Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Then it's time to mark all but the most used and obviously trustable extensions as untrusted.

Then they can take whatever staff they have, and review them properly.

And accept the fallout of their staffing choice if it means drop in Chrome usage or whatever else.

They want to leave a gaping malware hole, it's time to hold them accountable dammit.



The problem here is tons of non-technical users get those untrusted extensions installed.

The solution is to actually delist any extension they can't adequately review.


> Then it's time to mark all but the most used and obviously trustable extensions as untrusted.

That's basically what Firefox has done.


More, actually. Some excerpts from https://blog.mozilla.org/firefox/firefox-recommended-extensi... : "Our team evaluates all content under consideration for the Recommended Extensions program.", "... subject to ongoing re-evaluations to ensure they continue ...", "... not only perform as they promise, but do so at an exceptional level. For instance, there may be many ad blockers out there, but not all ad blockers are equally effective.", (and last but not the least) "... undergo full code review by staff security experts ..."




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: