Waterfox: UX, privacy, security: consider defaulting to disallow unsigned extensions
With Stylish 3.1.3 as an example, a comparison …
Firefox 61.0.1 user experience
- about:config?filter=xpinstall.signatures.required
- observe the yellow alert, Here be dragons! …
- accept the risk
- make
xpinstall.signatures.requiredfalse - aim to install the extension
- observe the yellow alert, the generic caution about unverified add-ons
- Add
- at
about:addons, observe a single yellow alert, with a generic link – _More information_ – that works - eventually, receive a heartbeat message about unavailability of Stylish, with a link – _Learn more_ – that works.
Visually
Stylish - Custom themes for any website could not be verified for use in Firefox. Proceed with caution. More Information
– with (in my case) more information https://support.mozilla.org/1/firefox/61.0/FreeBSD/en-US/unsigned-addons redirecting to https://support.mozilla.org/en-US/kb/add-on-signing-in-firefox?as=u&utm_source=inproduct.
Learning more:
(3.1.3 is not yet blocked, but that's a separate issue – off-topic from Waterfox.)
…
grahamperrin
All 4 comments
The comparison …
Waterfox 56.2.1 user experience
- aim to install the extension
- observe the yellow alert, the generic caution about unverified add-ons
- Add
- at
about:addonsthe uppermost yellow alert includes a link that does not work - the line below the first yellow alert is another link that does not work
- the yellow alert for Stylish includes a link that does work
- no heartbeat – no hint that a prior version (3.1.1) is blocked.
Common UX
A welcome to Stylish, for example:
Related
- https://github.com/MrAlex94/Waterfox/commit/436898372f8589d4a241e924084119358c58bf45 (2018-05-15) modified checks for compatibility; and the
about:addonsGUI to enable checking is not effective - about:addons 'Check to see if your plugins are up to date' · Issue #336 …
- https://www.reddit.com/comments/7ijjzb/-/dqzgb5h/ (2017-12-09) about heartbeat prompts in the context of SHIELD
- https://wiki.mozilla.org/Firefox/Shield
Meta, tracking: #538
grahamperrin
on 12 Jul 2018
Thoughts
With Waterfox 56.2.1 it's too easy to install unsigned, possibly malicious add-ons.
True: there's a yellow alert at installation time, but those dialogues (and related reference materials) are sometimes verbose and/or difficult for an end user to understand.
Assume that the user will pay little or no attention. PEBKAM, but this should not detract from the wish for Waterfox to take a more cautious approach.
Critically: learning to ignore non-working alerts – https://github.com/MrAlex94/Waterfox/issues/695#issuecomment-404402781 steps 4 and 5, for example – increases the likelihood of end users paying insufficient attention to genuine alerts.
Suggestion
xpinstall.signatures.requiredtrueby default- for users who require unsigned add-ons, document what's required.
– is that it?
grahamperrin
on 12 Jul 2018
Sorry, but this is one of the features as even disabling wasn't working for a while on Firefox before they completely disabled it. A lot of older add-ons won't be signed and there's quite a few users use this. If you so wish, disable it for yourself :-)
MrAlex94
on 12 Jul 2018
Thanks, understood. It'll help me to draft something for an FAQ.
grahamperrin
on 12 Jul 2018
Related issues
grahamperrin
·
3Comments
bitwombat
·
4Comments
9jkh
·
4Comments
empimp
·
4Comments
hook321
·
4Comments
Most helpful comment
Sorry, but this is one of the features as even disabling wasn't working for a while on Firefox before they completely disabled it. A lot of older add-ons won't be signed and there's quite a few users use this. If you so wish, disable it for yourself :-)