No Surprises

Great, swift reaction @ the NoScript debacle.

Does an extension updating itself to a newer version without asking or notifying the user constitute a change?

I want to thank you guys for this welcome change. I’m assuming the reason for this at least in part is the whole Noscript situation. One of the reasons that I like recommending Mozilla is that it offers layers of protection against people that abuse the default settings in software. Most people won’t care enough to find out what that means.

This provides a major level of protection against spammers and is a major victory in the fight for all of us.

There also needs to be the ability to ‘opt-out’ without adversely affecting the functionality.

If one add-on author believes that they need functionality in another add-on that needs to be negotiated with the author of the other add-on in order to become a part of that other add-on. Alternatively, the author wishing the functionality could simply create another add-on that pairs with theirs and document that that fact.

It is simply wrong on so many levels to allow cross-dependencies.

Making the addons restore your preferences on uninstall will be very hard to meet, since:
1) The user might have changed things since, at which point it’s hard to tell what you want to do (e.g. home page prefs, or even the pile of things FasterFox does)
2) You don’t actually get a reliable uninstall notification. Safe mode + uninstall from there?

I do agree with the other things though, that’s definitely a positive step towards empowering the user. Or something, I’m not used to words like that.

Being “upfront” about their revenue is part of “tell me what you’re changing”. Still, opt-in is the only reasonable solution to situations like the recent one involving NoScript changing AdBlockPlus filter settings to whitelist ads on its sites. Like most others, I would have voluntarily enabled the ads if NoScript had been upfront about what was going on, because I like and use that extension.

Part of my job is to fix things when users of another browser get hijacked this way. This policy is entirely reasonable and consistent with why I tell my users to install Firefox on their home computers.

‘If an extension is upfront about the fact that it is going to change the search engine, that should be fine.’

So it’s fine to tell someone ‘I’m going to change your home page and then you can change it right back when I’m done’ but it isn’t fine to say ‘I want to change your home page – do you want me to?’

‘That’s how a number of extensions get revenue is by changing the search engine. It’s not necessarily related to the extension, but it is a fact of life.’

Some extensions may do. Some extensions, for all I know, get their revenue from their authors mugging people in the streets. Just because things happen doesn’t mean they’re right.

Addon’s shouldn’t open up a web page after install to tell you what has changed. They should be required to submit detailed changelogs to AMO so that they appear in the “Show Information” pane of the Updates dialog so that users can see what has changed BEFORE they decide whether to upgrade or not.

I think this policy change is important and necessary to retain the trust users have in Mozilla, and in the extensions provided through the software interface on Mozilla software.

This is not, by any means, a complete fix to the problem at hand. Mozilla needs to enforce limits on what extensions can and cannot do, whether via changes to Mozilla software or by increased oversight of extensions available via the Mozilla website.

Extensions like AdBlock Plus and NoScript that make changes affecting security of Mozilla software should always be reviewed by AMO before being made available to users. Obviously, the “trusted” system is not sustainable, as it allowed authors to sneak in changes without oversight.

That said, the Mozilla community is to be commended for how quickly this issue was brought to light and is being dealt with. Closed-source vendors are notorious for not being responsive to issues like this.

It would seem Mozilla could implement a Public/Private key encryption system for each add-on based upon a given domain name or author ID. A given add-on could not alter another unless it was capable of exchanging keys.

How about Mozilla stop allowing some extensions to be installed while the browser is CLOSED and without an option to uninstall them? *cough*Java Quick Starter*cough*

How about programs like skype?
It installs (without asking and impossible to unselect) an extension in Firefox.

Not fine.

The answer is the three-pronged approach:

(1) Enact and enforce a policy regarding scope of authority for add-ons
(2) Implement an improved process for installing (and uninstalling) add-ons
(3) Implement the functionality of the best of the best of the add-ons into the core functionality of Firefox

About “Uninstalling the add-on restores the user’s original settings if they were changed”

What if user have some pref set to A, plugin changes it to B and some time later, user changes it to C. Should the plugin revert it back to A? If “that pref” is homepage for example, I think user will be quite unhappy with it.

I think the plugin should restore the settings to its previous values ONLY if they are not changed between installation and uninstallation of the plugin.

Perhaps add some helper functions which extension authors would call and they will do this “properly”.

And yet it happens again. The Aero Fox and Aero Fox Silver themes now include Ask.com Chrome Search extension with the updates to them. There was no opt out nor was their any notification that this would be installed. This should never have been put in the public section. Besides hijacking the default search, this also affected the Awesome Bar not allowing access to about:config.

Per the author’s website, he will be doing this with all his themes: http://www.virtusdesigns.net/

This should never happen with themes hosted at AMO.

See Bug 502479