Re: [Mozilla Enterprise] Restrict / Lock Cache size in Firefox
It should probably work with the following autoconfig lines :
lockPref("browser.cache.disk.capacity", 35);
lockPref("browser.cache.disk.smart_size.enabled", false);
Le 22-02-2018 15:11, Kumar Kondru a écrit :
> Hi All,
>
> Do we restrict or lock the cache size with 350MB in Firefox via config file?.
> As users can click on the "Override automatic cache management" and make
> changes in size.
>
> So, We want to restrict the cache size. Kindly help us on this.
>
> Open FIREFOX, OPTIONS, ADVANCED, NETWORK, "CACHED WEB CONTENT"
>
> Regards,
>
> AJAY KUMAR
>
> The information contained in this e-mail message may be privileged,
> confidential, and protected from disclosure. Any unauthorized use, printing,
> copying, disclosure or dissemination of this communication may be subject to
> legal restriction or sanction. If you think that you have received this
> e-mail message in error, please reply to the sender and delete this message
> from your computer.
>
> ___
> Enterprise mailing list
> Enterprise@mozilla.org
> https://mail.mozilla.org/listinfo/enterprise [1]
>
> To unsubscribe from this list, please visit
> https://mail.mozilla.org/listinfo/enterprise [1] or send an email to
> enterprise-requ...@mozilla.org with a subject of "unsubscribe"
Links:
--
[1] https://mail.mozilla.org/listinfo/enterprise
___
Enterprise mailing list
Enterprise@mozilla.org
https://mail.mozilla.org/listinfo/enterprise
To unsubscribe from this list, please visit
https://mail.mozilla.org/listinfo/enterprise or send an email to
enterprise-requ...@mozilla.org with a subject of "unsubscribe"
Re: [Mozilla Enterprise] Installing and enabling an add-on silently
Le 11-01-2018 09:36, Marco Gaiarin a écrit :
> Mandi! Joel Sanderi
> In chel di` si favelave...
>
>> I need help on how to silently install and enable a Firefox Add-on within an
>> organization.
>
> Probably there's complex answers, but briefly:
>
> a) enable 'autoconfig':
> http://mike.kaply.com/2012/08/29/setting-the-default-firefox-homepage-with-autoconfig/
> [1]
> and set scopes of extensions so the 'system' ones get activated by default:
> pref("extensions.autoDisableScopes", 8);
> pref("extensions.enabledScopes", 7);
>
> b) copy extensions (unpacked or not, do some tests) on:
>
> "%ProgramFiles32%\Mozilla Firefox\browser\extensions\"
I found it easier to use CCK2 instead (which handles that nicely, and
does many other things) : https://mike.kaply.com/cck2/ [2] . Install
this extension on a Firefox 45 ESR, configure what you want, it will
generate some files that you need to deploy in the installation
directory of the Firefox you want to customize (it's compatible with any
version of Firefox)
Links:
--
[1]
http://mike.kaply.com/2012/08/29/setting-the-default-firefox-homepage-with-autoconfig/
[2] https://mike.kaply.com/cck2/
___
Enterprise mailing list
Enterprise@mozilla.org
https://mail.mozilla.org/listinfo/enterprise
To unsubscribe from this list, please visit
https://mail.mozilla.org/listinfo/enterprise or send an email to
enterprise-requ...@mozilla.org with a subject of "unsubscribe"
[Mozilla Enterprise] Is CCK2 compatible with Firefox>=57?
In fact, it's 2 different questions : - we deploy autoconfig scripts generated by CCK2 : will they still work with Firefox>=57? I suppose they will, as it's pure javascript code, with no link with extension technologies - will the CCK2 Wizard still work on Firefox>=57? I'm talking about the Firefox extension (installed from https://mike.kaply.com/cck2/), that lets us generate the autoconfig. I'm asking because it does not look like a webextension. Regards, Mossroy ___ Enterprise mailing list Enterprise@mozilla.org https://mail.mozilla.org/listinfo/enterprise To unsubscribe from this list, please visit https://mail.mozilla.org/listinfo/enterprise or send an email to enterprise-requ...@mozilla.org with a subject of "unsubscribe"
Re: [Mozilla Enterprise] interdependency between e10s and localfilelinks
Hi,
The symptoms are really close to this bug I opened :
https://bugzilla.mozilla.org/show_bug.cgi?id=1374395 (regarding
accessing local files through XHR with Firefox 54).
One workaround is to disable e10s, but you might want to try the other
workaround, which is to set browser.tabs.remote.separateFileUriProcess
to true.
