Firefox's Parenting Technique
-
Encountered while toying with the console in the "0>=null" thread.
Giving a warning the first time you hit paste and then ceasing to nag would make sense. Making me have to type "allow pasting" is ridiculous. Why not have me type, "Please, mum?" instead? Chrome doesn't even have cut/copy/paste in its context menu unless you select something, and then you only get copy. You have to use the top menu (Edit->Paste). However, the Chrome devs seem to have resisted the urge to nanny.
-
This seems familiar.
-
This seems familiar.
http://stream1.gifsoup.com/view6/2662404/you-didnt-say-the-magic-word-o.gif
I swear, I'm going to fork Firefox just to add this whenever you try to paste.
-
Didn't we use to have a similar threads toaster?
-
WORKAROUND:
Use Firebug.
-
WORKAROUND 2:
-
NOTE:
I do not endorse Mozilla's level of idiocity.
-
Introducing the only browser made for developers like you.
Features: pasting code.
Actually, the notion of a "developer" FF version is really fucking scary. Next time they're gonna remove "View source" from the base. And the dev console altogether. And then it's gonna turn out that the versions are incompatible between each other, so you now need to account for base FF with no possibility to debug.
Maybe I'm getting a little carried away; but then again, it is Mozilla we're talking about.
-
I like how people are getting so worked up about a feature designed to protect the 99.999% of users who aren't developers
-
I like how people are getting so worked up about a feature designed to protect the 99.999% of users who aren't developers
.. and who will never see that interface...
-
.. and who will never see that interface...
... until they hit the wrong button, see a strange new window, and start fiddling
-
Imagine cmd.exe or bash having such a "feature" ...
*shudders*
-
Imagine cmd.exe or bash having such a "feature" ...
*shudders*
How many bash scripts or BAT files could steal your bank login details?
-
-
.. and who will never see that interface...
I know this was mentioned on another thread, but if you open the console while on facebook, you get a big warning, including with large red text, warning you not to paste stuff because it's people trying to hijack your account.
Obviously this is an attempt to protect them, not devs.
-
How many bash scripts or BAT files could steal your bank login details?
Every single one that can access one's
passwords.txt
?
-
Every single one that can access one's
passwords.txt
?
You store your bank login details inpasswords.txt
?
-
People who aren't developers probably do!
-
I like how people are getting so worked up about a feature designed to protect the 99.999% of users who aren't developers
The users that it's designed to protect will just say "Nuts to that, I want the Facebook private photo viewer. allow pasting"
-
The users that it's designed to protect will just say "Nuts to that, I want the Facebook private photo viewer. allow pasting"
Never said it was foolproof
-
How many bash scripts or BAT files could steal your bank login details?
Is that a challenge?
-
-
Are you willing to accept?
I am not sure my bash-fu is strong enough. I was thinking of making a coder challenge topic, but it's a tad on the evil side...
-
I know this was mentioned on another thread, but if you open the console while on facebook, you get a big warning, including with large red text, warning you not to paste stuff because it's people trying to hijack your account.
The warning comes from Facebook, I think. And I'm perfectly okay with it.Obviously this is an attempt to protect them, not devs.
I'd be perfectly okay with Firefox displaying a big giant red warning every time I open the console too. Just don't get in my way.
-
You store your bank login details in
passwords.txt
?
Is that better or worse than using a post-it on the underside of the keyboard?
-
Is that better or worse than using a post-it on the underside of the keyboard?
Worse actually; a post-it note is only weak to physical access.
-
But a
passwords.txt
(provided the system uses an encrypted filesystem and requires a password to unlock) is extremely strong against physical access.Pick which threat model you're going to address. ;-)
-
passwords.txt
contains a map to the location of your post-it note. Impenetrable!
-
provided the system uses an encrypted filesystem and requires a password to unlock
And mow many users that store all their sensitive passwords in apasswords.txt
will also password-protect and encrypt the filesystem? Not many, I'd wager.I give you a cocaine-fuelled Zippy
-
BUT WHERE IS GRUMPY CAT!?
