"Do not create an extension that requires users to accept
bundles of unrelated functionality, such as an email
notifier and a news headline aggregator. If two pieces of
functionality are clearly separate, they should be put
into two different extensions, and users should have the
ability to install and uninstall them separately,"
Kudos to Google. Now if only they applied the same logic to the advertisements between the search box and the actual results. Search results and advertisements only represent the same functionality when my search query expresses my intent to purchase something.
I know advertising is Google's business model, so before anyone points that out, let me point out that I've also never been offered the opportunity to purchase the ability to use Google's search without advertising. They should follow their own policy here and give us the ability to uninstall advertising from Google even if it does come with a monthly subscription fee to do so.
I think it would be really helpful if Google disabled automatic updates for extensions. Letting third parties to push modified code to clients without any user intervention is just so insecure that I can't believe it actually is a feature. Just the fact that Chrome updates automatically is bad enough.
I agree that automatically-updating extensions has the potential to be somewhat insecure. However, I don't see how the alternative could be a better alternative. If they didn't auto-update, then the majority of users would likely never update their extensions, and the ones that do would be unlikely to audit the extensions that they update for malware. Do you audit the apps on your phone before you update them?
To mitigate the problem, Chrome does have the permissions model to limit what extensions can do, and if an extension requires more permissions after an update, Chrome will give you a warning, along with an option to remove the extension. Your best defence is to not grant overly broad permissions when you first install the extension.
Regarding your comment about Chrome's automatic updates being "bad", I disagree wholeheartedly - the web platform would not be able to move forward at the same rate that it can today. One of the biggest problems with IE was simply that it was updated so infrequently that it was really hard to support the large percentage of outdated versions. We'd be in the same situation with Chrome if it didn't auto-update. Furthermore, I trust Chrome to make good decisions for my security. I'd rather have my browser updated quickly so that vulnerabilities in the browser can be fixed quickly before they affect me.
>>Just the fact that Chrome updates automatically is bad enough.
Don't agree with that. As someone who has had the misfortune of having to support out-of-date browsers, anything that can be done to force browser upgrades is a plus in my book. I'd rather have a few people angry at me than deal with another IE update-style browser that just gets lost out there with nearly zero hope of updating.
For example, I applauded Mozilla for this[1] move.
>>"We don't think self-selection will ultimately get us to the place we need to be," he said. "We will force 3.6 on 3.5 stragglers not choosing to update to Firefox 4 or 3.6 (give them the stick). We feel comfortable making the major update choice for users because a) the versions are very similar and b) we'd rather lose a small amount of miffed users than leave a large amount of users vulnerable."
Keeping an old browser version is something I wish a user could not do unless they went out of their way to install a nightly by themselves and that nightly should nag them to death after 15 days to stop using it. The internet would be a much cooler & smoother place if all webapp-devs could assume that everyone is using the most up-to-date, cutting-edge browser. I wish Google would enforce this by choosing 2 saturdays every month to simply break Youtube for anyone on an out-of-date browser.
Back when extensions were first released I wrote one, and over the years it became pretty popular and built up a good (200k plus) install base. I foolishly took some money for it last year, and the buyers stuck ads in it.
The rating have declined from 4.5 stars to 2.5, but I still feel bad for the users.
Somewhat ironically, it is actually open source, and the code is available for anyone to fork. I beleive there is a fork out there now too, so hopefully that will do better.
That's nice. Maybe they could see to the other end of the equation and stop making me jump through hoops to install non-approved extensions when I choose to.
If the extension can modify webpages could the extension MITM my surfing? E.g. harvesting login data, any form data, cookies and other stuff? I did not saw a discussion about these aspects but from the distance (Never developed an extension) it looks like this all these things are possible?
Yes, extensions can have full access to pages you browse and they could potentially read any data from pages you have access to and perform actions as you.
Just a bit of passive moderation by a humans like students or amazon turks in app-stores/extension libraries for fake and malicious apps would go such a long way.
