

    @ben_lubar said:

    /ba(t|sh)/ files and javascript? I can steal your bank account details with a wrench held dangerously close to your face.

    As long as it's not a hamburger icon. At least the wrench gives me some idea what I'm looking at.

    @chubertdev said:

    @algorythmics prefers to steal bank account details with jumper cable clamps to the nipples

    This is usually less theft and more a particular financial arrangement that may also include a discretion clause excluding one's spouse from knowledge of these activities...


  • area_deu

    @VaelynPhi said:

    As long as it's not a hamburger icon. At least the wrench gives me some idea what I'm looking at.

    Have a + :hamburger: (and a like!) for that!



  • @ben_lubar said:

    I can steal your bank account details with a wrench held dangerously close to your face.

    Nah, my wife would be like, "Go ahead, maybe he'll start remembering to put his socks in the hamper now."



  • @Maciejasjmj said:

    And then it's gonna turn out that the versions are incompatible between each other

    They already are, from what I could tell, in terms of extension support. And I consider Firefox without Tab Utilities almost as intolerable as Chrome.


Log in to reply
 

Looks like your connection to What the Daily WTF? was lost, please wait while we try to reconnect.