Join the AMA (Ask Me Anything) with the Firefox leadership team to celebrate Firefox 20th anniversary and discuss Firefox’s future on Mozilla Connect. Mark your calendar on Thursday, November 14, 18:00 - 20:00 UTC!

搜索 | 用户支持

防范以用户支持为名的诈骗。我们绝对不会要求您拨打电话或发送短信,及提供任何个人信息。请使用“举报滥用”选项报告涉及违规的行为。

详细了解

Extensions: Are they all SAFE???

more options

Greetings everyone,

I just want to know if I can trust Firefox extensions?

What has me worried and what made me create this thread was that Firefox extensions are given access to all the data in my Firefox App which includes my browsing history, bookmarks and so on.

Of course I'll only be installing the official Firefox extensions from this link but I'm very afraid that I'll be giving the Firefox extensions I install access to all of my data...

Thank you for any help!

Greetings everyone, I just want to know if I can trust Firefox extensions? What has me worried and what made me create this thread was that Firefox extensions are given access to all the data in my Firefox App which includes my browsing history, bookmarks and so on. Of course I'll only be installing the official Firefox extensions from this link but I'm very afraid that I'll be giving the Firefox extensions I install access to all of my data... Thank you for any help!

所有回复 (1)

more options

There are a couple relevant support articles, but I'll also give you my opinion:

It's like any software you install on your computer or any app you install on your phone: you are placing trust in a combination of the review process and the author's integrity.

Review Process. Some add-ons get human eyes on every update before they are made available for download, while others have human eyes only on the first version and then software reviews the updates. Since software can be fooled, automated review cannot assure safety and you need to apply some skepticism, as described in that second article.

Author's Integrity. You may know the old New Yorker cartoon: "On the Internet, no one knows you're a dog." It's truly difficult to be sure that an author has their users' best interests at heart. If an add-on is clearly documented, has reviews that look real, and shares its source code, that is better than an add-on with little explanation, fake-sounding reviews, and no links to its source code. You also may want to consider the number of users, but that isn't always a reliable indication.

I always think about why an add-on needs the permissions it requests. Sometimes, they are excessive, which is a red flag.

But enough theory: if you have a question about a specific add-on, feel free to mention which one it is.