Slashdot Mirror
10-Day Patch Guarantee Not Mozilla's Policy
narramissic writes "Mozilla has officially backpedaled from a pledge made at Black Hat by the company's director of ecosystem development, Mike Schaver, to fix any critical security bugs in the browser within 'Ten ****ing Days.' On Friday, Mozilla security chief Window Snyder wrote in a blog posting that the 10-day pledge is not Mozilla's policy, saying 'We do not think security is a game, nor do we issue challenges or ultimatums.' And today, the open source browser maker issued a statement retracting the pledge."
No, the reason Mozilla forced Debian to rename Firefox is even stupider than that. Debian fixed their build process. They didn't actually patch the browser. They simply corrected the build process to work under Debian. That was enough to prevent them from using the name "Firefox".
Sorry, but that's a lie. They DID (and do, to this day) patch the browser, the patch in "iceweasel" is a friggin' megabyte in size, and while lot of it is to the build process, there's a lot in C code too. And it's not just the name change.
Even that was not enough to prevent them from using the name. Mozilla just wanted to review the patches, which was not good enough for Debian. Horribly onerous, eh?
No, the only jerks here are Debian. As usual.
What are you, a lemming or something?
Maybe not
They simply corrected the build process to work under Debian.
Yet it builds fine on all the other distros? No, it sounds like they hacked FF to work on a broken system.
Personally I can't wait until WebKit and Konqueror finish remerging code. Once Konqueror gets a Windows build, it's game-over for Firefox. It's a better browser - it just hasn't, until recently, run on Windows.
Konq is an awful browser. It was slow and couldn't render a great number of sites. Konq isn't going to displace FF anytime soon.