Sorry to get back to the original thread Hybrid :)
How can people submit malicious addons and become immediately availble even before someone from Mozilla will test it. This is surely a huge flaw?
Printable View
Sorry to get back to the original thread Hybrid :)
How can people submit malicious addons and become immediately availble even before someone from Mozilla will test it. This is surely a huge flaw?
hey Cider..
when browsing the addons area https://addons.mozilla.org/en-US/firefox you will notice that when the addons are approved there is a Green "Add to Firefox" button, if the "Add to Firefox" button is Yellow and has something along the lines of "Hasn't been approved by Mozilla" and caries a warning about un-signed extensions can be harmful etc etc
when there yellow it means they haven't been reviewed by Mozilla so alot of malware/spware writers are using this Timeframe to upload a malicious addon thay may or maynot work and to get as many people to install the addon before it get's Reviewed and removed from the addon site.
just fake
Hmmm,
As the saying goes: "caveat emptor" (let the buyer beware).Quote:
Good ol opensource :)
The way I look at it, running unchecked plugins is a bit like running alpha and beta software in a production environment?................a wise person doesn't do it.
That's why we have standalone "labrats" or "crash test dummies" Load them up to their gizzards with AV and antimalware, firewall and either a sandbox or VM. Personally, as I tend to use older hardware, I go for the sandbox, as VM tends to be rather resource demanding.
Agreed but the home user doesnt know whats happening :P
I suppose they should read the disclaimer
I get so irratated when supporting "old people" because they want to READ everything which I suppose is the correct way.