"Firefox 91" with enhanced cookie cleaner is now stable

Enable "HTTPS by Default" for private browsing. Addressed 11 vulnerabilities

Mozilla officially released the latest version v91.0 of "Firefox" for desktop on August 10 (US time). In Firefox 91, more than 1,200 bugs (improvements and problems) have been resolved by 210 volunteers. An extended support version for corporations based on this version, "Firefox 91.0 ESR," is also available for download.

The highlight of Firefox 91 is that a new technology called "Enhanced Cookie Clearing" is now available in environments where "Enhanced Tracking Prevention" is in "Strict" mode. is.

"Firefox" has introduced "Total Cookie Protection" from "Firefox 86" to prevent cookies from being used for cross-site user tracking across multiple sites. When enabled, cross-site tracking becomes very difficult because each website traps cookies and data stored on its PC in a separate "cookie jar".

"Enhanced Cookie Clearing" is based on this "Total Cookie Protection" and performs more thorough cookie deletion. For example, when deleting the cookie of "example.com", only the data of "example.com" is deleted in the past, and the data such as "facebook.com" embedded in "example.com" remains as it is. rice field. With "Enhanced Cookie Clearing", you can uproot and delete the rest of the data, including "facebook.com". Not only cookies and localStorage, but also site settings and cached data such as HTTP cache can be cleared at once, so it is possible to easily erase traces of a website from a web browser.

Also, in private browsing mode, the "HTTPS by Default" policy is enabled. When you click the HTTP connection link on the web page or enter the URL of the HTTP connection in the address bar, Firefox first checks if the site you are connecting to supports HTTPS connection, and if possible, encrypts it. Switch to the converted HTTPS connection (fallback). If the website does not support HTTPS connection, it will be connected by HTTP as it is and a warning icon will be displayed in the address bar.

This "HTTPS by Default" policy will be expanded to normal mode in the future.

In addition, the following improvements have been made in this version.

Please note that this version also fixes 11 vulnerabilities based on the CVE number. The breakdown of the severity is Mozilla's standard, the second from the top "High" is 8 cases (1 case affects the Linux version, 1 case affects only the Android version), and the third from the top "Moderate" is 2 cases (of which) 1 case affects only the Linux version), the lowest "Low" is 1 case. It also contains flaws that can lead to the execution of arbitrary code, so it is desirable to update as soon as possible.

The desktop version of "Firefox" is free software that supports Windows / Mac / Linux and welcomes donations, and is currently available for download from Mozilla's website. The Windows version is compatible with Windows 7/8/10 and can also be downloaded from the Window Forest Library.