Filed under: [fuck you discourse is the body valid now?] (#)
-
GRUMPY CAT
-
And mow many users that store all their sensitive passwords in a
passwords.txt
will also password-protect and encrypt the filesystem? Not many, I'd wager.That sort of thing is trivial to set up, especially as it can be done by the admin before letting the user on the machine in the first place. All it takes is a competent admin and a not-very-competent user. Now, is that a combination we've heard of before, ever?
-
WORKAROUND:Use Firebug.
Actually, I do use Firebug; it's probably how I managed to avoid seeing this message for so long. It's also why I don't care much for Chrome. Maybe I'm just used to it, but Firebug is more comfortable of a tool than Chrome's built-ins (or Firefox's, for that matter).
I like how people are getting so worked up about a feature designed to protect the 99.999% of users who aren't developers
I think "worked up" may be an exaggeration. "Glumly ticked" would be closer to my reaction.
How many bash scripts or BAT files could steal your bank login details?
This... is a dangerous question. I think the answers in the positive here actually far outnumber the examples of Javascript that would work.
I know this was mentioned on another thread, but if you open the console while on facebook, you get a big warning, including with large red text, warning you not to paste stuff because it's people trying to hijack your account.
I am going to have to try this sometime...
Just don't get in my way.
This was my only real issue with it... well, other than it's condescending tone.
And mow many users that store all their sensitive passwords in a passwords.txt will also password-protect and encrypt the filesystem? Not many, I'd wager.
This is still not very secure since the pasted script running as that user presumably has transparent access to those files just like the user does. A password manager that keeps an encrypted store is a better choice here, though if we're pasting code into the command line blatently it shouldn't be too hard to get a keylogger and all sorts of malware in to breach the whole system.
-
Maybe I'm just used to it, but Firebug is more comfortable of a tool than Chrome's built-ins
How's that? They're almost identical.
-
They're almost identical.
They do all the same things, but they call them by different names and put them in different places. So whichever you learn on feels "comfortable" and whichever you didn't learn on is "strange"
-
/ba(t|sh)/ files and javascript? I can steal your bank account details with a wrench held dangerously close to your face.
-
/ba(t|sh)/ files and javascript? I can steal your bank account details with a wrench held dangerously close to your face.
@algorythmics prefers to steal bank account details with jumper cable clamps to the nipples
-
@algorythmics prefers to steal back account details with jumper cable clamps to the nipples
... or some body part held dangerously close to your face.
-
Wasn't that the Bastard? Sure sounds like the Bastard.
-
How's that? They're almost identical.
Almost, but there are many small differences that do add up. The defaults (Chrome displays filenames with icons in the network section of its debugger) also influence this. I looked at them for a bit just now and I did notice one thing about Chrome's that I prefer: network requests are presented as a file list | information pane, where Firebug presents them as a list with the request information as an expandable subsection to the file. Firefox's own debugger presents it more like Chrome, funny enough.
/ba(t|sh)/ files and javascript? I can steal your bank account details with a wrench held dangerously close to your face.
As long as it's not a hamburger icon. At least the wrench gives me some idea what I'm looking at.
@algorythmics prefers to steal bank account details with jumper cable clamps to the nipples
This is usually less theft and more a particular financial arrangement that may also include a discretion clause excluding one's spouse from knowledge of these activities...
-
As long as it's not a hamburger icon. At least the wrench gives me some idea what I'm looking at.
Have a + (and a like!) for that!
-
I can steal your bank account details with a wrench held dangerously close to your face.
Nah, my wife would be like, "Go ahead, maybe he'll start remembering to put his socks in the hamper now."
-
And then it's gonna turn out that the versions are incompatible between each other
They already are, from what I could tell, in terms of extension support. And I consider Firefox without Tab Utilities almost as intolerable as Chrome.