On 03.06.2011 20:49, Paul B. Gallagher wrote: --- Original Message ---
> Jay Garcia wrote: > >> If Mozilla is the only one supplying the updates then how do you >> figure that's a dangerous move, i.e., How is malware,etc. going to >> get injected into a Mozilla-0nly supplied update? By your thinking, >> Microsoft automatic updates are also "dangerous". > > Without taking a position either way, how does the user know it's really > Mozilla supplying the update? Is there some kind of authentication > process, or do we just have to close our eyes and trust? > > If I were a malware author, I would LOVE to be able to tap into one of > these update pipelines and infect millions of trusting users within > hours. But I'm not, so I don't understand what safeguards are in place, > if any. > > I was briefly an AOHell sufferer in the days Phillip describes, and I > absolutely HATED having my computer taken captive without notice and > without my consent to install something they thought was essential. > Fortunately, that's not Mozilla's way. > I can only go by example since Mozilla hasn't enabled this feature yet so there isn't any history yet. However, as long as Microsoft hasn't had any problems with their auto-updates I would have to assume that MS would be a prime target for malware authors to invade. AFAIK there hasn't been any malware attached to MS updates. -- *Jay Garcia - Netscape Champion* www.ufaq.org Netscape - Firefox - SeaMonkey - Thunderbird _______________________________________________ support-seamonkey mailing list support-seamonkey@lists.mozilla.org https://lists.mozilla.org/listinfo/support-seamonkey