On 16.07.2015 01:22, D C wrote:
I've actually posted a thread on the forums about this. For youtube you can just use HTML5.
To my best knowledge, it depends on the video / the compression algorithm used. For some videos on YouTube HTML5 works just fine, for some Videos you still need Flash.
If you require flash there are alternatives: gnash, lightspark, freshplayerplugin-git, shumway, etc...
On Wed, Jul 15, 2015 at 7:09 PM, Francis Gerund email@example.com wrote:
- Arch linux 64-bit
- 4.0.7-2-ARCH #1 SMP PREEMPT Tue Jun 30 07:50:21 UTC 2015 x86_64
- Firefox 39.0-1
- flashplugin 188.8.131.521-1 (Install Date : Wed 08 Jul 2015)
What is best practice about the current flash vulnerabilites?
I believe your options are:
* to enable Flash on a per-bideo basis for content you "consider safe" or
* to switch to a version of Chrom(ium|e) running Pepper API Flash 184.108.40.206 or newer
* freshplayerplugin-git with Chrom(ium|e) Pepper Flash 220.127.116.11 or newer in Firefox, may be be less safe than ussage from Chrom(ium|e), due to
"This particular implementation doesn't implement any sandbox. [..] This is the same level of security as NPAPI Flash have."
* not using Flash until an update is released.
uninstall flashplugin? Can live without, but many websites still require it.
Since you put it that way, uninstalling Flash has other benefits like making your browser fingerprint "less unique". If it's an option to you, maybe this is the best occasion to quit.