Sorry your browser is not supported!

You are using an outdated browser that does not support modern web technologies, in order to use this site please update to a new browser.

Browsers supported include Chrome, FireFox, Safari, Opera, Internet Explorer 10+ or Microsoft Edge.

Geek Culture / Chrome's security is a little out of control

Author
Message
Phaelax
DBPro Master
22
Years of Service
User Offline
Joined: 16th Apr 2003
Location: Metropia
Posted: 14th Aug 2012 07:09
Link
I just downloaded a zip file (my zelda project) from my own website, and Chrome said because the file is not commonly downloaded it could be dangerous and offers to delete it. Part of its anti-phishing scheme.

"You're not going crazy. You're going sane in a crazy world!" ~Tick
Back to top
Profile PM Email Website
Sergey K
21
Years of Service
User Offline
Joined: 4th Jan 2004
Location:
Posted: 14th Aug 2012 09:16
Link
try download it via IE? or any other download manager?

Advanced Updater for your games!
Back to top
Profile PM Website
Fluffy Rabbit
User Banned
Posted: 14th Aug 2012 09:30
Link
@Sergey-

It sounds like he managed to download it, although only after dealing with Chrome's security crap. I remember the days before Google Chrome, when there was something Called Chromium, an experimental browser that worked a whole lot better than the mainstream version we have now.
Back to top
Profile
Seppuku Arts
Moderator
20
Years of Service
User Offline
Joined: 18th Aug 2004
Location: Cambridgeshire, England
Posted: 14th Aug 2012 12:33
Link
Yep, I had Chrome ask me that the other day, I thought it was odd, but at least it didn't refuse to download the uncommonly downloaded file.

Also, I don't trust IE and I wouldn't expect anybody else to. I've sworn to never use it again (except I had to at my last job, I was tempted to phone IT and tell them to install a better browser). Heck, I actually have an installer of Firefox on an external drive, so should I need to reinstall windows or get a new computer or upgrade windows, I don't have to even touch IE. I have Firefox and Chrome installed and that's all I'll ever need. Chrome's security is getting picky now, but it's not common for it to be a PITA and it's not as if it prevents you from doing what you're wanting to do.

Back to top
Profile PM Website
Fluffy Rabbit
User Banned
Posted: 14th Aug 2012 12:49
Link
@Seppuku-

Internet Explorer isn't that bad of a browser. I use IE9 and it's OK. I agree though that one needs multiple browsers installed in a workplace environment.
Back to top
Profile
Thraxas
Retired Moderator
19
Years of Service
User Offline
Joined: 8th Feb 2006
Location: The Avenging Axe, Turai
Posted: 14th Aug 2012 13:23
Link
Well you can all feel sorry for me, all the computers at work still have IE7 on them.

calm your breasts and stop picking on him.
Back to top
Profile PM Email
Seppuku Arts
Moderator
20
Years of Service
User Offline
Joined: 18th Aug 2004
Location: Cambridgeshire, England
Posted: 14th Aug 2012 13:52
Link
Quote: "
Internet Explorer isn't that bad of a browser. I use IE9 and it's OK. I agree though that one needs multiple browsers installed in a workplace environment. "


In fairness, I've not tried IE9. But I've disliked all of the versions I've ever used and I used to find (maybe it's not the case any more) IE seemed to pose the most security risks. Yes, Chrome maybe anal about security now, but I appreciate that it's trying to look out for me. However, I have my trusted browsers and I am still paranoid about IE and have no reason to change my browser. When it comes to work and using a computer that is not my own, I'll have to deal with it. But in all fairness, the computer at my last job was sluggish and IE7's bloatedness really didn't help and I found if I needed to use the Internet for anything other than sending an email, it'd take me forever. Also, it didn't like Acrobat Reader, so loading PDFs was the other pain. At least MS Word, Outlook, Excel and IQX all worked swimmingly and most of the time that's all I needed for that job thank goodness.