They marked it as fixed in Firefox 55.
However, they marked version 52 ESR as "unaffected". Maybe you could
check with the testcase? Because if it's really affected, we should ask
to backport the fix to the ESR branch too.
Regards,
Mossroy
Le 02/08/2017 à 10:23, Sebastian Metzger a écrit :
> Hello everybody,
>
> we are using localfilelinks to open documents on file shares directly
> from our wiki-webpages.
> We set the following entries in prefs.js:
> user_pref("capability.policy.localfilelinks.checkloaduri.enabled",
> "allAccess");
> user_pref("capability.policy.localfilelinks.sites",
> "https://wiki-page.de;);
> user_pref("capability.policy.policynames", "localfilelinks");
>
> After the update to ESR52 we noticed, that some users can't use this
> links anymore.
> They see the following error-page:
>
> translation: fileAccessDenied
>
> We then realized that all users with e10s enabled get the error, but
> some users (including me) had the pref:
> extensions.e10sBlockedByAddons set to true and therefore e10s disabled
> and we can still use the links.
> I assume that Selenium or SQLite-Manager is causing my disabled e10s.
>
> Therefore it seems that there is a interdependency between enabled
> e10s and configured localfilelinks.
>
> I know that localfilelinks is only tolerated and was re-integrated in
> one of the last esr's.
> We try to convince our users not to use it, but you know... as long as
> there is a way (and there is one -> deactivate e10s) users will use it.
>
> Can anybody confirm this or has a solution?
> Best regards
>
> Sebastian Metzger
>
> --
> Sebastian Metzger
>
> Debeka Krankenversicherungsverein a. G.
> Debeka Lebensversicherungsverein a. G.
> Debeka Allgemeine Versicherung AG
> Debeka Pensionskasse AG
> Debeka Bausparkasse AG
>
> Abteilung Benutzer- und Endgerätedienste (IS/BE)
> 56058 Koblenz
>
> Telefon: (02 61) 4 98 - 31 05
> Telefax: (02 61) 4 98 - 20 99
>
> E-Mail: sebastian.metz...@debeka.de
> Internet: www.debeka.de
>
> Besuchen Sie uns auch in sozialen Netzwerken.
> Unsere Adressen finden Sie hier: www.debeka.de/socialmedia
>
> Pflichtangaben der Debeka-Unternehmen
> gemäß § 35a GmbHG / § 80 AktG: www.debeka.de/pflichtangaben
>
>
> ___
> Enterprise mailing list
> Enterprise@mozilla.org
> https://mail.mozilla.org/listinfo/enterprise
>
> To unsubscribe from this list, please visit
> https://mail.mozilla.org/listinfo/enterprise or send an email to
> enterprise-requ...@mozilla.org with a subject of "unsubscribe"
___
Enterprise mailing list
Enterprise@mozilla.org
https://mail.mozilla.org/listinfo/enterprise
To unsubscribe from this list, please visit
https://mail.mozilla.org/listinfo/enterprise or send an email to
enterprise-requ...@mozilla.org with a subject of "unsubscribe"
Re: [Mozilla Enterprise] IETab on Firefox 52 ESR
Thanks a lot Mike and Jorge for your help : this is fixed. I wouldn't have bet the developer would have accepted to help, as the addon is now unsupported. Thanks to him/her too. So now the addon works again with Firefox ESR 52.x, and should carry on working until the end of life of the 52.x branch (as initially planned). Regards, Mossroy Le 06/06/2017 à 18:58, Jorge Villalobos a écrit : > I responded in the bug. The available options are to ask the developer > to update the add-on metadata (I'll give that a try) or use an usigned > fork of the add-on. > > Jorge > > On 6/1/17 2:39 PM, Mossroy wrote: >> Thanks Mike, >> >> I did not find any relevant bug, so I opened >> https://bugzilla.mozilla.org/show_bug.cgi?id=1369516 >> >> I'd be grateful if you helped getting some attention on it. >> >> Regards, >> >> Mossroy >> >> >> Le 01/06/2017 à 19:11, Kaply Consulting a écrit : >>> My guess is that it was marked as incompatible because it includes a >>> plugin. >>> >>> There should probably be a bug opened on this. >>> >>> It should be marked compatible for 52 because it needs to work on the ESR. >>> >>> Mike >>> >>> On Wed, May 31, 2017 at 9:23 AM, Mossroy <moss...@free.fr >>> <mailto:moss...@free.fr>> wrote: >>> >>> Le 30/05/2017 à 13:47, Mossroy a écrit : >>>> Le 30-05-2017 13:22, James Pearson a écrit : >>>> >>>>> Mossroy wrote: >>>>>> Some comments in addons.mozilla.org <http://addons.mozilla.org> >>>>>> seem to indicate that it might >>>>>> simply come from the declared maxVersion in rdf. But, if I >>>>>> modify it, >>>>>> it breaks the extension signing, so Firefox refuses to install it. >>>>> Can you install the modified extension if you set >>>>> xpinstall.signatures.required' to 'false' ? >>>> Good idea. >>>> >>>> With this setting, Firefox does not say the extension is >>>> corrupted any more, but still says it is not compatible with >>>> Firefox 52.1.2, and refuses to install it. >>>> >>>> I had put 52.