Firefox 37 Release Notes

&gt; Implemented a subset of the Media Source Extensions (MSE) API to allow native HTML5 playback on YouTube<p>This is great! Actually just today I was wondering why Firefox was still using the Flash player for Youtube. Now it isn&#x27;t anymore :)

Opportunistic encryption&#x27;s really the big news. Will make the NSA&#x27;s job harder.<p>Edit: Unfortunately, you <i>must</i> be using SPDY or HTTP&#x2F;2 to use it. That&#x27;s a real shame. I already had self-signed TLS and added the header, but then discovered it doesn&#x27;t work with HTTP&#x2F;1.1 (and with no good reason, either).

The new Security Panel on the Network Monitor display seems helpful.<p>Even better, it seems that Firefox has finally stopped erroneously reporting that some pages with multimedia content served properly over HTTPS were only partially encrypted. This had been a long-standing issue and the early comments from developers were not promising, so kudos and my personal thanks to whoever has fixed this one.

It&#x27;s frankly ridiculous how you guys criticize Mozilla for all these things, when they are practically the only organization in the whole internet which continues to value privacy.

&gt;Yandex set as default search provider for the Turkish locale<p>Interesting. Looks like Putin&#x27;s relationship with Erdogan gets cozier all the time. Yandex has a very strong connection to Russian intelligence services:<p><a href="http:&#x2F;&#x2F;www.bbc.com&#x2F;news&#x2F;business-13274443" rel="nofollow">http:&#x2F;&#x2F;www.bbc.com&#x2F;news&#x2F;business-13274443</a>

So, Mozilla wants to change the ad industry, while preserving user privacy?<p><a href="https:&#x2F;&#x2F;careers.mozilla.org&#x2F;en-US&#x2F;position&#x2F;oXqA0fwH" rel="nofollow">https:&#x2F;&#x2F;careers.mozilla.org&#x2F;en-US&#x2F;position&#x2F;oXqA0fwH</a><p>I am extremely curious to find out what exactly do they have in mind here?

Don&#x27;t forget to check the Firefox 37 for developers [0] page which has more detailed info (it&#x27;s linked from the sidebar of the public release notes).<p>[0] <a href="https:&#x2F;&#x2F;developer.mozilla.org&#x2F;en-US&#x2F;Firefox&#x2F;Releases&#x2F;37" rel="nofollow">https:&#x2F;&#x2F;developer.mozilla.org&#x2F;en-US&#x2F;Firefox&#x2F;Releases&#x2F;37</a>

I understand that the Heartbeat user rating system can be disabled, but I&#x27;m still very much against it and think it will drive a lot of less technically-savvy users mad. I honestly thought it was an April Fools joke at first through reading it.

I just added Firefox 37 to Browserling. If you don&#x27;t want to install it, you can try it live in your browser at this address:<p><pre><code> https:&#x2F;&#x2F;www.browserling.com&#x2F;browse&#x2F;firefox&#x2F;37&#x2F;news.ycombinator.com </code></pre> We&#x27;ve 3 servers handling demo sessions so you may have to wait in the queue to try it.

MSE on Youtube at last.<p>UPDATE: Strangely, media.mediasource.enabled still remained false for me in Firefox 37 (Linux). I had to manually set it to true, and it&#x27;s highlighted, meaning that default is still false... Not sure how it fits with release notes then.

&quot;display: contents&quot; is an interesting addition. It appears to take an element out of the tree, replacing it entirely with its children.<p>Anyone have any thoughts on what that could be used for?

They disabled insecure TLS version fallback. Older versions of the Certicom TLS stack used in older versions of WebLogic are affected for example (change to JSSE).

Working great on Lollipop here. Prior version was crashing quite a bit.