On 3/30/11 11:49 PM, cyberzen wrote: > David E. Ross a écrit : >> On 3/30/11 12:59 PM, Ray_Net wrote: >>> David E. Ross wrote: >>>> Because I prefer to archive all software that I install, I download the >>>> .xpi files for extensions and then install them from my local hard >>>> drive. Because I log the changes made when I install software, I >>>> disable my Internet connection prior to doing the installation in order >>>> to prevent extraneous changes to my system (e.g., resynchronization of >>>> my clock, downloading of E-mail). >>>> >>>> Today, I tried to install the 1.3.5 update to AdBlock Plus. It failed >>>> to install, with the message: >>>> SeaMonkey could not install the file at >>>> file:///D:/downloads/software/....... >>>> because: Signing could not be verified. >>>> -260 >>>> >>>> When I retried the installation with my Internet connection enabled, it >>>> worked without any problems. >>>> >>>> How can I install extensions and other add-ons without an Internet >>>> connection? >>>> >>>> Three days ago, I cross-posted this here and to mozilla.dev.extensions >>>> with Followup-to set to the latter. I received no replies. This time, >>>> I'm not cross-posting this. Can anyone help me? >>>> >>> Could this >>> >>> http://groups.google.com/group/FFToolbar-Group-Bugs/browse_thread/thread/4c7a3b740f316f88 >>> >>> help ? >> >> This is described as a "dirty solution". It is indeed too dirty for me. \ >> >> >>> or this: >>> http://www.microdevsys.com/WordPress/2009/02/16/firefox-firefox-could-not-install-the-file-at-because-signing-could-not-be-verified/ >> >> I will try suppressing OCSP-checking the next time I install an >> extension update. >> >> However, the Ad-ons Manager should recognize that the .xpi file is local >> and not from the Internet and that there is no Internet connection. In >> that case, the Ad-ons Manager should bypass signature verification. >> > > I was happy to know about a point I was ignoring > by the way what is the advantage of being off Internet while installing > an extension (or whatever piece of software) that is of interest only if > being on-line ? > if it should be compromised isn't it better to have it verified even if > on-line is needed ? >
I am logging changes to my Windows registry and to the files on my C-drive. I don't want my clock to synchronize to external time servers, my E-mail client to download messages, etc, all of which would introduce extraneous changes to the log. I generally download software from sources that I trust. If I download from a new source, I check the downloaded file with TWO different anti-virus applications, after updating their virus databases. -- David E. Ross <http://www.rossde.com/> On occasion, I might filter and ignore all newsgroup messages posted through GoogleGroups via Google's G2/1.0 user agent because of spam from that source. _______________________________________________ support-seamonkey mailing list [email protected] https://lists.mozilla.org/listinfo/support-seamonkey
