> or simply exempt signature checking if > the extension is on disk. They should check on download only. That would defeat the entire purpose; malware is very commonly sideloading extensions. Mirek