* in install.rdf (the >>>> original value was surprisingly 20.0a1, even if it's accepted by >>>> Firefox ESR 45) >>>> >>> Any idea why this extension is marked as "not compatible with >>> Firefox 52.1.2" ? I don't see the reason for that. >>> >>> Regards, >>> Mossroy >>> >>> ___ >>> Enterprise mailing list >>> Enterprise@mozilla.org <mailto:Enterprise@mozilla.org> >>> https://mail.mozilla.org/listinfo/enterprise >>> <https://mail.mozilla.org/listinfo/enterprise> >>> >>> To unsubscribe from this list, please visit >>> https://mail.mozilla.org/listinfo/enterprise >>> <https://mail.mozilla.org/listinfo/enterprise> or send an email to >>> enterprise-requ...@mozilla.org >>> <mailto:enterprise-requ...@mozilla.org> with a subject of >>> "unsubscribe" >>> >>> >> >> >> ___ >> Enterprise mailing list >> Enterprise@mozilla.org >> https://mail.mozilla.org/listinfo/enterprise >> >> To unsubscribe from this list, please visit >> https://mail.mozilla.org/listinfo/enterprise or send an email to >> enterprise-requ...@mozilla.org with a subject of "unsubscribe" >> ___ Enterprise mailing list Enterprise@mozilla.org https://mail.mozilla.org/listinfo/enterprise To unsubscribe from this list, please visit https://mail.mozilla.org/listinfo/enterprise or send an email to enterprise-requ...@mozilla.org with a subject of "unsubscribe"
Re: [Mozilla Enterprise] IETab on Firefox 52 ESR
Le 30/05/2017 à 13:47, Mossroy a écrit : > > Le 30-05-2017 13:22, James Pearson a écrit : > >> Mossroy wrote: >>> >>> Some comments in addons.mozilla.org seem to indicate that it might >>> simply come from the declared maxVersion in rdf. But, if I modify it, >>> it breaks the extension signing, so Firefox refuses to install it. >> >> Can you install the modified extension if you set >> xpinstall.signatures.required' to 'false' ? > > Good idea. > > With this setting, Firefox does not say the extension is corrupted any > more, but still says it is not compatible with Firefox 52.1.2, and > refuses to install it. > > I had put 52.* in install.rdf (the > original value was surprisingly 20.0a1, even if it's accepted by > Firefox ESR 45) > Any idea why this extension is marked as "not compatible with Firefox 52.1.2" ? I don't see the reason for that. Regards, Mossroy ___ Enterprise mailing list Enterprise@mozilla.org https://mail.mozilla.org/listinfo/enterprise To unsubscribe from this list, please visit https://mail.mozilla.org/listinfo/enterprise or send an email to enterprise-requ...@mozilla.org with a subject of "unsubscribe"
Re: [Mozilla Enterprise] IETab on Firefox 52 ESR
Le 30-05-2017 13:22, James Pearson a écrit : > Mossroy wrote: > >> Some comments in addons.mozilla.org seem to indicate that it might >> simply come from the declared maxVersion in rdf. But, if I modify it, >> it breaks the extension signing, so Firefox refuses to install it. > > Can you install the modified extension if you set > xpinstall.signatures.required' to 'false' ? Good idea. With this setting, Firefox does not say the extension is corrupted any more, but still says it is not compatible with Firefox 52.1.2, and refuses to install it. I had put 52.* in install.rdf (the original value was surprisingly 20.0a1, even if it's accepted by Firefox ESR 45) I found a workaround by installing https://addons.mozilla.org/fr/firefox/addon/checkcompatibility/ [1] : in this case, addon compatibility checks are disabled and IETab is accepted and works fine. But I'm not sure it would work do deploy it with IETab (through CCK2) at the same time. And it's obviously risky to do that. Links: -- [1] https://addons.mozilla.org/fr/firefox/addon/checkcompatibility/ ___ Enterprise mailing list Enterprise@mozilla.org https://mail.mozilla.org/listinfo/enterprise To unsubscribe from this list, please visit https://mail.mozilla.org/listinfo/enterprise or send an email to enterprise-requ...@mozilla.org with a subject of "unsubscribe"
[Mozilla Enterprise] IETab on Firefox 52 ESR
