Mart Rootamm <[email protected]> writes:
> As and when Mozilla releases 60.6.2 or 60.7.0, there quickly needs to
> be a new build because of an upstream brouhaha involving the expiry of
> an intermediate signing certificate that disabled all extensions.
>
> To mitigate the issue, existing users can set
>
> xpinstall.signatures.required
>
> to false
>
> in about:config.
This mitigation sounds like a bad idea to me. You could be leaving
yourself open to getting hacked by a man-in-the-middle.
Mark
--
http://gnuzilla.gnu.org
