[Go Faster] Default system add-ons and signing

Mike Connor mconnor at mozilla.com
Mon Sep 21 15:39:23 UTC 2015


Right, so in other words, an attacker can trivially modify/replace omni.ja,
and the only evidence would be a failed partial update.  It's not durable,
but it can be repeated easily out of band.

On 21 September 2015 at 11:28, Ben Hearsum <bhearsum at mozilla.com> wrote:

> On Fri, Sep 18, 2015 at 10:18:06PM -0400, Mike Connor wrote:
> > I'm not sure what you mean by " None of the rest of the Firefox code is
> > signed so I don't know that we need to sign these other bits."
> >
> > Every binary is signed, and I thought we signed omni.ja, but seemingly
> not
> > (I consider this a problem).
>
> We don't do any explicit signing of omni.ja. On Windows, all binaries
> (dlls/exes) are signed. On Mac, I'm pretty sure everything is protected by
> the .app-level seal - so omni.ja is protected by that. On Linux, nothing is
> signed.
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.mozilla.org/pipermail/gofaster/attachments/20150921/6ef7a54f/attachment.html>


More information about the Gofaster mailing list