When I did work experience for a newspaper though, I was really pleased because their computers had Firefox and I was ecstatic.

Quote: "Well you can all feel sorry for me, all the computers at work still have IE7 on them."


Believe me, I do.

Back to top
Profile PM Website
Dark Java Dude 64
Community Leader
14
Years of Service
User Offline
Joined: 21st Sep 2010
Location: Neither here nor there nor anywhere
Posted: 14th Aug 2012 14:11 Edited at: 14th Aug 2012 14:11
Link
Quote: "Well you can all feel sorry for me, all the computers at work still have IE7 on them."
I have died.

Your signature is being eras
Back to top
Profile PM Website
MrValentine
AGK Backer
14
Years of Service
User Offline
Joined: 5th Dec 2010
Playing: FFVII
Posted: 14th Aug 2012 16:59
Link
Quote: ""Well you can all feel sorry for me, all the computers at work still have IE7 on them.""




Back to top
Profile PM
xplosys
19
Years of Service
User Offline
Joined: 5th Jan 2006
Playing: FPSC Multiplayer Games
Posted: 14th Aug 2012 17:32
Link
Quote: "all the computers at work still have IE7 on them"


It could be worse. They could have IE8 which is much more bloated, slower, and prone to crash.

Just trying to find a little silver lining.

Brian.

!retupmoc eht ni deppart m'I !pleH

Back to top
Profile PM
bitJericho
22
Years of Service
User Offline
Joined: 9th Oct 2002
Location: United States
Posted: 14th Aug 2012 17:37
Link
Quote: "It could be worse. They could have IE8 which is much more bloated, slower, and prone to crash. "


stfu... jerk! (that's what I'm stuck with at work. I was about to say "it could be worse...", but you beat me to it)

darkBIT TGC Torrent Tracker / File Server - AGK Chat: #agk : irc.devhat.net
Back to top
Profile PM Email Website
MrValentine
AGK Backer
14
Years of Service
User Offline
Joined: 5th Dec 2010
Playing: FFVII
Posted: 14th Aug 2012 17:46
Link
Quote: " (that's what I'm stuck with at work. I was about to say "it could be worse...", but you beat me to it)"


There, See now you can feel better Jerico has it worse apparrently

Back to top
Profile PM
Sergey K
21
Years of Service
User Offline
Joined: 4th Jan 2004
Location:
Posted: 14th Aug 2012 17:52
Link
since the thread changed his topic to Web browsers:
@For all the IE lovers:
Maxthon is IE based browser, that puts google chrome in his little pocket!

Advanced Updater for your games!

Attachments

Login to view attachments
Back to top
Profile PM Website
Indicium
16
Years of Service
User Offline
Joined: 26th May 2008
Location:
Posted: 14th Aug 2012 17:55
Link
Actually, Maxthon defaults to the webkit rendering engine, so it's not IE based.


They see me coding, they hating. http://indi-indicium.blogspot.co.uk/
Back to top
Profile PM
Phaelax
DBPro Master
22
Years of Service
User Offline
Joined: 16th Apr 2003
Location: Metropia
Posted: 14th Aug 2012 19:59
Link
Quote: "Well you can all feel sorry for me, all the computers at work still have IE7 on them."


I been there. I don't know why companies insist on only using IE.

"You're not going crazy. You're going sane in a crazy world!" ~Tick
Back to top
Profile PM Email Website
MrValentine
AGK Backer
14
Years of Service
User Offline
Joined: 5th Dec 2010
Playing: FFVII
Posted: 14th Aug 2012 20:44
Link
Quote: "I been there. I don't know why companies insist on only using IE."


I do not know why some companies are still using software from a decade ago...

and I do not know why they are still using ancient software...

and I dunno why some businesses cannot see the investment value in I.T. ... Even Bakeries know they can benefit from up to date I.T. infrastructures... [Chain ones anyway]

If I was you guys I would push for updates, week after week... just submit a letter for upgraded systems and sftware and eventually you will be heard, otherwise you will continue to suffer...

