Insecure version of firefox? (actually, no)

Forum Forums New users New Users and General Questions Insecure version of firefox? (actually, no)

Tagged: 

  • This topic has 13 replies, 6 voices, and was last updated Nov 8-11:42 pm by andfree.
Viewing 14 posts - 1 through 14 (of 14 total)
  • Author
    Posts
  • #2109
    Member
    Avatarandfree

    Hi. When I login to forum, there is a message on the wordpress dashboard. It says that I use an insecure, outdated version of firefox. The version I use is 45.5.0. I tried to install a new one without success:

    $ sudo apt-get install firefox
     
    Reading package lists... Done
    Building dependency tree       
    Reading state information... Done
    Package firefox is not available, but is referred to by another package.
    This may mean that the package is missing, has been obsoleted, or
    is only available from another source
    
    E: Package 'firefox' has no installation candidate

    Any idea what I should do now? Thanks.

    • This topic was modified 3 years, 5 months ago by skidoo.
    #2117
    Member
    fatmacfatmac

    We use Firefox-esr, not the ordinary Firefox. 🙂

    Linux (& BSD) since 1999

    #2118
    Member
    Avatarandfree

    We use Firefox-esr, not the ordinary Firefox.

    Indeed, it’s ESR. So, the message is because of this? I have to ignore it?

    • This reply was modified 3 years, 5 months ago by andfree.
    #2120
    Member
    Avatarandfree

    $ sudo apt-get install firefox-esr

    and firefox-esr has been updated to 52.4.0 (32-bit) version. But the dashboard message still remains.

    #2121
    Forum Admin
    anticapitalistaanticapitalista

    You can safely ignore that forum message and keep using the firefox-esr you have.
    BTW what operating system are you using?

    Philosophers have interpreted the world in many ways; the point is to change it.

    antiX with runit - leaner and meaner.

    #2123
    Member
    Avatarandfree

    I have installed antix 15 and then I have done several dist-upgrades, but I don’t remember when the most recent was. I tried an update today, but there are some errors:

    W: An error occurred during the signature verification. The repository is not updated and the previous index files will be used. GPG error: http://antix.daveserver.info jessie InRelease: The following signatures were invalid: KEYEXPIRED 1489359573 KEYEXPIRED 1489359573 KEYEXPIRED 1489359573 KEYEXPIRED 1489359573 KEYEXPIRED 1489359573
    
    W: Failed to fetch http://antix.daveserver.info/jessie/dists/jessie/InRelease  
    
    W: Some index files failed to download. They have been ignored, or old ones used instead.
    #2124
    Forum Admin
    anticapitalistaanticapitalista

    Use this repo

    deb http://repo.antixlinux.com/jessie jessie main nosystemd

    Also, post the output of inxi -r

    Philosophers have interpreted the world in many ways; the point is to change it.

    antiX with runit - leaner and meaner.

    #2126
    Member
    Avatarandfree

    Use this repo

    deb http://repo.antixlinux.com/jessie jessie main nosystemd

    There was not such a repo at SPM. I added it, but after trying to update, I got error messages again:

    W: GPG error: http://repo.antixlinux.com jessie InRelease: The following signatures were invalid: KEYEXPIRED 1489359573 KEYEXPIRED 1489359573 KEYEXPIRED 1489359573 KEYEXPIRED 1489359573 KEYEXPIRED 1489359573
    W: An error occurred during the signature verification. The repository is not updated and the previous index files will be used. GPG error: http://antix.daveserver.info jessie InRelease: The following signatures were invalid: KEYEXPIRED 1489359573 KEYEXPIRED 1489359573 KEYEXPIRED 1489359573 KEYEXPIRED 1489359573 KEYEXPIRED 1489359573
    
    W: Failed to fetch http://antix.daveserver.info/jessie/dists/jessie/InRelease  
    
    W: Some index files failed to download. They have been ignored, or old ones used instead.

    Also, post the output of inxi -r

    $ inxi -r
    Repos:     Active apt sources in file: /etc/apt/sources.list
               deb http://repo.antixlinux.com/jessie jessie main nosystemd
               Active apt sources in file: /etc/apt/sources.list.d/antix.list
               deb http://antix.daveserver.info/jessie/ jessie main nosystemd
               Active apt sources in file: /etc/apt/sources.list.d/debian.list
               deb http://ftp.gr.debian.org/debian/ jessie main contrib non-free
               deb http://security.debian.org/ jessie/updates main contrib non-free
    #2128
    Forum Admin
    rokytnjirokytnji

    For comparison purposes

    $ inxi -S
    System:    Host: biker Kernel: 4.10.1-antix.1-686-smp-pae i686 (32 bit) Desktop: IceWM 1.3.8
               Distro: antiX-15-V_386-full Killah P 30 June 2015
    
    $ inxi -r
    Repos:     Active apt sources in file: /etc/apt/sources.list.d/antix.list
               deb http://repo.antixlinux.com/jessie jessie main nosystemd
               Active apt sources in file: /etc/apt/sources.list.d/debian.list
               deb http://ftp.gr.debian.org/debian/ jessie main contrib non-free
               deb http://security.debian.org/ jessie/updates main contrib non-free
               Active apt sources in file: /etc/apt/sources.list.d/palemoon.list
               deb http://download.opensuse.org/repositories/home:/stevenpusser/Debian_8.0/ /
    

    Just posting mine to help trouble shoot.

