Greasemonkey Insecurities

18 Jul 2005

Today's most interesting mailing list posting:

Uninstall Greasemonkey altogether. At this point, I don't trust having it on my computer at all. I would think that whoever is in charge of addons.mozilla.org should immediately remove the Greasemonkey XPI and post a large warning in its place advising people to uninstall it.

By the way, "Greasemonkey Hacks" is DEAD until we fix this. And I'm posting a big red blinking warning on every page of diveintogreasemonkey.org advising visitors to uninstall it, until all of these security holes are closed. This is why God invented the <blink> tag.

Posted on Monday, July 18, 2005 at 4:57 PM

3 TrackBacks

Many people are wondering how to debug AJAX application. In fact, the idea of cross plateform development isn't that easy to debug, there is Javascript calls, and there is XML server response in the other side. And if you have two errors in the two sid

Read More »
Debugging AJAX applications | July 19, 2005 1:50 AM
Hasta nuevo aviso habría que desactivar el Greasemonkey (una fantástica extensión para Firefox) debido a un grave problema de seguridad. Lo mejor será activarlo cuando se necesite puntualmente.... Read More »
Greasemonkey, inseguro | July 19, 2005 2:06 AM
GreaseMonkey is a popular Firefox extension which allows lots of great enhancements to your browser using third party GreaseMonkey scripts. Yesterday a serious security vulnerability was found which exposes the hard drive content of GreaseMonkey users ... Read More »
Critical Security Vulnerability with GreaseMonkey (Firefox Extension) | January 17, 2007 10:28 AM

1 Comment

It is rather serious vulnerability which Mark found. I have blogged the details here.

Angsuman Chakraborty | July 19, 2005 9:55 AM | Reply

Leave a comment

About this Site

Prev Next

Explore This Site

Recent Comments

Recent Entries

  • A Night at the Museum

    A few weeks ago, as a surprise gift for our anniversary, my wife got us a night's stay at the Revolving Hotel Room, part of...

  • In Defense of Marriage

    Three years and one day ago, I got married. And then shortly after that, I wrote a post about getting married, which has become one...

  • What Sarah Palin Is Saying

    Sarah Palin has been unsurprising in her criticisms of Barack Obama's credentials and policies, fulfilling the traditional role of the vice presidential candidate being the...

  • Details of Execution

    Sometimes if you do something very difficult, and you do it really well, the end result is that your achievement becomes completely invisible. I mentioned...

  • Bill Gates and the Greatest Tech Hack Ever

    Bill Gates has pulled off one of the greatest hacks in technology and business history, by turning Microsoft's success into a force for social responsibility....

1999 2000 2001 2002 2003 2004 2005 2006 2007 2008 2009
  Jan Jan Jan Jan Jan Jan Jan Jan Jan Jan
  Feb Feb Feb Feb Feb Feb Feb Feb Feb  
  Mar Mar Mar Mar Mar Mar Mar Mar Mar  
  Apr Apr Apr Apr Apr Apr Apr Apr Apr  
  May May May May May May May May May  
  Jun Jun Jun Jun Jun Jun Jun Jun Jun  
Jul Jul Jul Jul Jul Jul Jul Jul Jul Jul  
Aug Aug Aug Aug Aug Aug Aug Aug Aug Aug  
Sep Sep Sep Sep Sep Sep Sep Sep Sep Sep  
Oct Oct Oct Oct Oct Oct Oct Oct Oct Oct  
Nov Nov Nov Nov Nov Nov Nov Nov Nov Nov  
Dec Dec Dec Dec Dec Dec Dec Dec Dec Dec