I feel your pain... Just submit a letter as much as often as you can, it does work!

Back to top
Profile PM
Seppuku Arts
Moderator
20
Years of Service
User Offline
Joined: 18th Aug 2004
Location: Cambridgeshire, England
Posted: 14th Aug 2012 21:18
Link
Quote: "I do not know why some companies are still using software from a decade ago..."


Decade ago? That's not so bad, particuarly if they're rather not budget in the upgrade as it may not bring in a bigger return. Depends on the business I guess.

However, try for outdated? How about 20-30 years old? The Cash Coverters I worked at was using MS-DOS and they've used it for a large number of years and the manager never saw the point of upgrading.

Back to top
Profile PM Website
MrValentine
AGK Backer
14
Years of Service
User Offline
Joined: 5th Dec 2010
Playing: FFVII
Posted: 14th Aug 2012 22:20
Link
ah my bad it is 2012... lol I meant software from the mid 90's lol, and yeah a lot of local, especially public bodies were still using DOS based applications, the amount of time they would save from upgrading the software and networking... man... Customers would not have to wait 3 millennia? for a simple response... oh yeah that book is over... wait a minute... oh there...

its not about a graphical interface, but more a user accessibility and also networking optimisation... a lot of programs they use just are not up to the job... it is rediculous... look at your local eletronics store [Comet for my fellow UKers] they even use I believe OS/2? or some kind of DOS system... I often wonder what all that 300+Watts of innefficient power supply do? they should upgrade to ITX systems if they want to use 2D simple applications... and ITX has been around for a decade almost... the power savings would be phenominal... *sigh* too much grief... sorry lol

and all the while, home users get billed more for their electrical usage...

Back to top
Profile PM
Phaelax
DBPro Master
22
Years of Service
User Offline
Joined: 16th Apr 2003
Location: Metropia
Posted: 14th Aug 2012 23:02
Link
Anyone still using an AS/400 at work?

The browser isn't about budget, its about support. They don't want to worry about compatibility and additional security issues. There was a time when only my department was allowed to get away with using FF.

"You're not going crazy. You're going sane in a crazy world!" ~Tick
Back to top
Profile PM Email Website
mr Handy
17
Years of Service
User Offline
Joined: 7th Sep 2007
Location: out of TGC
Posted: 15th Aug 2012 00:48
Link
I am using Kaspersky Internet Security and IE8 (because XP). I never had any security problems. Captain Obvious says, that there is no browser that is better than antivirus software.

Back to top
Profile PM
The Wilderbeast
19
Years of Service
User Offline
Joined: 14th Nov 2005
Location: UK
Posted: 15th Aug 2012 02:17
Link
I disagree - Chrome without antivirus is a much better option


Raspberry Pi Forum
Back to top
Profile PM
Travis Gatlin
16
Years of Service
User Offline
Joined: 14th May 2009
Location: Oxford, Alabama
Posted: 15th Aug 2012 02:21
Link
No antivirus period is a better option for me. I've always seen antivirus software to be bloated and useless. I haven't used it for 5 years and have yet to gain one virus.

http://www.3dartistonline.com/user/Travis%20Gatlin
You can find my latest work here. Please comment on my work and tell me what you think!
Back to top
Profile PM Email Website
BiggAdd
Retired Moderator
20
Years of Service
User Offline
Joined: 6th Aug 2004
Location: != null
Posted: 15th Aug 2012 02:28 Edited at: 15th Aug 2012 02:29
Link
Quote: "I haven't used it for 5 years and have yet to gain one virus"

How would you know?

I use Norton Internet Security, It used to be really bloated and slow, but they've really made some vast improvements.
Also handles my firewall with a breeze.

I've recently switched to Chrome, as Firefox has become rubbish again. Its full of memory leaks, constant freezes and crashes.

The only thing I don't like about Chrome is the GPU acceleration of html5 canvases (over the size of 256x256). They've actually messed up the implementation on commands such as drawImage. Simply switching from 256x256 to 257x257 can change the framerate from 200 to 10.
There is a work around, but its a pain to implement it efficiently.

