{"id":2380,"date":"2013-05-28T12:28:59","date_gmt":"2013-05-28T16:28:59","guid":{"rendered":"http:\/\/blog.nccomputertech.com\/?p=2380"},"modified":"2013-05-28T12:28:59","modified_gmt":"2013-05-28T16:28:59","slug":"five-steps-to-ultimate-firefox-security","status":"publish","type":"post","link":"https:\/\/nccomputertech.com\/techtalk\/2013\/05\/28\/five-steps-to-ultimate-firefox-security\/","title":{"rendered":"Five steps to ultimate Firefox security"},"content":{"rendered":"
Over the years, many have touted Mozilla\u2019s Firefox as one of the most secure Web browsers. But as with other browsers, the security level offered depends on the settings. Some security features need to be manually enabled. Those turned on by default should still be double-checked.Follow these five steps to lock down Firefox. Start with the essentials in the browser\u2019s own settings, then choose some useful add-ons. Finally, keep track of your plug-ins so you can patch the inevitable security holes.<\/p>\n

Enable a master password<\/h2>\n

Like other browsers, Firefox by default allows anyone who accesses your computer to log in to sites where you\u2019ve saved the password. And as with Google Chrome, a list of the saved usernames and passwords can be viewed via the Options menu of Firefox.<\/p>\n

\"\"<\/a>
By default, nothing prevents others from viewing all your saved login info in Firefox.<\/figcaption><\/figure>\n

Fortunately, Firefox offers a master password feature that encrypts and password-protects the saved password list. When enabled, you must enter the master password the first time you use a saved password, once per browser session. Additionally, even though you enter the master password the first time, you must always enter it before you can view saved passwords via the Options menu. This is a great feature to help prevent casual snooping of your passwords. It even prevents most third-party utilities from recovering them.<\/p>\n

\"\"
Creating a master password prevents others from using or viewing your saved login info.<\/figcaption><\/figure>\n

To enable the master password feature, open the Firefox menu, select Options,<\/em> select the Security<\/em> tab, and then check the Use a master password<\/em> option.<\/p>\n

Use a strong password for syncing<\/h2>\n

Like Google Chrome, Firefox has a syncing feature to synchronize your bookmarks, passwords, and other browser data to Firefox browsers running on other computers and devices. Fortunately, Firefox encrypts all synced data, not just your saved passwords (as Google Chrome does). Additionally, Firefox has more security than what Chrome offers by default when you\u2019re setting up a new computer or device to sync. In Firefox, you must log in with your Firefox Sync password. Then you must either enter a random passcode from the new device into one that you’ve already set up, or take the recovery key from a device you\u2019ve already set up and input that key into the new device.<\/p>\n

\"\"<\/small>
Syncing conveniently syncs your saved login and other browser data across multiple computers.<\/figcaption><\/figure>\n

So you don\u2019t have much to worry about with Firefox syncing\u2014as long as you use a strong password, one with upper- and lowercase letters, numbers, and special characters. If someone knows or cracks the password, and has access to a device you\u2019ve already set up with syncing, they can then set up other devices with syncing and access your passwords and other browser data.
\nTo enable or change sync settings, open the Firefox menu, select Options,<\/em> and select the Sync<\/em> tab.<\/p>\n

Verify that security options are enabled<\/h2>\n

Like other popular browsers, Firefox includes some basic security and privacy settings. Though most are enabled by default, you should ensure they haven\u2019t been disabled.<\/p>\n

\"\"
Make sure the first three security options are selected to protect against malware and phishing attacks.<\/figcaption><\/figure>\n

Start by opening the Firefox menu and selecting Options.<\/em> In the Options window, select the Security<\/em> tab. Ensure that the first option, Warn me when sites try to install add-ons<\/em>, is enabled to help prevent sites from automatically installing add-ons, as some can be dangerous. Then ensure that the next two options, Block reported attack sites<\/em> and Block reported web forgeries<\/em>, are also checked to help enable protection against malware and phishing.<\/p>\n

\"\"
Check the first privacy option to help prevent websites from tracking your online activity.<\/figcaption><\/figure>\n

