Folks, I’m seeing a lot of people recommend setting xpinstall.signatures.required to false to fix the Firefox extensions issue.

⚠️ DO NOT DO THIS! ⚠️

It disables signature checking on extensions which means that you open yourself up to malicious extensions if you install any new ones or if you have auto updates on.

Either follow the instructions here nixnet.xyz/ by @amolith

Or go the officially recommended (but less private) route: mastodon.ar.al/@aral/102039553

#Firefox

@aral There's reasons any some poeple recommend it.

Downloading something to install on your system from a mass surveillance company's server IS NOT acceptable. Letting Mozilla collect a shitload of data, AND store it on Google servers, ijust to update an expired intermediate certificate is NOT acceptable either.

Not to mention the fact Debian's build has been compiled without "Studies" support, meaning the latter "solution" won't work on Debian.

@amolith

Follow

@aral And surfing naked on 2019's polluted shitty "web" ID not acceptable either.

On the other hand, even though it's a dirty workaroud, disabling signature check temporarily MIGHT be accepted *only if you know* what your doing:
- You have disabled auto updates for addons
- You make sure you don't install any update or new extension.
- And of course, you don't forget to to enable it again once you have a fix available/installed.

@amolith

Sign in to participate in the conversation
La Quadrature du Net - Mastodon - Media Fédéré

Bienvenue dans le media fédéré de la Quadrature du Net association de défense des libertés. Les inscriptions sont ouvertes et libres.
Tout compte créé ici pourra a priori discuter avec l'ensemble des autres instances de Mastodon de la fédération, et sera visible sur les autres instances.
Nous maintiendrons cette instance sur le long terme.