AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |
Back to Blog
Alternative to flux for mac free3/28/2023 You know enough to look for the source and check it out. But, how many developers are you going to keep trusting this way? You can't normalize every extension having those permissions! Read and change, not just read all websites. I appreciate the developer's time on this and don't mean to disparage their effort. The only way I'd be okay with letting extensions access and change contents of webpages if they specify the website url they're going to access, and those are the only websites they can access (Reddit Enhancement Suite does this) A quick google search give me thisĮver let someone's code have access to everything on every webpage, including all of your financial and personal ones you use? Well you're doing it right now. This is the case when you need to be paranoid. I'm tired of the anti-security comments that come up against people commenting about bad security practices, even though they're restrictive and paranoid. The only way to stop it from updating itself is to go to the manifest file and removing the update url. You might trust the developer to not do anything bad, or not accidentally leak his private key for the extension. You viewed the source code, but the extension checks for an update every couple hours and updates itself. There's no way for me to stop the extension from updating in the options. Especially when the extension can auto update without my permission. But I don't think it is unwarranted to be paranoid about letting an extension have those permissions. You're right about me being a security nut.
0 Comments
Read More
Leave a Reply. |