[tbb-dev] Tor Browser and Mozilla addon verification

Georg Koppen gk at torproject.org
Mon Feb 20 09:11:00 UTC 2017

bancfc at openmailbox.org:
> On 2017-02-18 03:44, bancfc at openmailbox.org wrote:
>> Hi, does Tor Browser check addon code for tampering for addons
>> downloaded from the Mozilla server?
> Our usecase is running the foxyproxy addon to be able to use TBB with I2P.
> On 7.0a1 it (the Debian packaged foxyproxy version) works when you
> disable xpinstall.signatures.required.
> However this workaround doesn't work with the latest addon-manager
> version from Mozilla. It prompts for a browser restart but after it's
> still not enabled after doing it.

Not sure what you mean with "latest addon-manager version from Mozilla"
but it seems to me we are doing no such checks.


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.torproject.org/pipermail/tbb-dev/attachments/20170220/3839b4af/attachment.sig>

More information about the tbb-dev mailing list