[Go Faster] Default system add-ons and signing
mconnor at mozilla.com
Mon Sep 21 15:39:23 UTC 2015
Right, so in other words, an attacker can trivially modify/replace omni.ja,
and the only evidence would be a failed partial update. It's not durable,
but it can be repeated easily out of band.
On 21 September 2015 at 11:28, Ben Hearsum <bhearsum at mozilla.com> wrote:
> On Fri, Sep 18, 2015 at 10:18:06PM -0400, Mike Connor wrote:
> > I'm not sure what you mean by " None of the rest of the Firefox code is
> > signed so I don't know that we need to sign these other bits."
> > Every binary is signed, and I thought we signed omni.ja, but seemingly
> > (I consider this a problem).
> We don't do any explicit signing of omni.ja. On Windows, all binaries
> (dlls/exes) are signed. On Mac, I'm pretty sure everything is protected by
> the .app-level seal - so omni.ja is protected by that. On Linux, nothing is
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Gofaster