#241 closed

"The updateURL must be secure." Bad requirement

Reported by Scriptish | September 18th, 2011 @ 09:52 PM

1 it doesnt allows to update scripts without ssl cert
2 where is the security?
if the router is captured by hacker it can add exploit code into generic scripts from the sites and the result is the same - system is pwned

3 it doesnt allow developer to make script, storing on free hosting, auto-updatable
4 we can download the code with xhr and save it into about:config and execute, but it is not good solution

No comments found

Please Sign in or create a free account to add a new ticket.

With your very own profile, you can contribute to projects, track your activity, watch tickets, receive and update tickets through your email and much more.

New-ticket Create new ticket

Create your profile

Help contribute to this project by taking a few moments to create your personal profile. Create your profile ยป

Shared Ticket Bins

People watching this ticket