Next, select the Privacy<\/em> tab. And if you want more privacy online, select the first option, Tell websites I do not want to be tracked<\/em>, which isn\u2019t enabled by default. Although it can\u2019t prevent all tracking, it will reduce tracking by those sites that support this type of option.<\/p>\n

\"\"
Ensure that the first content option here is enabled to block pop-ups.<\/figcaption><\/figure>\n

Now, select the Content<\/em> tab. To prevent pop-up windows that can be annoying and even contain phishing ads, ensure that the first option is enabled: Block pop-up windows<\/em>.
\nLastly, select the Advanced<\/em> tab, select the Update<\/em> subtab, and ensure that Automatically install updates<\/em> is selected.<\/p>\n

Use add-ons for more protection<\/h2>\n

Consider installing these security-related add-ons for extra protection:
\nNoScript<\/a> helps you control which sites can use JavaScript, Silverlight, Flash, and other embedded content, as they can be used maliciously to infect your computer or for phishing attempts.
\nAdblock Plus<\/a> blocks banners, pop-ups, and video advertisements on websites to reduce clutter and the resulting annoyance; they can even reduce accidentally stumbling upon adware, malware, and phishing attacks.
\nWeb of Trust (WOT)<\/a> shows the user ratings of sites and blocks dangerous sites\u2014such as those with malware\u2014to increase safe surfing, shopping, and searching on the Web.
\nHTTPS Finder<\/a> automatically detects and enforces HTTPS\/SSL-encrypted connections when available\u2014great in helping to reduce the chances of an eavesdropper on a Wi-Fi network from capturing your login details.
\nXpnd.it! short URL expander<\/a> allows you to hover over shortened links to see the real URL and other basic information about the site so you know where it leads before clicking.<\/p>\n

Check and update plug-ins<\/h2>\n

Cyber criminals regularly use vulnerabilities in popular browser plug-ins (like Java and Adobe products) to infect and invade computers. Most plug-ins regularly release updates to patch security holes. Many plug-ins are set by default to update automatically or at least to notify you of them. However, it\u2019s a good idea to check periodically for updates. Consider using the Mozilla plug-in checker<\/a> or third-party sites like Qualys BrowserCheck<\/a> for updates for other browsers.<\/p>\n

A little vigilance goes a long way<\/h2>\n

Firefox is pretty secure on its own, but you can make it even more secure with the right settings and add-ons. Good password management remains essential, too: Create and enable a strong master password so others can\u2019t use or view your passwords. And if you use the syncing feature to synchronize your passwords and browser data across devices, use a strong password to prevent others from syncing. Finally, keep tabs on your add-ons and plug-ins to make sure they\u2019re giving you the best possible protection.
\nvia PCWorld<\/a>
\n<\/section>\n","protected":false},"excerpt":{"rendered":"

