On 4/7/16, toki <toki.kant...@gmail.com> wrote: > All: > > In reading > http://arstechnica.com/security/2016/04/noscript-and-other-popular-firefox-add-ons-open-millions-to-new-attack/ > is the same type of vulnerability is possible with AOo extensions? > > jonathon
"By piggybacking off the capabilities of trusted third-party add-ons, the malicious add-on faces much better odds of not being detected." The spiral of restrictions only helps the #infosec rock stars continue being in the spotlight and keep their jobs. This is akin to someone "discovering" that a forks and knives can be used as lethal weapons. So let's restrict kitchenware. Better yet, let's implement a security measure by tying the forks and knife to the table to restrict movement of the fork and knife only a few inches from the dish. But then some "security researcher" will discover that the wire can be cut by malicious users. So the rope will be replaced by a steel wire. Then one day one security researcher will discover that malicious users can use the steel wire to strangle people. This can go on ad-infinitum. Hey, just found that pens, those innocuous devices used for writing and present in the pockets of numeroous geeks, can be taken by surprise by a bystander and poke you in the eye!. This is a grave security vulnerability. Let's put all pens under lock!. #sarcasm FC FC -- During times of Universal Deceit, telling the truth becomes a revolutionary act Durante épocas de Engaño Universal, decir la verdad se convierte en un Acto Revolucionario - George Orwell --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@openoffice.apache.org For additional commands, e-mail: dev-h...@openoffice.apache.org
