In modern computer systems, the biggest bottleneck of information tends to be in communicating with the hard disks. High seek times and relatively slow transmission rates when compared to RAM speeds can add up quickly. This was a necessary evil back when RAM space and costs were at a premium, but now it is not uncommon to see 4GB of RAM on laptops, and even 12GB on desktops. For users whose primary computer use is browsing the internet (either for work, writing articles, or lolcats) and have some extra RAM, moving the browser cache to the RAM from the hard disk is a definite option for increasing speed.
In Linux systems (specifically Fedora and Ubuntu systems), this can be achieved for Chrome and Firefox by creating a larger ramdisk, mounting the ramdisk after boot, and then setting the browser of choice to use that ramdisk as a cache. The necessary commands to do this are readily available on the internet, which makes life easy. Using ramdisks for performance boosts are not exclusive to browsers, and can be used for other software such as Nagios for example.
We have previously covered a tool called Espérance DV for moving cache to RAM in Mac OSX, and for any Windows users feeling left out, there are ways of making Firefox bend to your will. Obviously you will see an increase in RAM use (duh), but this shouldn’t be a problem unless you are running out of free RAM on your system. Remember, free RAM is wasted RAM.
The guys over at Xmarks are working hard to bring their bookmark synchronization service to all browsers and platforms. They’ve recently begun a closed alpha test for their Google Chrome/Chromium extension. We got an invite and decided to give it a test run. Since extensions aren’t yet fully supported, and still a bit buggy you’ll need to use the latest build in the dev channel of Chrome, which means at least version 188.8.131.52 or newer. We tested it on version 184.108.40.206 for Ubuntu with great success. The extension is still pretty basic since it’s still at an alpha stage, but works very well with synchronizing bookmarks across different platforms and browsers. Some of the things left out from the Firefox version are profiles, smarter search, site info and suggested tags. For an alpha release, it’s very well done and functions great, and we’re certainly looking forward to this extension as it develops further.
Mozilla released the latest alpha version of their new mobile browser Fennec for Windows Mobile. It brings many new features and fixes, such as improved startup time and a caching system to help scrolling on a page. They have also added support for a wider range of screen resolutions, and for those of us running an HTC Touch Pro support for zoom via the directional pad has been included in this release. Being an alpha release, it’s still a bit on the buggy side, but is very a promising browser for mobile phones. The final release should give other browsers a run for their money.
On the standard Blackberry Web Browser, there is a fixed file download limit of 2.3MB. Many users avoid this by installing a 3rd party browser (such as Opera Mini, for example), but there is still that bitter taste for having an extra web browser around just to download decently sized files. This limit seems to be imposed by a certain WAP port that the Blackberry is set to use by default, which blocks any file greater than this. Fortunately, [0mie] has found a way to reconfigure the default Blackberry Browser to use a different port without this restriction. Step by step walk through, links to the file required, and screen shots of large file downloads are provided. [0mie] claims that this hack works on a number of different phones and OS versions, and we are sure he would appreciate a wider audience to test this with.
[Note: This hack seems to use a Chinese provider as a proxy, so there may be privacy issues, etc. As always, hack at your own risk.]
Last week at Black Hat DC, [Moxie Marlinspike] presented a novel way to hijack SSL. You can read about it in this Forbes article, but we highly recommend you watch the video. sslstrip can rewrite all https links as http, but it goes far beyond that. Using unicode characters that look similar to / and ? it can construct URLs with a valid certificate and then redirect the user to the original site after stealing their credentials. The attack can be very difficult for even above average users to notice. This attack requires access to the client’s network, but [Moxie] successfully ran it on a Tor exit node.