Hi, We've been using the IETab addon for many years on Firefox ESR : https://addons.mozilla.org/fr/firefox/addon/ie-tab-2-ff-36/ [1] This addon also contains a plugin. We're perfectly aware that, as any Firefox plugin, it will stop working in Firefox RR>=53 and Firefox ESR>=59. But it's supposed to carry on working with Firefox ESR 52. The problem is that this plugin is now marked as "incompatible with Firefox 52.1.2", even if it seems to work perfectly fine (if already installed). But you're not able to reinstall it if removed. Why that? Some comments in addons.mozilla.org seem to indicate that it might simply come from the declared maxVersion in rdf. But, if I modify it, it breaks the extension signing, so Firefox refuses to install it. I tried to upload the modified module myself (to make it signed by Mozilla, even if I had to distribute it myself), but it refuses it because "Starting with Firefox 53, new extensions on this site can only be WebExtensions." The editor has dropped support for this plugin, so I'm stuck. The problem for us is that we expected to be able to use this plugin until ESR 59. Would there be any solution to do that? NB : we're deploying this addon through CCK2 Links: -- [1] https://addons.mozilla.org/fr/firefox/addon/ie-tab-2-ff-36/ ___ Enterprise mailing list Enterprise@mozilla.org https://mail.mozilla.org/listinfo/enterprise To unsubscribe from this list, please visit https://mail.mozilla.org/listinfo/enterprise or send an email to enterprise-requ...@mozilla.org with a subject of "unsubscribe"
Re: [Mozilla Enterprise] whitelist for "unsecure connection" password prompt
Sorry, I had misunderstood your previous email. I thought you were talking about a way to put some domains in a white-list for the unsecure login/password forms warning (when the authentication is sent in clear text, with no encryption). Le 21/05/2017 à 22:50, Kaply Consulting a écrit : > Sure. > > If you go to Certificates->Overrides, you can specify domains for > which the certificate security information is bypassed. > > So you can add domains that have self signed certificates, for instance. > > Mike > > On Sun, May 21, 2017 at 9:33 AM, Mossroy <moss...@free.fr > <mailto:moss...@free.fr>> wrote: > > Mike, can you elaborate on how to do that with CCK2? > > I did not find a relevant parameter in the UI of CCK2 2.2.3.2 > > Regards, > > Mossroy > > > Le 11/05/2017 à 16:44, Kaply Consulting a écrit : >> You can do this with the CCK2 but it has to be individual domains. >> >> Mike >> >> On May 11, 2017 10:04 AM, "carré, denis" >> <d.ca...@maine-et-loire.fr <mailto:d.ca...@maine-et-loire.fr>> wrote: >> >> Cost is not the point. >> >> All our external (internet published websites with >> authentication and/or giving access to data) website already >> use standard or wildcard certificates, >> >> Certificates signed with our own CA (and our CA certificate >> is known by firefox) are costless too, and some of our >> internal webapps use some of them. >> >> For some other webapps we use a NGINX SSL reverse proxy. >> >> But for others it's simple not possible. For several reasons, >> technical, historical... >> >> Some developpers we bought software from just don't support >> the use of SSL, for example. >> Some webapps present APIs hard coded in pieces of software or >> office macros, and so on. >> >> Anyway, the question is not how much costs a certificate (I >> have quite a precise idea of it, thanks) but how to make >> firefox consider our internal web sites (and only them) as >> secure, whether they use SSL encryption or not, and still >> having this warning for external (internet) websites where >> this warning is more important. >> >> Regards, >> >> denis >> >> >> Réponse ou transfert de la part de Denis CARRE >> -Message d'origine- >> De : Enterprise [mailto:enterprise-boun...@mozilla.org >> <mailto:enterprise-boun...@mozilla.org>] De la part de James >> Andrewartha >> Envoyé : mercredi 10 mai 2017 03:42 >> À : enterprise@mozilla.org <mailto:enterprise@mozilla.org> >> Objet : Re: [Mozilla Enterprise] whitelist for "unsecure >> connection" password prompt >> >> Hi Denis, >> >> On 09/05/17 17:58, carré, denis wrote: >> > Is it possible to whitelist some specific websites (or >> domains), so >> > that users don't see the popup on the password box telling the >> > connection is unsecure ? >> > >> > There's a way to globally disable this feature on the >> about:config ( >> > security.insecure_field_warning.contextual.enabled ) but >> I'd like to >> > disable it only for specific internal webapps, not globally. >> >> Wildcard certificates are under $100/year: >> >> https://www.ssls.com/ssl-certificates/comodo-positivessl-wildcard >> <https://www.ssls.com/ssl-certificates/comodo-positivessl-wildcard> >> >> -- >> James Andrewartha >> Network & Projects Engineer >> Christ Church Grammar School >> Claremont, Western Australia >> Ph. (08) 9442 1757 >> Mob. 0424 160 877 >> ___ >> Enterprise mailing list >> Enterprise@mozilla.org <mailto:Enterprise@mozilla.org> >> https://mail.mozilla.org/listinfo/enterprise >> <https://mail.mozilla.org/listinfo/enterprise> >> >> To unsubscribe from this list, please visit >> https://mail.mozilla.org/listinfo/enterprise >> <https://mail.mozilla.org/listinfo/enterprise> or send an >> email to enterprise-requ...@mozilla.org >>
