On 1/25/2016 11:01 AM, Wolf, Daniel <da.w...@neopost.com> wrote: > There is no purpose to user control if it's used to infect people's > browsers with malicious extensions that Mozilla have no central ability > to inspect.
The same argument can be made for support for Apple's walled garden app-store. Sorry, I prefer the animating contest of liberty - including the power to royally screw something up, including my Firefox profile - to the stifling blanket of security - especially when said blanket is chock full of holes big enough to drive a mack truck through. > People in the enterprise may not understand how fundamentally Firefox > is being screwed up for 99% of users by Mozilla's current lack of > control. I call FUD on this one. Do you have any reliable source of numbers showing that even 33% of users are having their Firefox experience 'screwed up' by the lack of enforced signing of Addons? No? I didn't think so, because any such numbers would be lies. I have been managing a smallish (50-80 over the years) install base of both Firefox and Thunderbird since before Firefox 1.0 was released, and *not once* have I encountered a user who got infected with a malicious Addon. > This is why I tell people to use Chrome every chance I get. Fine, so what are you doing here? > Daniel Wolf > > -----Original Message----- > From: Enterprise [mailto:enterprise-boun...@mozilla.org] On Behalf Of > Tanstaafl > Sent: Saturday, January 23, 2016 11:42 AM > To: enterprise@mozilla.org > Subject: Re: [Mozilla Enterprise] Add-on Signing in ESR > > On 1/23/2016 12:35 PM, Tanstaafl <tansta...@libertytrek.org> wrote: >> Thanks Kev... >> >> While this is a step in the right direction, this is indeed great news >> for those running the ESR version. But it doesn't help people like me >> who prefer the latest stable. I will still be relegated to running an >> unbranded version just so I can maintain full control of my browser >> experience. >> >> Why is Mozilla *eliminating* user control? I thought that is what >> Mozilla was all about? I still have not seen even one, single rational >> argument for removing the pref to disable this. > > Not to mention no rational argument debunking Dan Stillman's proof of concept > Addon demonstrating how trivial it is to get a malicious Addon through the > automated approval process, thereby proving that all this does is deny users > control of their own browser experience in pursuit of a *false* sense of > security. > > http://danstillman.com/2015/11/23/firefox-extension-scanning-is-security-theater _______________________________________________ Enterprise mailing list Enterprise@mozilla.org https://mail.mozilla.org/listinfo/enterprise To unsubscribe from this list, please visit https://mail.mozilla.org/listinfo/enterprise or send an email to enterprise-requ...@mozilla.org with a subject of "unsubscribe"
