Feeds

Mozilla kicks rebel coders to kerb with Firefox 3.6 'lockdown'

Components directory to become Firefox-only playpen

Choosing a cloud hosting partner with confidence

Mozilla plans to debut a "lockdown" feature in Firefox 3.6 to force third party application developers to toe the line by preventing them from adding their own code into the browser's components directory.

"Firefox is built around the idea of extensibility - it’s part of our soul," proclaimed Mozilla's Jonathan Nightingale in a blog post earlier this week.

"Users can install extensions that modify the way their browser looks, the way it works, or the things it’s capable of doing. Our add-ons community is an amazing part of the Mozilla ecosystem, one we work hard to grow and improve."

However, the open source browser maker has proved it isn't averse to slamming the door on rebellious coders.

Nightingale said from Firefox 3.6 onwards - including future beta releases of that iteration of the browser - it would prevent third party applications from adding code directly to the components directory.

"There are no special abilities that come from doing things this way, but there are some significant disadvantages," noted Nightingale.

He said such components are added via a stealth installation making them invisible to the user, which prevents them from being able to manage or indeed disable the extensions through the add-ons manager function.

"What’s worse, components dropped blindly into Firefox in this way don’t carry version information with them, which means that when users upgrade Firefox and these components become incompatible, there’s no way to tell Firefox to disable them," he said.

"This can lead to all kinds of unfortunate behaviour: lost functionality, performance woes, and outright crashing – often immediately on startup."

Effectively, from hereon in the components directory will be a Firefox-only playpen. Mozilla hopes this lockdown will make the browser more stable for the user. ®

Choosing a cloud hosting partner with confidence

More from The Register

next story
Download alert: Nearly ALL top 100 Android, iOS paid apps hacked
Attack of the Clones? Yeah, but much, much scarier – report
NSA SOURCE CODE LEAK: Information slurp tools to appear online
Now you can run your own intelligence agency
Microsoft: Your Linux Docker containers are now OURS to command
New tool lets admins wrangle Linux apps from Windows
Microsoft adds video offering to Office 365. Oh NOES, you'll need Adobe Flash
Lovely presentations... but not on your Flash-hating mobe
You stupid BRICK! PCs running Avast AV can't handle Windows fixes
Fix issued, fingers pointed, forums in flames
HTML5 vs native: Harry Coder and the mudblood mobile app princes
Developers just want their ideas to generate money
prev story

Whitepapers

Driving business with continuous operational intelligence
Introducing an innovative approach offered by ExtraHop for producing continuous operational intelligence.
Why CIOs should rethink endpoint data protection in the age of mobility
Assessing trends in data protection, specifically with respect to mobile devices, BYOD, and remote employees.
Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Reducing the cost and complexity of web vulnerability management
How using vulnerability assessments to identify exploitable weaknesses and take corrective action can reduce the risk of hackers finding your site and attacking it.