|
|
|
|
|
|
by user17843
2608 days ago
|
|
|
You are right. It doesn't make any sense to use certificates for this kind of stuff. If an extension turns out to be malicious, you simply deactivate it in the store, and then proactively deactivate the existing installs. This is how Chrome is doing it. But having a certificate does offer Mozilla the feeling of absolute control, which seems to be of primary importance for them nowadays. This is probably the reason release and beta users are not even allowed to deactivate signing in the about:config settings. |
|
|