    I fixed any failed to download errors and keyring errors long ago. I used Gdebi.

    http://antix.daveserver.info/jessie/pool/main/a/antix-archive-keyring/

    harry@biker:~
    $ sudo apt-get -f install
    [sudo] password for harry: 
    Reading package lists... Done
    Building dependency tree       
    Reading state information... Done
    The following packages were automatically installed and are no longer required:
      libexo-1-0 libexo-common libexo-helpers
    Use 'apt-get autoremove' to remove them.
    0 upgraded, 0 newly installed, 0 to remove and 1 not upgraded.
    

    Sometimes I drive a crooked road to get my mind straight.
    Not all who Wander are Lost.
    I'm not outa place. I'm from outer space.

    Linux Registered User # 475019
    How to Search for AntiX solutions to your problems

    #2129
    Forum Admin
    rokytnjirokytnji

    deb http://antix.daveserver.info/jessie/ jessie main nosystemd

    That need to commented out with a hash tag in front. Or be removed entirely. If commented out. When you do a dist-upgrade of antix 15. You will be asked to replace config files for /etc/apt/sources.list. Say yes to each question and all the old pages will be replaced with correct entries.

    You can run inxi -r again to make sure you commented Daves Server entry correctly before doing apt-get dis-update && apt get dist-upgrade again later on.

    • This reply was modified 3 years, 5 months ago by rokytnji.

    Sometimes I drive a crooked road to get my mind straight.
    Not all who Wander are Lost.
    I'm not outa place. I'm from outer space.

    Linux Registered User # 475019
    How to Search for AntiX solutions to your problems

    #2131
    Forum Admin
    rokytnjirokytnji

    On the firefox question. Our installs rely on package maintainers from MX Linux to keep us up to date on new programs. Just got to patient is all. It’ll get there.

    harry@biker:~
    $ apt-cache policy iceweasel
    iceweasel:
      Installed: 52.4.0esr-1~deb8u1
      Candidate: 52.4.0esr-1~deb8u1
      Version table:
     *** 52.4.0esr-1~deb8u1 0
            500 http://security.debian.org/ jessie/updates/main i386 Packages
            100 /var/lib/dpkg/status
         45.9.0esr-1~deb8u1 0
            500 http://ftp.gr.debian.org/debian/ jessie/main i386 Packages
         22.0~b1-1~bpo70+1 0
            500 http://repo.antixlinux.com/jessie/ jessie/main i386 Packages
    
    • This reply was modified 3 years, 5 months ago by rokytnji.

    Sometimes I drive a crooked road to get my mind straight.
    Not all who Wander are Lost.
    I'm not outa place. I'm from outer space.

    Linux Registered User # 475019
    How to Search for AntiX solutions to your problems

    #2135
    Member
    Avatarskidoo

    52.4.0esr is the newest in the esr series.
    We can expect Mozilla to release v52.5.0 around the end of November (approximately 2wks after the release of firefox57).

    #2140
    Moderator
    Brian MasinickBrian Masinick

    Firefox 57.0, according to the Mozilla calendar, is expected on 11/14/2017.
    https://wiki.mozilla.org/RapidRelease/Calendar contains the calendar

    Release Owners
    quarter merge date central beta release date release ESR
    Q4 2017-11-13 Firefox 59 Firefox 58 2017-11-14 Firefox 57 Firefox 52.5
    Q1 2018-01-22 Firefox 60 Firefox 59 2018-01-23 Firefox 58 Firefox 52.6
    2018-03-12 Firefox 61 Firefox 60 2018-03-13 Firefox 59 Firefox 52.7; 59.0
    Q2 2018-05-07 Firefox 62 Firefox 61 2018-05-08 Firefox 60 Firefox 52.8; 59.1
    2018-07-02 Firefox 63 Firefox 62 2018-07-03 Firefox 61 Firefox 59.2
    Q3 2018-08-27 Firefox 64 Firefox 63 2018-08-28 Firefox 62 Firefox 59.3
    Q4 2018-10-22 Firefox 65 Firefox 64 2018-10-23 Firefox 63 Firefox 59.4
    2018-11-26 Firefox 66 Firefox 65 2018-11-27 Firefox 64 Firefox 59.5

    • This reply was modified 3 years, 5 months ago by Brian Masinick.

    Brian Masinick

    #2185
    Member
    Avatarandfree

    I fixed any failed to download errors and keyring errors long ago. I used Gdebi.

    http://antix.daveserver.info/jessie/pool/main/a/antix-archive-keyring/

    It seems to have worked for me, too. After that, I updated & upgraded the system without any errors at all. And now:

    $ inxi -S
    System:    Host: me Kernel: 4.0.5-antix.1-486-smp i686 (32 bit)
               Desktop: IceWM 1.3.8
               Distro: antiX-15-V_386-full Killah P 30 June 2015
    
    $ inxi -r
    Repos:     Active apt sources in file: /etc/apt/sources.list.d/antix.list
               deb http://repo.antixlinux.com/jessie/ jessie main nosystemd
               Active apt sources in file: /etc/apt/sources.list.d/debian.list
               deb http://ftp.gr.debian.org/debian/ jessie main contrib non-free
               deb http://security.debian.org/ jessie/updates main contrib non-free
Viewing 14 posts - 1 through 14 (of 14 total)
  • You must be logged in to reply to this topic.