Download scanning performance

Brian Smith brian at briansmith.org
Fri Aug 23 17:21:02 UTC 2013


On Fri, Aug 23, 2013 at 9:42 AM, Paolo Amadini
<paolo.02.prg at amadzone.org> wrote:
> On 23/08/2013 18.18, Monica Chew wrote:
>> I think it makes less and less sense as time goes on to consider porting the old IAttachmentExecute scanner. Windows 8 now comes with built-in virus scanning, so building scanning into Firefox means that Windows clients will scan twice, in addition to the Application Reputation API checks.
>>
>> http://windows.microsoft.com/en-US/windows-8/windows-defender#1TC=t1
>>
>> In addition, we could close all the bugs you mention below :) I support removing nsDownloadScanner entirely.
>
> I agree with this, with the understanding that, to do this, we'll have
> to mark downloaded files as coming from the Internet zone regardless of
> the Security Zone Policy of the system, as mentioned. I also think this
> is an acceptable trade-off for the benefits you mentioned.

I also think that is a fine, fine plan. I do think it is important to
mark files as being in the Internet zone when they are downloaded from
the internet.

Cheers,
Brian
-- 
Mozilla Networking/Crypto/Security (Necko/NSS/PSM)



More information about the firefox-dev mailing list