On 2/6/10 8:08 AM, David E. Ross wrote:
> Add-ons there go through some degree of review before being available to
> the public; before such reviews are concluded, add-ons require a user to
> logon to his or her own account and receive a warning that the review is
> still underway.
Unfortunately that's no longer true, the "login" requirement was
deemed too burdensome. Now the user just has to check a box "Let me
install this experimental addon". A mere speed bump to pwnage.
I, too, hated the login requirement -- not because it was too hard
but because it was too easy. We're dangling forbidden fruit in front
of unsuspecting people ("this thing might fit your needs, but you
shouldn't install it"). The unreviewed addons should go on a
completely separate site and not show up in AMO search results, just
as Firefox "experimental" nightly builds aren't available from the
product pages on mozilla.com.
The checkbox idea is even worse -- everything on the page exudes
"You're on the trusted Mozilla site, they wouldn't let anything bad
happen to you would they?" An analogy I've used before: if you went
to your favorite bakery and they were offering "experimental"
muffins you might expect them to taste bad. You would not expect
them to be laced with heroin because the shop is giving shelf space
to anything dropped off at the back door by who knows who.
"experimental" does not cover it.
-Dan
_______________________________________________
dev-security mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-security
