This may be old news. If it is then sorry :)[...]
[...]
Obviously, it would be good if Mozilla products had some sort of protections for users who don't appreciate the dangers of extensions (and for those who do, of course). Several proposals have been made on the Mozillazine thread [2], the most obvious of which is not allowing XPInstall to be initiated except in response to mouse clicks [3]
I (personally) think that the best protection against those things is to _use_ your *eye's* and your *brain*. But unfortunedly it seems that too many people don't have at least the last one :-(
[1] http://www.spywareguide.com/product_show.php?id=610 [2] bugzilla.mozilla.org/show_bug.cgi?id=238684 [3] http://bugzilla.mozilla.org/show_bug.cgi?id=238684
AFAIK are Mozilla and FireFox displaying a warning before installation of XPI's.
Regards
Heiko
--
Don't try to send your junk to this mail account because it will be deleted unseen
_______________________________________________
Mozilla-security mailing list
[EMAIL PROTECTED]
http://mail.mozilla.org/listinfo/mozilla-security
