Jaqui Greenlees writes: > any extention to a browser should by default be marked as insecure. > or the developers of the browser could be held liable for damages for > not marking it as such. > ( flash included )
I agree. And they should also be held responsible for any mistakes they make that breach security. This includes buffer overflows, for which there is no excuse. > if this attitude is adopted, then it makes end user accept > responsability for breaking security. Yes, but most software tends to drift away from this ideal, and Firefox no doubt will do that, too. People want bells and whistles, not security. -- Anthony _______________________________________________ Mozilla-security mailing list [email protected] http://mail.mozilla.org/listinfo/mozilla-security
