KilliK wrote:I dont know if this has been asked before, but is this restriction going to be forced in Thunderbird too?
possibly better off asking in the Thunderbird Forum. in that Daily Thread, rsx or JoeS may know
KilliK wrote:I dont know if this has been asked before, but is this restriction going to be forced in Thunderbird too?
LoudNoise wrote:Unless things have changed recently, not at the moment anyway.
For the purpose of off-site hosting? Sounds like a foul joke to me.patrickjdempsey wrote: As I mentioned previously, signing was originally designed entirely for this purpose of off-site hosting, and therefore was always used with a "updateURL".
Addons hosted on HTTP self-hosted sites had to be signed for security reasons as it was the only way to guarantee that the extension that was downloaded was actually the correct one. Addons hosted on HTTPS sites did not have to be signed because the connection was protected. The original policy predates the era of cheap and ubiquitous encryption. And the huge PITA that was self-signing made it worthwhile to just go ahead and host on AMO. Mozilla has supposedly somewhat remedied that with easier self-signing tools they released recently.globalplayer wrote:For the purpose of off-site hosting? Sounds like a foul joke to me.patrickjdempsey wrote: As I mentioned previously, signing was originally designed entirely for this purpose of off-site hosting, and therefore was always used with a "updateURL".