On 06/11/2012 01:29 PM, Kevin Chadwick wrote: > On Mon, 11 Jun 2012 08:57:35 -0700 > Sid Stamm wrote: > >> One of my worries is that blacklists get big really fast and won't be as >> feasible on mobile devices (cost of updating the lists, downloading and >> storing them). > > Is this the browsers domain especially with heavy criticism of bloated > browsers flying around the internet. I hope it > > a) can be turned off
Absolutely. There will be a preference, and if the feature results in direct connection to Google with the URL, hash and size, we should carefully consider whether to turn it on or off by default. > b) won't take any memory when turned off. We'll work to minimize the resource impact of the client-side code when the feature is disabled. > I for one don't run antivirus on my mail servers because the scanners > themselves can be attacked and it's a central attack point. My > clients aren't Windows anyway and have better protections. I see the > advantage in the case of out of date antivirus but I would have thought > offering OpenDNS (privacy criticised perhaps though) or mozilla DNS etc. > would be a better solution. Currently, this feature only works on windows. I am not sure what the timeline is for Google to get the reputation system rolled out on other platforms (or if they are working on it). > Anonymisation doesn't alleviate all privacy concerns either. Can you elaborate here? I'm interested to hear your thoughts. -Sid _______________________________________________ dev-security mailing list [email protected] https://lists.mozilla.org/listinfo/dev-security