Back to top
Profile PM
MrValentine
AGK Backer
14
Years of Service
User Offline
Joined: 5th Dec 2010
Playing: FFVII
Posted: 15th Aug 2012 02:36
Link
Quote: "Firefox has become rubbish again. Its full of memory leaks, constant freezes and crashes."


I wasted 9 hours last week trying to get HTML5 video to work in FF, and concluded FF was broken, and I discovered it was... and now this concludes my theory... I have never liked FF, admittedly they try hard to keep up to date with everything but I wouth rather a solid browser like IE9 cannot wait to use IE10 with all the CSS3[draft] components...

Back to top
Profile PM
Fluffy Rabbit
User Banned
Posted: 15th Aug 2012 05:00
Link
@BigAdd-

That's so arbitrary! The user should be able to choose whether or not they want to render a canvas on the graphics card.
Back to top
Profile
Airslide
20
Years of Service
User Offline
Joined: 18th Oct 2004
Location: California
Posted: 15th Aug 2012 05:26 Edited at: 15th Aug 2012 05:28
Link
I know code signing helps when it comes to IE9's screening, not sure about Chrome. Doesn't really apply to ZIP files regardless I guess, so I don't know. Maybe Google has a way to upload your file for virus scanning like they allow web owners to do with websites that have been flagged as having malicious content?

EDIT: Not to imply that is a true fix for the issue, seeing as it'd be ridiculous if you were forced to have your file scanned by Microsoft, Google, Apple, and Mozilla if everyone implemented such a practice.
Back to top
Profile PM Email
BiggAdd
Retired Moderator
20
Years of Service
User Offline
Joined: 6th Aug 2004
Location: != null
Posted: 15th Aug 2012 12:16
Link
Quote: "That's so arbitrary! The user should be able to choose whether or not they want to render a canvas on the graphics card."


I know! There should be some boolean option the developer can set (there exists such a thing for java, so why not html5?)
Its for any canvas that excedes an area of 256x256, but what if someone wanted GPU acceleration below this area?

Seems a bit silly to me.

Back to top
Profile PM
mr Handy
17
Years of Service
User Offline
Joined: 7th Sep 2007
Location: out of TGC
Posted: 15th Aug 2012 12:24
Link
Quote: "I've always seen antivirus software to be bloated and useless."

You may have rootkit that just DDOSing sites and nothing else. You'll never notice if your PC is in botnet. Virus is not just shiny banner with naked woman appearing on your desktop.

Once I've downloaded free demo from Softpedia, demo has rootkit driver that was detected during installation, but not when downloading.

Back to top
Profile PM
Phaelax
DBPro Master
22
Years of Service
User Offline
Joined: 16th Apr 2003
Location: Metropia
Posted: 15th Aug 2012 17:44
Link
For all you know, you could've popped in a mariah carey CD in your computer and ended up with a rootkit. (hey, it happens)

"You're not going crazy. You're going sane in a crazy world!" ~Tick
Back to top
Profile PM Email Website
bitJericho
22
Years of Service
User Offline
Joined: 9th Oct 2002
Location: United States
Posted: 15th Aug 2012 18:30
Link
I just run with the MS security essentials. Never gets in the way, uses very few resources.

darkBIT TGC Torrent Tracker / File Server - AGK Chat: #agk : irc.devhat.net
Back to top
Profile PM Email Website
MrValentine
AGK Backer
14
Years of Service
User Offline
Joined: 5th Dec 2010
Playing: FFVII
Posted: 15th Aug 2012 18:43
Link
Quote: "I just run with the MS security essentials. Never gets in the way, uses very few resources."




Back to top
Profile PM
Seppuku Arts
Moderator
20
Years of Service
User Offline
Joined: 18th Aug 2004
Location: Cambridgeshire, England
Posted: 15th Aug 2012 19:41
Link
NOD32/ESET Security. Used to use Kaspersky, but then it failed to kill a virus, only the combined effort NOD32/ESET and Malware bytes could murder it.

