←back to thread

All extensions disabled due to expiration of intermediate signing cert

(bugzilla.mozilla.org)
1318 points xvector | 1 comments | 04 May 19 01:31 UTC | HN request time: 0s | source
Show context
nimbius ◴[04 May 19 15:21 UTC] No.19826981[source]
another month, another browser vendor that does something inconceivably bone-headed in "the service of users."

first it was deprecating ALSA for pulseaudio, then it was pocket, then tiles and their suggestions, then that weird video/voice chat thing, and then running "studies" as if my use of the browser was some tacit acceptance of my position as a guinea pig of the internet. Today every extension I use to make the internet even remotely usable is just...deactivated?

without my consent or knowledge?

enough. im switching to waterfox. Icecat is even worthwhile at this point. Anything that respects my freedom and intelligence as a user.

replies(1): >>19827021 #
jopsen ◴[04 May 19 15:26 UTC] No.19827021[source]
This appears to be a mistake.

It's clearly bad that things can break this way. But this happened because a certificate expired.

Mozilla didn't have to require signatures and certificates for extensions. They did so because they want to protect users.

Protecting users with signature schemes, increase complexity and, thus, the risk of debacles like this.

replies(1): >>19827141 #
thekingofh ◴[04 May 19 15:44 UTC] No.19827141[source]
People take their privacy seriously. Our addons were disabled. I was browsing for a few minutes until I saw ads and didn't realize what was going on. Unacceptable that the default to an expiring signature is to disable them completely.
replies(1): >>19827945 #
1. jopsen ◴[04 May 19 17:42 UTC] No.19827945[source]
You would have said the opposite if an expired signature had caused your browser to be compromised!!!

The default behavior seems desired to me.

The problem was that the certificate was allowed to expire.

A have ton of respect for the fact that it was enforced!