|
|
|
|
|
|
by holygoat
3874 days ago
|
|
|
For the record, note that Firefox itself -- code shipped by Mozilla -- still saw your Sync credentials in Sync 1.1. There's no way for it to not do so! In theory we could ship a hotfix that steals those, and still could; we wouldn't need to do it via the FxA content JS, which would only get to see them during account creation. There is no such thing as perfect security. |
|
|