Re: [Tails-dev] [Please review] Fix for: FireGPG susceptible…

Delete this message

Reply to this message
Autore: intrigeri
Data:  
To: The Tails public development discussion list
Oggetto: Re: [Tails-dev] [Please review] Fix for: FireGPG susceptible to devastating JavaScript attacks
Hi,

anonym wrote (28 Oct 2011 14:47:08 GMT) :
> 6c9ea7f Remove irrelewant "Check for PGP blocks in pages" option.
> 0d1a8aa Fore disable inline PGP block detection.


It seems to me the status bar icon that allows to toggle inline
OpenPGP blocks detection is still present. It should not, right?

Also, we must document very well, for end-users, how to deal with the
removal of the encrypt/decrypt/etc. actions on selection.
Maybe leaving these menu entries in place, and replacing their action
with a help popup, would be a nice way to help them migrate to
(slightly) saner habits? Bonus: the same mechanism can be re-used when
we eventually replace FireGPG functionality with a non-web UI.

Other than this, congrats!

Cheers,
--
intrigeri <intrigeri@???>
| GnuPG key @ https://gaffer.ptitcanardnoir.org/intrigeri/intrigeri.asc
| OTR fingerprint @ https://gaffer.ptitcanardnoir.org/intrigeri/otr.asc
| Who wants a world in which the guarantee that we shall not
| die of starvation would entail the risk of dying of boredom ?