But yes, it's obvious that malicious developers can do whatever they want. 100% of all xpi packages out there now are all unsigned, untrusted, unaudited, etc.
99%. Yahoo's latest toolbar beta is signed. :-)
Gerv _______________________________________________ mozilla-crypto mailing list mozilla-crypto@mozilla.org http://mail.mozilla.org/listinfo/mozilla-crypto