Also, Kaspersky used to eat up resources sometimes when playing a game and I'd lag (even in game mode), I love Kaspersky to be fair, but ESET does the job and without being bloated. I would recommend internet security, because you don't know what you've downloaded, not all security risks make themselves known, then the next minute you could be a victim of fraud (hate to sound like a scare monger, but a keylogger could reveal personal information to somebody you don't want viewing them).

Back to top
Profile PM Website
mr Handy
17
Years of Service
User Offline
Joined: 7th Sep 2007
Location: out of TGC
Posted: 16th Aug 2012 14:34
Link
Quote: "just run with the MS security essentials. Never gets in the way, uses very few resources"

I had annoying "add pck to exe" problem with that program. Chance to compile was < 10%. Also it slows opening images from web.

Quote: "Also, Kaspersky used to eat up resources sometimes when playing a game and I'd lag (even in game mode),"

Same here. Not often, but happens. I just don't want to reinstall OS now, but sure it will help.

About rootkit from licence CD - yeah, there was such "copy protection". Nasty.

Back to top
Profile PM
bitJericho
22
Years of Service
User Offline
Joined: 9th Oct 2002
Location: United States
Posted: 16th Aug 2012 14:36
Link
Quote: "Also it slows opening images from web."


Well yeah... don't you want your scanner checking images from the web?

darkBIT TGC Torrent Tracker / File Server - AGK Chat: #agk : irc.devhat.net
Back to top
Profile PM Email Website
MrValentine
AGK Backer
14
Years of Service
User Offline
Joined: 5th Dec 2010
Playing: FFVII
Posted: 16th Aug 2012 16:59
Link
Quote: "I had annoying "add pck to exe" problem with that program."


Never had that issue once I added the folders to be on the ignore list...

you should try my guide for setup...

Quote: "Well yeah... don't you want your scanner checking images from the web?"


I doubt he is aware of Images having bugs embedded in them... but yeah I hardly have slow image issues these days... sure its not just your connection slowing it down?

Back to top
Profile PM
mr Handy
17
Years of Service
User Offline
Joined: 7th Sep 2007
Location: out of TGC
Posted: 16th Aug 2012 23:02
Link
I have KAV and MSSE on W7 PC. KAV alone works very fast. MSSE alone works slow. Only I had to ignore DBP compiler and projects folders in KAV to skip check of my exes for extra speed.

Back to top
Profile PM
Indicium
16
Years of Service
User Offline
Joined: 26th May 2008
Location:
Posted: 17th Aug 2012 18:38
Link
How can an image have a virus embedded? Surely no code embedded would actually be executed?


They see me coding, they hating. http://indi-indicium.blogspot.co.uk/
Back to top
Profile PM
MrValentine
AGK Backer
14
Years of Service
User Offline
Joined: 5th Dec 2010
Playing: FFVII
Posted: 17th Aug 2012 19:06
Link
http://www.google.co.uk/url?sa=t&source=web&cd=7&ved=0CGMQFjAG&url=http%3A%2F%2Fanswers.yahoo.com%2Fquestion%2Findex%3Fqid%3D20101015125351AAJiRfX&ei=-2ouUNy1I-eK0AWJ0oDgDA&usg=AFQjCNHrZLeAoA_DpNm4yA-3uOSum0h6mw&sig2=tmsrLbVm4xEcBYVQpIUKkw

Hopefully this link can amuse the question

Back to top
Profile PM
The Zoq2
15
Years of Service
User Offline
Joined: 4th Nov 2009
Location: Linköping, Sweden
Posted: 17th Aug 2012 19:25
Link
I think they can... Back when I had my PSP, I wanted to install custom firmware on it. And to do that you put a image file in the image folder and opned it. Which would start the "update". Sadly I never got it working since my PSP was updated to a higher firmware...
Back to top
Profile PM Email
bitJericho
22
Years of Service
User Offline
Joined: 9th Oct 2002
Location: United States
Posted: 17th Aug 2012 19:30 Edited at: 17th Aug 2012 19:31
Link
Quote: "How can an image have a virus embedded? Surely no code embedded would actually be executed?"


