On Wed, Feb 09, 2005 at 09:08:45PM +0000, Ian G wrote: > The plugin is downloadable from a MozDev site, > and presumably if enough attention warrants it, > Amir can go to the extent of signing it with a > cert in Mozilla's code signing regime.
That only authenticates that Amir wrote the code, not that the code is safe. > Also, as Amir is a relatively well known name in > the world of crypto I suppose you could consider > his incentives to be more aligned with delivering > good code than code that would do you damage. *This* is a reasonable argument, but I'd prefer a second-party review before I install anything. Then again, the only extension I have installed (FlashGot), I manually checked myself. -- Taral <[EMAIL PROTECTED]> This message is digitally signed. Please PGP encrypt mail to me. A: Because it fouls the order in which people normally read text. Q: Why is top-posting such a bad thing? A: Top-posting. Q: What is the most annoying thing on usenet and in e-mail?
pgpeCkZRPZZzq.pgp
Description: PGP signature