Re: [Mozilla Enterprise] whitelist for "unsecure connection" password prompt
Mike, can you elaborate on how to do that with CCK2? I did not find a relevant parameter in the UI of CCK2 2.2.3.2 Regards, Mossroy Le 11/05/2017 à 16:44, Kaply Consulting a écrit : > You can do this with the CCK2 but it has to be individual domains. > > Mike > > On May 11, 2017 10:04 AM, "carré, denis" <d.ca...@maine-et-loire.fr > <mailto:d.ca...@maine-et-loire.fr>> wrote: > > Cost is not the point. > > All our external (internet published websites with authentication > and/or giving access to data) website already use standard or > wildcard certificates, > > Certificates signed with our own CA (and our CA certificate is > known by firefox) are costless too, and some of our internal > webapps use some of them. > > For some other webapps we use a NGINX SSL reverse proxy. > > But for others it's simple not possible. For several reasons, > technical, historical... > > Some developpers we bought software from just don't support the > use of SSL, for example. > Some webapps present APIs hard coded in pieces of software or > office macros, and so on. > > Anyway, the question is not how much costs a certificate (I have > quite a precise idea of it, thanks) but how to make firefox > consider our internal web sites (and only them) as secure, whether > they use SSL encryption or not, and still having this warning for > external (internet) websites where this warning is more important. > > Regards, > > denis > > > Réponse ou transfert de la part de Denis CARRE > -Message d'origine- > De : Enterprise [mailto:enterprise-boun...@mozilla.org > <mailto:enterprise-boun...@mozilla.org>] De la part de James > Andrewartha > Envoyé : mercredi 10 mai 2017 03:42 > À : enterprise@mozilla.org <mailto:enterprise@mozilla.org> > Objet : Re: [Mozilla Enterprise] whitelist for "unsecure > connection" password prompt > > Hi Denis, > > On 09/05/17 17:58, carré, denis wrote: > > Is it possible to whitelist some specific websites (or domains), so > > that users don't see the popup on the password box telling the > > connection is unsecure ? > > > > There's a way to globally disable this feature on the about:config ( > > security.insecure_field_warning.contextual.enabled ) but I'd like to > > disable it only for specific internal webapps, not globally. > > Wildcard certificates are under $100/year: > > https://www.ssls.com/ssl-certificates/comodo-positivessl-wildcard > <https://www.ssls.com/ssl-certificates/comodo-positivessl-wildcard> > > -- > James Andrewartha > Network & Projects Engineer > Christ Church Grammar School > Claremont, Western Australia > Ph. (08) 9442 1757 > Mob. 0424 160 877 > ___ > Enterprise mailing list > Enterprise@mozilla.org <mailto:Enterprise@mozilla.org> > https://mail.mozilla.org/listinfo/enterprise > <https://mail.mozilla.org/listinfo/enterprise> > > To unsubscribe from this list, please visit > https://mail.mozilla.org/listinfo/enterprise > <https://mail.mozilla.org/listinfo/enterprise> or send an email to > enterprise-requ...@mozilla.org > <mailto:enterprise-requ...@mozilla.org> with a subject of > "unsubscribe" > ___ > Enterprise mailing list > Enterprise@mozilla.org <mailto:Enterprise@mozilla.org> > https://mail.mozilla.org/listinfo/enterprise > <https://mail.mozilla.org/listinfo/enterprise> > > To unsubscribe from this list, please visit > https://mail.mozilla.org/listinfo/enterprise > <https://mail.mozilla.org/listinfo/enterprise> or send an email to > enterprise-requ...@mozilla.org > <mailto:enterprise-requ...@mozilla.org> with a subject of > "unsubscribe" > > > > > ___ > Enterprise mailing list > Enterprise@mozilla.org > https://mail.mozilla.org/listinfo/enterprise > > To unsubscribe from this list, please visit > https://mail.mozilla.org/listinfo/enterprise or send an email to > enterprise-requ...@mozilla.org with a subject of "unsubscribe" ___ Enterprise mailing list Enterprise@mozilla.org https://mail.mozilla.org/listinfo/enterprise To unsubscribe from this list, please visit https://mail.mozilla.org/listinfo/enterprise or send an email to enterprise-requ...@mozilla.org with a subject of "unsubscribe"
Re: [Mozilla Enterprise] webserver certificate expired - any possibility not to display the warning?
