Description:
Signing messages has become a very common userflow. It is very easy for new and experienced users to sign something with eth_sign without checking because its something that happens very often.
Users should be able to disable eth_sign with a option so that this vulnerability in MetaMask does not happen.
Purpose:
Protect users from using eth_sign without enabling it in options.
Extension/Mobile/Both:
both
Images/Attacments: