01-22-2020 10:48 AM
01-22-2020 10:48 AM
Hello Insiders, today we’re releasing build 81.0.396.0 to the Dev Channel. It’s another small update this week as all the excitement from our Stable launch last week winds down (see this post thanking you for all your help in getting us there: https://techcommunity.microsoft.com/t5/discussions/a-huge-thank-you-to-this-insiders-group/m-p/11114...). For those of you on ARM devices, we also released native ARM64 builds to the Beta channel last week. Now, all of the most noteworthy changes:
A special thanks to all our Insiders who checked out our Stable channel over this past week. We hope you continue being Insiders so we can keep seeing you here!
01-22-2020 11:47 AM
01-22-2020 01:56 PM - edited 01-22-2020 02:02 PM
I see that the option to block Mixed Content has arrived in Dev, which is welcome news for SysAdmins like me trying to keep our network secure. I'm confused about the implementation though.
The help text says "Insecure content is blocked by default on secure sites", but when I run some tests on BadSSL.com, there seems to be no blocking occurring. I don't see any sort of warning either.
https://mixed-script.badssl.com/ - HTTPS page loaded script successfully from HTTP
https://very.badssl.com/ - Image loaded from HTTP and form that submits to HTTP on HTTPS page
There is also an inconsistent use of the "Not Secure" address bar icon, which appears on HTTP pages. It is normally grey and easily missed by the average user. It becomes /!\ Not Secure when you encounter a HTTPS error, which is very eye-catching. I hope in the future that it will be standard /!\ Not Secure on all HTTP sites to remind users they are visiting unsecure sites.
If you are not ready to make that step yet, would it at least be possible to add detection for the following major security issues, and show the /!\ Not Secure icon?
http://http-password.badssl.com/ - Password field on HTTP page
http://http-login.badssl.com/ - Login form on HTTP page
http://http-credit-card.badssl.com/ - Credit card input form on HTTP page
--EDIT-- After further testing, it seems that the icon does change for these issues, but only when you activate the element. Can you promote this check to the initial paint, so no user interaction is required?
01-22-2020 02:45 PM
01-22-2020 02:57 PM
01-22-2020 06:08 PM
01-22-2020 11:23 PM
I still have a problem with app which using external certificate.
How it's works?
1. I have Java app which using installed local trusted certificate
2. After lauching app in browser i have communicate=: "NET::ERR_CERT_COMMON_NAME_INVALID"
3. After all I can login to the app, use for few minutes
4. After couple minutes app frozes and I can only refresh page to reload app
5. After reload I have communicate "NET::ERR_CERT_COMMON_NAME_INVALID" again
On other browsers I don't have that issue.
Problem is in beta/dev/canary. In stable version I didn't check this.
Also I can't tell you what is that app :) Sorry :(
01-23-2020 12:45 AM
Was exited about the links and profile switching - but I'm confused about how it works. What is "work or school links" and how do you determine that a link is as such? How do you determine if a profile is a "personal profile" or "work or school profile"? Is it based on the type of account logged into the profile?
I'm still missing the option of "Choose the profile to open links from external programs", so I ALWAYS open links from Outlook (or other programs) in the browser profile I have chosen.
Sorry for sounding grumpy, but the whole "Default profile for links" is the single biggest annoyance of Chromium browsers and I feel like it should be a relatively easy fix - easier than the new profile options in this update and so much easier to understand for people.
01-23-2020 01:37 AM
The local temperature on the NTP showed up (correctly) in Celsius at some point after the previous update. This update seems to have regressed to Fahrenheit. Not that I can know for sure as it only gives the temperature in "degrees" (e.g. "27°") which could be anything. Changing the "language & content" has no effect.
It would also be nice to be able to set the language and country differently. I prefer seeing content in English but English is not an official language where I live. Windows lets me do this already so it'd be great if Edge could just use the system locale as default.
01-23-2020 03:59 AM
Has history syncing been enabled yet? Or is that a per-profile-basis thing? I recall there was an update weeks ago that said that history syncing was re-enabled, but I haven't been able to activate the option. It still just says something along the lines of "We'll activate it when it's ready"
01-23-2020 04:44 AM
Is Custom Search sync on the roadmap? I love using custom searches, but they're a pain to set up all over on every new machine. Seems like it shouldn't be any harder than synchronizing Favorites. Please?
01-23-2020 09:54 AM
Not sure if it's the same team that work on the mobile version, but are there plans to add <meta name="theme-colour"...> support there? I like how this is integrated on the desktop for installed apps, but after all, this feature was first introduced on chrome for android iirc.
p.s. Thanks for the title bar size change on installed apps as well