I would also put a reverse-proxy in front of the old server. I did something very similar, for an old Oracle server too : https://blog.mossroy.fr/2015/02/27/un-reverse-proxy-apache-pour-acceder-a-de-vieux-serveurs-en-sslv3/ [2] (in French) Regards, Mossroy Le 06-02-2017 15:26, Osdoba, Sascha a écrit : > Hi, > > we have an expired webserver certificate but still users who have to use this > server and they get the certificate warning > > Is there any possibility to get around the warning? And even if its possible > - can I set only for this server/website? > > Background: > > Oracle webserver - very old and can only handle SHA1 but we get no SHA1 > certificate any more, communication is only in intern > > Regards, > > Sascha Osdoba > > ___ > Enterprise mailing list > Enterprise@mozilla.org > https://mail.mozilla.org/listinfo/enterprise [1] > > To unsubscribe from this list, please visit > https://mail.mozilla.org/listinfo/enterprise [1] or send an email to > enterprise-requ...@mozilla.org with a subject of "unsubscribe" Links: -- [1] https://mail.mozilla.org/listinfo/enterprise [2] https://blog.mossroy.fr/2015/02/27/un-reverse-proxy-apache-pour-acceder-a-de-vieux-serveurs-en-sslv3/___ Enterprise mailing list Enterprise@mozilla.org https://mail.mozilla.org/listinfo/enterprise To unsubscribe from this list, please visit https://mail.mozilla.org/listinfo/enterprise or send an email to enterprise-requ...@mozilla.org with a subject of "unsubscribe"
Re: [Mozilla Enterprise] Easy Way to Deploy Root Certificate to Firefox?
Hi,
I used to do that with some javascript code in plain autoconfig : see
https://blog.mossroy.fr/2014/12/29/deploiement-de-firefox-en-entreprise-partie-2-aspects-techniques/#Ajout_drsquoautorites_de_certification_SSL
. It's basically the same method as the "autoconfig via javascript"
paragraph from the wiki, but can read a cert file directly from the disk
: you have to put it in defaults/pref folder, and it must be in PEM
format (like
https://en.wikipedia.org/wiki/Privacy-enhanced_Electronic_Mail#Sample_PEM_format_x_509_cert
). Then you call importCert("yourcertfilename") in your autoconfig.
It was working fine, but I now prefer to use CCK2
https://mike.kaply.com/cck2/ , which also easily handles many other
customizations of Firefox.
The wiki article you mention also suggests another way to do it, which
is Windows-specific and very recent : import some certificates from the
windows certificate store. It's not available in ESR versions for now,
and I did not test it. See archives of this mailing-list : it has been
discussed in November 2016.
Regards,
Mossroy
Le 28/12/2016 à 15:15, Kim, James a écrit :
>
> Good morning,
>
>
>
> We set up the autoconfig files to force Firefox through our proxy but
> have found that internal resources are inaccessible because Firefox is
> missing our root certificate. Is there an easy way to deploy the root
> cert?
>
>
>
> I found this article (https://wiki.mozilla.org/CA:AddRootToFirefox)
> but I need some more guidance to try this out.
>
>
>
> Would anyone be able to help with the AutoConfig via Javascript or any
> other method of deploying the root Cert?
>
>
>
> I appreciate the help!
