Allow Application Reputation lookups when the blacklist/whitelist is missing

ASSIGNED
Assigned to

Status

()

P3
normal
ASSIGNED
a year ago
15 hours ago

People

(Reporter: francois, Assigned: dimi)

Tracking

(Blocks: 1 bug)

Firefox Tracking Flags

(Not tracked)

Details

(Reporter)

Description

a year ago
Currently, we disable remote Application Reputation lookups if either the  blacklist or whitelist are empty:

https://searchfox.org/mozilla-central/rev/67f38de2443e6b613d874fcf4d2cd1f2fc3d5e97/toolkit/components/downloads/ApplicationReputation.cpp#1266-1287

Chrome, on the other hand will happily do it even if the whitelist is not available:

https://cs.chromium.org/chromium/src/components/safe_browsing_db/v4_local_database_manager.cc?l=417&rcl=bd5b0a0372ff4d793715cda5269b9d5c7f806b2e

That's a safer default.
(Reporter)

Updated

a year ago
Priority: -- → P3
(Reporter)

Updated

a year ago
Blocks: 1397938
(Assignee)

Updated

15 hours ago
Assignee: nobody → dlee
Status: NEW → ASSIGNED
You need to log in before you can comment on or make changes to this bug.