Over the years, many have touted Mozilla\u2019s Firefox as one of the most secure Web browsers. But as with other […]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_feature_clip_id":0,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2},"jetpack_post_was_ever_published":false},"categories":[7,9],"tags":[41,369,717,755],"class_list":["post-2380","post","type-post","status-publish","format-standard","hentry","category-security","category-software","tag-adblock-plus","tag-firefox","tag-mozilla","tag-noscript"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/papNkV-Co","jetpack-related-posts":[{"id":7954,"url":"https:\/\/nccomputertech.com\/techtalk\/2015\/04\/03\/firefox-37-supports-easier-encryption-option-than-https\/","url_meta":{"origin":2380,"position":0},"title":"Firefox 37 supports easier encryption option than HTTPS","author":"NCCT","date":"April 3, 2015","format":false,"excerpt":"The latest version of Firefox has a new security feature that aims to put a band-aid over unencrypted website connections. Firefox 37 rolled out earlier this week with support for opportunistic encryption, or OE. You can consider OE sort of halfway point between no encryption (known as clear text) and\u2026","rel":"","context":"In "Software"","block_context":{"text":"Software","link":"https:\/\/nccomputertech.com\/techtalk\/category\/software\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":7876,"url":"https:\/\/nccomputertech.com\/techtalk\/2015\/03\/24\/fully-patched-versions-of-firefox-chrome-ie-11-and-safari-exploited-at-pwn2own-hacking-competition\/","url_meta":{"origin":2380,"position":1},"title":"Fully patched versions of Firefox, Chrome, IE 11 and Safari exploited at Pwn2Own hacking competition","author":"NCCT","date":"March 24, 2015","format":false,"excerpt":"As in years past, the latest patched versions of the most popular web browsers around stood little chance against those competing in the annual Pwn2Own hacking competition. The usual suspects \u2013 Apple Safari, Google Chrome, Mozilla Firefox and Microsoft Internet Explorer \u2013 all went down during the two-day competition, earning\u2026","rel":"","context":"In "Security"","block_context":{"text":"Security","link":"https:\/\/nccomputertech.com\/techtalk\/category\/security\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/img.youtube.com\/vi\/V99skqmTyiY\/0.jpg?resize=350%2C200","width":350,"height":200},"classes":[]},{"id":3204,"url":"https:\/\/nccomputertech.com\/techtalk\/2013\/08\/19\/chrome-challenges-firefox-may-become-no-2-browser\/","url_meta":{"origin":2380,"position":2},"title":"Chrome challenges Firefox, may become No. 2 browser","author":"NCCT","date":"August 19, 2013","format":false,"excerpt":"Mozilla's Firefox browser has lost more than 11 percent of its user share in the last two months, giving Google's Chrome another shot at replacing it as the world's No. 2 browser, according to new data. Statistics from Web measurement company Net Applications illustrated a rapid decline in Firefox and\u2026","rel":"","context":"In "Software"","block_context":{"text":"Software","link":"https:\/\/nccomputertech.com\/techtalk\/category\/software\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":8633,"url":"https:\/\/nccomputertech.com\/techtalk\/2015\/09\/23\/firefoxs-voip-service-firefox-hello-adds-instant-messaging\/","url_meta":{"origin":2380,"position":3},"title":"Firefox’s VoIP service, Firefox Hello, adds instant-messaging","author":"NCCT","date":"September 23, 2015","format":false,"excerpt":"If you suffered through the Skype outage earlier this week, Mozilla would like you to know that you have another option: Firefox Hello. The latest update of the Firefox browser (version 41.0) adds instant-message capabilities to Firefox Hello, the integrated VoIP client that Mozilla has put in the browser with\u2026","rel":"","context":"In "Software"","block_context":{"text":"Software","link":"https:\/\/nccomputertech.com\/techtalk\/category\/software\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":7380,"url":"https:\/\/nccomputertech.com\/techtalk\/2015\/01\/09\/super-cookies-can-track-you-even-in-private-browsing-mode-researcher-says\/","url_meta":{"origin":2380,"position":4},"title":"‘Super cookies’ can track you even in private browsing mode, researcher says","author":"NCCT","date":"January 9, 2015","format":false,"excerpt":"If there's one thing websites love to do it's track their users. Now, it looks like some browsers can even be tracked when they're in private or incognito mode. Sam Greenhalgh of U.K.-based RadicalResearch recently published a blog post with a proof-of-concept called \"HSTS Super Cookies.\" Greenhalgh shows how a\u2026","rel":"","context":"In "Security"","block_context":{"text":"Security","link":"https:\/\/nccomputertech.com\/techtalk\/category\/security\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":8660,"url":"https:\/\/nccomputertech.com\/techtalk\/2015\/10\/09\/firefox-will-stop-supporting-plugins-by-end-of-2016-following-chromes-lead-pcworld\/","url_meta":{"origin":2380,"position":5},"title":"Firefox will stop supporting plugins by end of 2016, following Chrome’s lead","author":"NCCT","date":"October 9, 2015","format":false,"excerpt":"Google Chrome recently dumped support for plugins such as Java and Silverlight, and now it\u2019s Firefox\u2019s turn. Late Thursday, Mozilla announced on its blog that Firefox would stop supporting plugins based on the Netscape Plugin Application Programming Interface (NPAPI) architecture by the end of 2016.For many years, NPAPI plugins helped\u2026","rel":"","context":"In "Software"","block_context":{"text":"Software","link":"https:\/\/nccomputertech.com\/techtalk\/category\/software\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]}],"_links":{"self":[{"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/posts\/2380","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/comments?post=2380"}],"version-history":[{"count":0,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/posts\/2380\/revisions"}],"wp:attachment":[{"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/media?parent=2380"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/categories?post=2380"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/tags?post=2380"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}