>
>
>
> *James T. Kim*
>
>
>
> ___
> Enterprise mailing list
> Enterprise@mozilla.org
> https://mail.mozilla.org/listinfo/enterprise
>
> To unsubscribe from this list, please visit
> https://mail.mozilla.org/listinfo/enterprise or send an email to
> enterprise-requ...@mozilla.org with a subject of "unsubscribe"
___
Enterprise mailing list
Enterprise@mozilla.org
https://mail.mozilla.org/listinfo/enterprise
To unsubscribe from this list, please visit
https://mail.mozilla.org/listinfo/enterprise or send an email to
enterprise-requ...@mozilla.org with a subject of "unsubscribe"
Re: [Mozilla Enterprise] Silent Install or Deploy an extension on Firefox
Hi, Recent versions of Firefox have restricted some technical possibilities to deploy extensions on Firefox. Using https://mike.kaply.com/cck2/ is probably the easiest way to do that. It will also allow you to customize many other things in Firefox. Regards, Mossroy Le 21/09/2016 à 21:46, Chandapuram, Varun a écrit : > > Hi Everybody, > > > > I am trying to install an extension called OKTA (Single Sigh On tool) > globally on our Windows enterprise. What ever I do, when launching the > Firefox, it again asks to Enable or allow the extension. Please help > me on how to distribute extensions to enterprise. > > > > Steps I took: > > > > 1. Am able to install it by copying the extracted XPI files to > “C:\Program Files (x86)\Mozilla Firefox\browser\extensions” folder > with ID (plu...@okta.com <mailto:plu...@okta.com>) as the folder name > . But the user still have to enable it. Edited the Install.rdf file in > description to true > > Still the user have to enable it manually upon first launch. > > 2. Edited the registry to show the following key. > > HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Mozilla\Firefox\Extensions > > “plu...@okta.com <mailto:plu...@okta.com>”=” C:\\Program Files > (x86)\\Mozilla Firefox\\browser\\extensions\\plu...@okta.com > <mailto:plu...@okta.com>” > > Still have to enable manually. > > 3. Copied the files to the folder to C:\Program Files > (x86)\OKTA\plu...@okta.com <mailto:plu...@okta.com> just in case where > we should not edit the install dir. And changed the registry accordingly. > > HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Mozilla\Firefox\Extensions > > “plu...@okta.com <mailto:plu...@okta.com>”=” C:\\Program Files > (x86)\\OKTA\\plu...@okta.com <mailto:plu...@okta.com>” > > > > Please help me on how to deploy the extension. How are you deploying > other extensions? Is there a GPO setting? > > > > > > Thank you, > > Varun Chandapuram. > > > > > > Thank you, > > Varun Chandapuram. > > > > > > ___ > Enterprise mailing list > Enterprise@mozilla.org > https://mail.mozilla.org/listinfo/enterprise > > To unsubscribe from this list, please visit > https://mail.mozilla.org/listinfo/enterprise or send an email to > enterprise-requ...@mozilla.org with a subject of "unsubscribe" ___ Enterprise mailing list Enterprise@mozilla.org https://mail.mozilla.org/listinfo/enterprise To unsubscribe from this list, please visit https://mail.mozilla.org/listinfo/enterprise or send an email to enterprise-requ...@mozilla.org with a subject of "unsubscribe"
Re: [Mozilla Enterprise] Block updates of one extension (but not all)
After comparing a user profile with & without automatic updates on a specific addon, I found that this info was located in extensions.json In this JSON file are listed all the addons, and for each there is a "applyBackgroundUpdates" property : 0 seems to mean updates disabled, and 1 enabled. Manually modifying the file does the trick, but I would hate to have to do that programmatically. Isn't there a way to set that property through autoconfig? Did anybody try to do such thing? Regards, Mossroy Le 17-09-2016 20:42, Mossroy a écrit : > Hi, > > How could we block the updates of a particular Firefox extension? > > We're deploying it with CCK2, and would like to centralize its updates > (so that to be able to test its new versions before deploying them to > everyone, still through CCK2). > > We would like to keep regular updates for the other extensions (that > might be installed by the user). > > Regards, > > Mossroy > > ___ > Enterprise mailing list > Enterprise@mozilla.org > https://mail.mozilla.org/listinfo/enterprise [1] > > To unsubscribe from this list, please visit > https://mail.mozilla.org/listinfo/enterprise [1] or send an email to > enterprise-requ...@mozilla.org with a subject of "unsubscribe" Links: -- [1] https://mail.mozilla.org/listinfo/enterprise ___ Enterprise mailing list Enterprise@mozilla.org https://mail.mozilla.org/listinfo/enterprise To unsubscribe from this list, please visit https://mail.mozilla.org/listinfo/enterprise or send an email to enterprise-requ...@mozilla.org with a subject of "unsubscribe"
