This is great and it’ll cut out a hell of a lot of the noise being generated, hope other browsers followhttps://twitter.com/gibwar/status/933216114925961219 …
Browsers could detect removal of CSP and disable the extension, report it to distribution channel as malware.
-
-
If the endpoint is compromised then it's generally not worth us trying to fix the problem. What about extensions that install fonts to help with visibility or change colours?
-
Sites can't possibly start whitelisting extensions and banning them all is a terrible user experience.
-
Banning all extensions except UBO would be great UX.
-
Providing a UI to let users DL random code & give it unrestricted access to browser is this century's version of providing UI to download & run .exe's.
-
Yes there are positive uses but almost no users who need the UI for it are trained to evaluate whether it makes sense or whether it's safe.
-
I agree that running extensions can be dangerous but at this point we're essentially talking about taking control of the UA out of the hands of the user and disabling software that they've installed.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.