Here's an example:

http://blog.commtouch.com/cafe/malware/complex-pdf-hides-malware-inside-xfa-which-is-inside-png-%E2%80%93-not-an-image/

The same type of hack is theoretically (and has been) used on any image because there must be a program that has to open and display the image, and there are/could be holes in said program (be it an image viewer, browser, whatever).

Quote: "I think they can... Back when I had my PSP, I wanted to install custom firmware on it. And to do that you put a image file in the image folder and opned it. Which would start the "update". Sadly I never got it working since my PSP was updated to a higher firmware... "


Yep, it was an exploit in the software that displayed the image.

darkBIT TGC Torrent Tracker / File Server - AGK Chat: #agk : irc.devhat.net
Back to top
Profile PM Email Website
Indicium
16
Years of Service
User Offline
Joined: 26th May 2008
Location:
Posted: 17th Aug 2012 20:10
Link
That seems silly, surely when loading an image you'd just load it and shove the data in an array to be sent to the GPU?


They see me coding, they hating. http://indi-indicium.blogspot.co.uk/
Back to top
Profile PM
Dar13
17
Years of Service
User Offline
Joined: 12th May 2008
Location: Microsoft VisualStudio 2010 Professional
Posted: 17th Aug 2012 20:12
Link
Quote: "That seems silly, surely when loading an image you'd just load it and shove the data in an array to be sent to the GPU?"

Not necessarily. Proprietary formats, proprietary implementations, programmer mistakes in the handling of the image data, there's a lot of different stuff that goes on.

Follow WTLD's progress on Twitter
Git repository for WasTeLanD
Back to top
Profile PM Email
Fluffy Rabbit
User Banned
Posted: 17th Aug 2012 23:40
Link
I say that if I'm using a web browser that executes code embedded in images, I deserve to get my computer infected. If you can put a virus in an image that displays on a web page, you can put a virus anywhere. It just doesn't seem likely IMO. I mean, COME ON!
Back to top
Profile
bitJericho
22
Years of Service
User Offline
Joined: 9th Oct 2002
Location: United States
Posted: 18th Aug 2012 00:33
Link
Quote: "I say that if I'm using a web browser that executes code embedded in images, I deserve to get my computer infected. If you can put a virus in an image that displays on a web page, you can put a virus anywhere. It just doesn't seem likely IMO. I mean, COME ON! "


It happens way more often than you think. I wouldn't doubt if every major browser has discovered flaws that could lead to such an attack, and I'm sure there's many more flaws yet to be discovered.

darkBIT TGC Torrent Tracker / File Server - AGK Chat: #agk : irc.devhat.net
Back to top
Profile PM Email Website
Aaron Miller
19
Years of Service
User Offline
Joined: 25th Feb 2006
Playing: osu!
Posted: 18th Aug 2012 08:40
Link
Quote: "I say that if I'm using a web browser that executes code embedded in images, I deserve to get my computer infected. If you can put a virus in an image that displays on a web page, you can put a virus anywhere. It just doesn't seem likely IMO. I mean, COME ON!"

Prior to a certain update to the PSP, you were able to inject code in a .TIF file that wasn't formatted correctly. This caused the TIF loader to get a buffer overflow and the code would run on the PSP. I played a homebrewed version of "snake" that way. It was fun!

Likewise, the same thing can happen anywhere. That's why code security (and code analysis) is so important. All someone has to do is find a single flaw in your program (or exploit previous flaws or known issues) in such a way that code is run.

Check out my website! - Blog
Twitter
Back to top
Profile PM Email Website
Back to top

Login to post a reply

Server time is: 2025-05-18 13:50:29
Your offset time is: 2025-05-18 13:50:29