[Mozilla Enterprise] Deprecation/removal of NPAPI
Hi, Do we have a schedule of the deprecation and removal of NPAPI for Firefox ESR? Will there be a way to keep some NPAPI plugins after that? Even if I understand the reasons behind that, some companies do use some NPAPI plugins (provided by some software vendors), and can not easily get rid of them. I understood that Flash would be an exception for this NPAPI removal, so maybe Mozilla might allow us to add some other exceptions (through autoconfig or CCK2)? Regards, Mossroy ___ Enterprise mailing list Enterprise@mozilla.org https://mail.mozilla.org/listinfo/enterprise To unsubscribe from this list, please visit https://mail.mozilla.org/listinfo/enterprise or send an email to enterprise-requ...@mozilla.org with a subject of "unsubscribe"
Re: [Mozilla Enterprise] System proxy setting
That depends on the underlying OS. On Windows, from what I understood, it reads the value from a Windows library called wininet.dll, which ends up reading in the registry. See https://dxr.mozilla.org/mozilla-central/source/toolkit/system/windowsproxy/nsWindowsSystemProxySettings.cpp Be aware that there are several registry entries that might be read, depending on the way your Internet access is configured on Windows : there is a global proxy setting, and also a proxy setting for each "Connection" configured on Windows. These values reflect the UI you have in the options of Internet Explorer. In older versions of Firefox, it was directly reading the registry, but now it's using wininet.dll to handle this. By the way, I face a bug on this system proxy detection in some specific situation : when the Connection name contains non-ASCII characters created by F5 VPN (not sure if the bug is in Firefox, in wininet.dll, or in the F5 VPN that creates the connection). See https://bugzilla.mozilla.org/show_bug.cgi?id=1218767 If someone knows who I should ping at Mozilla to get more attention on this issue, that would be helpful. Mossroy Le 06/01/2016 12:18, Harrison, Richard (Internet & Print Services, DCS, Group IT) a écrit : > > > > Hi, > > > > When you set the proxy setting to “use system proxy settings” where > does Firefox pick that up from? Is there a specific registry setting > that it uses and if so can anyone enlighten me to what that is? > > > > Thanks, > > Richard. > > > Lloyds Banking Group plc. Registered Office: The Mound, Edinburgh EH1 > 1YZ. Registered in Scotland no. SC95000. Telephone: 0131 225 4555. > Lloyds Bank plc. Registered Office: 25 Gresham Street, London EC2V > 7HN. Registered in England and Wales no. 2065. Telephone 0207626 1500. > Bank of Scotland plc. Registered Office: The Mound, Edinburgh EH1 1YZ. > Registered in Scotland no. SC327000. Telephone: 03457 801 801. > Cheltenham & Gloucester plc. Registered Office: Barnett Way, > Gloucester GL4 3RL. Registered in England and Wales 2299428. > Telephone: 0345 603 1637 > > Lloyds Bank plc, Bank of Scotland plc are authorised by the Prudential > Regulation Authority and regulated by the Financial Conduct Authority > and Prudential Regulation Authority. > > Cheltenham & Gloucester plc is authorised and regulated by the > Financial Conduct Authority. > > Halifax is a division of Bank of Scotland plc. Cheltenham & Gloucester > Savings is a division of Lloyds Bank plc. > > HBOS plc. Registered Office: The Mound, Edinburgh EH1 1YZ. Registered > in Scotland no. SC218813. > > This e-mail (including any attachments) is private and confidential > and may contain privileged material. If you have received this e-mail > in error, please notify the sender and delete it (including any > attachments) immediately. You must not copy, distribute, disclose or > use any of the information in it or any attachments. Telephone calls > may be monitored or recorded. > > > > ___ > Enterprise mailing list > Enterprise@mozilla.org > https://mail.mozilla.org/listinfo/enterprise > > To unsubscribe from this list, please visit > https://mail.mozilla.org/listinfo/enterprise or send an email to > enterprise-requ...@mozilla.org with a subject of "unsubscribe" ___ Enterprise mailing list Enterprise@mozilla.org https://mail.mozilla.org/listinfo/enterprise To unsubscribe from this list, please visit https://mail.mozilla.org/listinfo/enterprise or send an email to enterprise-requ...@mozilla.org with a subject of "unsubscribe"
