This is the implementation bug for the UX work carried out in Bug 1053890 regarding how downloads flagged as "malware", "potentially unwanted", or "uncommon" are handled in Firefox. More information: - https://bugzilla.mozilla.org/attachment.cgi?id=8481334 - https://bugzilla.mozilla.org/show_bug.cgi?id=1053890#c38

Release Note Request (optional, but appreciated) [Why is this notable]: This is something I think we should note and document for users, maybe in the support knowledgebase, since it will affect potentially a large percentage of user downloads. [Suggested wording]: User warnings defined for downloads that may be malware. [Links (documentation, blog post, etc)]: (Still needed) Tyler I'm cc-ing you because I'm not sure if there's someone specific in SUMO who might want to do this.

Paolo: you had mentioned this being complicated. Does it need to be broken down?

(In reply to :Gavin Sharp [email: gavin@gavinsharp.com] from comment #5) > Paolo: you had mentioned this being complicated. Does it need to be broken down? I did the breakdown and added my own estimates directly on the bugs.

What version is this fixed in? You gave it an "iteration," but that number doesn't correspond to any Firefox version, AFAIK This need to be implemented quickly, to prevent users from turning off the feature entirely to get around a false positive. And Google's methodology of using multiple antiviruses is highly prone to false positives.

Marco, you morphed this bug from a metabug into a breakdown, but now there's no meta bug left to see when the feature is complete? On top of that it's very confusing as there were already loads of bugs duplicated to this one, which are now showing as RESOLVED FIXED, even though the bug isn't fixed yet. (In reply to Terrell Kelley from comment #7) > This need to be implemented quickly, to prevent users from turning off the > feature entirely to get around a false positive. And Google's methodology of > using multiple antiviruses is highly prone to false positives. Note that we already partially disabled this feature in release Firefox to reduce the number of false positives.

Turned into a breakdown based on Comment #6. Bug 1068664 and Bug 1068660 are currently assigned and being worked on in IT 36.1 Bug 1068656 is blocked by Bug 1068664. (In reply to Gian-Carlo Pascutto [:gcp] from comment #8) > Marco, you morphed this bug from a metabug into a breakdown, but now there's > no meta bug left to see when the feature is complete? On top of that it's > very confusing as there were already loads of bugs duplicated to this one, > which are now showing as RESOLVED FIXED, even though the bug isn't fixed yet. > > (In reply to Terrell Kelley from comment #7) > > This need to be implemented quickly, to prevent users from turning off the > > feature entirely to get around a false positive. And Google's methodology of > > using multiple antiviruses is highly prone to false positives. > > Note that we already partially disabled this feature in release Firefox to > reduce the number of false positives.

Is there something landed in 35 that should get noted here? I'm not clear on which of the bugs landed or in progress actually have user-facing impact worth noting.

(In reply to Lukas Blakk [:lsblakk] use ?needinfo from comment #10) > Is there something landed in 35 that should get noted here? I'm not clear > on which of the bugs landed or in progress actually have user-facing impact > worth noting. No, bug 1068656 is the visible front-end work. I've added the "relnote" keyword there.

Do you have any telemetry data on people disabling the feature in about:config? I thought maybe you might need to force the option back on upon release, if disabling was common enough.