By: Steffen Wilberg

Steffen Wilberg — Tue, 04 Sep 2007 21:25:10 +0000

StartSSL offers free SSL certs:

https://www.startssl.com/?app=1

Just go and get one for your server.

By: dafi

dafi — Tue, 04 Sep 2007 06:44:59 +0000

Please don't hate me but I'm not sure this approach is correct for poor extension's authors like me.
AMO doesn't publish my extensions because Remora app uses the ugly sandbox model.
- Many extensions live in sandbox for eternity so I can't use the AMO security trust
- I've my site on sourceforge the best free FOSS web space but I haven't SSL support
So I must buy HTTPS space and buy a certificate.
The self signed key seems the only way possibile for poor programmers.

Why disabling extension?? Should be simpler disable *only* update so user know he/she must check for new version.
I understand this can be awful but user can continue to use extensions

thanks
dafi

Comments on: Add-on Security Restrictions Landed

By: Steffen Wilberg

By: dafi