So allowing any random, possibly compromised, possibly installed by malware, add-on to run during the Firefox account login pages (see the list of URLs in this thread) isn’t a security concern to you?
The alternative would be to give addons so little permission that the damage wouldn’t matter.
Effectively break the whole system, i’m fine with the ignore list.
To me it sounds more like they plan on blocking all addons (other than some whitelist of “trusted” addons) on important pages (like the Google login page maybe?).
“Security concerns” is such a bullshit reason. If an add on is such a security concern, why host it in the first place?
I’m disappointed Mozilla is going down this path, but not surprised.
So allowing any random, possibly compromised, possibly installed by malware, add-on to run during the Firefox account login pages (see the list of URLs in this thread) isn’t a security concern to you?
The alternative would be to give addons so little permission that the damage wouldn’t matter. Effectively break the whole system, i’m fine with the ignore list.
To me it sounds more like they plan on blocking all addons (other than some whitelist of “trusted” addons) on important pages (like the Google login page maybe?).