Firefox and Oracle deprecated Java plugin. But some online banking systems rely on that plugin very much. Soon the only solution would be to use old browser version.
Here I try to solve the yet-to-come problem using Nix.
- I do use an old
firefox-esr
from 18.03 NixOS release (52.9.0esr as of writing) - However Java plugin is used from bleeding edge
nixpkgs-usntable
- Oracle makes some complications for automated JDK fetchers, but we overcome them
with some hacky
curl | sh
from some random script in Internet. We accept Oracle license by using Oracle JDK - But thanks to Nix build environment, that
curl | sh
hardly can harm our system, especially ifsandbox
is enabled. - And because we trust Nixpkgs, fetched tar.gz won't contain backdoors, because it's SHA256 is checked against known one for that JDK distribution.
Something like this:
$ nix-env -i $(nix-build -E "$(curl -L https://gist.github.com/danbst/30165b59996fb403068c74a95b108d6f/raw/firefox-esr-java.nix)") \
-p /nix/var/nix/profiles/per-user/$(whoami)/firefox-esr-java
$ /nix/var/nix/profiles/per-user/$(whoami)/firefox-esr-java/bin/firefox --no-remote -P some-profile
Yep I saw it on N0ts repo. So maybe, have sense on NIx ecosystem point to a local tar.gz?