←back to thread

All extensions disabled due to expiration of intermediate signing cert

(bugzilla.mozilla.org)
1318 points xvector | 1 comments | 04 May 19 01:31 UTC | HN request time: 0.253s | source
Show context
Grue3 ◴[04 May 19 07:47 UTC] No.19825053[source]
What kind of idiot thought that the add-ons I have personally installed on my browser need to have a capability to be remotely disabled despite literally nothing being changed.

This is absolutely inexcusable. I want to see everyone being responsible for this "verified add-ons" fiasco fired from the team (after they roll it back of course).

replies(7): >>19825074 #>>19825084 #>>19825094 #>>19825120 #>>19825147 #>>19825255 #>>19825358 #
swalladge ◴[04 May 19 07:55 UTC] No.19825074[source]
Exactly. If me/firefox has verified the signature (or approved the download) when downloading or updating the addon, that should be all that's necessary. Why does firefox have to check signatures constantly?
replies(2): >>19825114 #>>19825160 #
egwor ◴[04 May 19 08:06 UTC] No.19825114[source]
in case it was revoked? Seems fairly reasonable approach
replies(1): >>19825148 #
1. TeMPOraL ◴[04 May 19 08:14 UTC] No.19825148[source]
Disabling with no option of user override is not reasonable. It only creates unnecessary dependency on third parties.

When product recalls happen, the manufacturer isn't taking your product away by force.