Thunderbird:Thunderbird3:ContentSecReview/Plugin Behavior Review

From MozillaWiki
Jump to: navigation, search

Overview

Describe the goals and objectives of the feature here.

Background
  • Original code in nsMessenger.cpp written in 2002 (presumably for SeaMonkey), which added a pref to turn off plugin support in the message pane docshell.
  • Code to make nsMsgContentPolicy allow plugins to be turned on by pref written for Thunderbird 0.6 in bug 237209
  • Review motivated by claim that some change happened in the tb2 -> tb3 timeframe; cvsblame isn't turning up an obvious evidence of this
  • A bit of discussion happened recently in bug 433794
  • If (e.g.) Flash is installed, we may have the same store-and-forward issue as with JS, since Flash has ActionScript
  • The preference appears to currently be applied to all loads in Thunderbird, regardless of whether this is a message or not
Retrieved from "https://wiki.mozilla.org/index.php?title=Thunderbird:Thunderbird3:ContentSecReview/Plugin_Behavior_Review&oldid=172431"