The only reason these two extensions were pulled was because they were causing bad PR for Google. Until that article on Ars Technica, Google had consistently taken the position that there was nothing wrong with what those extensions were doing.
[+] [-] malandrew|12 years ago|reply
I know advertising is Google's business model, so before anyone points that out, let me point out that I've also never been offered the opportunity to purchase the ability to use Google's search without advertising. They should follow their own policy here and give us the ability to uninstall advertising from Google even if it does come with a monthly subscription fee to do so.
[+] [-] jrockway|12 years ago|reply
[+] [-] dhugiaskmak|12 years ago|reply
/clicks 'No' for the umpteen thousandth goddamned time on some Google property trying to trick me into using G+
[+] [-] nav1|12 years ago|reply
[+] [-] timothya|12 years ago|reply
To mitigate the problem, Chrome does have the permissions model to limit what extensions can do, and if an extension requires more permissions after an update, Chrome will give you a warning, along with an option to remove the extension. Your best defence is to not grant overly broad permissions when you first install the extension.
Regarding your comment about Chrome's automatic updates being "bad", I disagree wholeheartedly - the web platform would not be able to move forward at the same rate that it can today. One of the biggest problems with IE was simply that it was updated so infrequently that it was really hard to support the large percentage of outdated versions. We'd be in the same situation with Chrome if it didn't auto-update. Furthermore, I trust Chrome to make good decisions for my security. I'd rather have my browser updated quickly so that vulnerabilities in the browser can be fixed quickly before they affect me.
[+] [-] smtddr|12 years ago|reply
Don't agree with that. As someone who has had the misfortune of having to support out-of-date browsers, anything that can be done to force browser upgrades is a plus in my book. I'd rather have a few people angry at me than deal with another IE update-style browser that just gets lost out there with nearly zero hope of updating.
For example, I applauded Mozilla for this[1] move.
1. http://www.tomsguide.com/us/firefox-mozilla-Chistian-Legnitt...
>>"We don't think self-selection will ultimately get us to the place we need to be," he said. "We will force 3.6 on 3.5 stragglers not choosing to update to Firefox 4 or 3.6 (give them the stick). We feel comfortable making the major update choice for users because a) the versions are very similar and b) we'd rather lose a small amount of miffed users than leave a large amount of users vulnerable."
Keeping an old browser version is something I wish a user could not do unless they went out of their way to install a nightly by themselves and that nightly should nag them to death after 15 days to stop using it. The internet would be a much cooler & smoother place if all webapp-devs could assume that everyone is using the most up-to-date, cutting-edge browser. I wish Google would enforce this by choosing 2 saturdays every month to simply break Youtube for anyone on an out-of-date browser.
[+] [-] jordsmi|12 years ago|reply
[+] [-] nl|12 years ago|reply
Back when extensions were first released I wrote one, and over the years it became pretty popular and built up a good (200k plus) install base. I foolishly took some money for it last year, and the buyers stuck ads in it.
The rating have declined from 4.5 stars to 2.5, but I still feel bad for the users.
Somewhat ironically, it is actually open source, and the code is available for anyone to fork. I beleive there is a fork out there now too, so hopefully that will do better.
[+] [-] ToastyMallows|12 years ago|reply
[+] [-] PhasmaFelis|12 years ago|reply
[+] [-] nisa|12 years ago|reply
If the extension can modify webpages could the extension MITM my surfing? E.g. harvesting login data, any form data, cookies and other stuff? I did not saw a discussion about these aspects but from the distance (Never developed an extension) it looks like this all these things are possible?
[+] [-] pornel|12 years ago|reply
[+] [-] WaterSponge|12 years ago|reply
Just a bit of passive moderation by a humans like students or amazon turks in app-stores/extension libraries for fake and malicious apps would go such a long way.
[+] [-] octref|12 years ago|reply
[+] [-] makomk|12 years ago|reply
[+] [-] lcovington|12 years ago|reply
[+] [-] jordsmi|12 years ago|reply
[+] [-] Grue3|12 years ago|reply