Google has downplayed reports of a security vulnerability in its newly-launched Chrome web browser.

Within a day of Chrome's launch, security researchers reported that Chrome had the same auto-download flaw as Apple's Safari web browser.

They said Chrome was developed using the same open-source WebKit rendering engine, and also allowed files to be downloaded automatically to the desktop.

Safari originally did not ask users' permission to download files, which meant malicious code could be dumped on desktops in so-called carpet bomb attacks.

Google Chrome security flaw discovered | 4 Sep 2008 | ComputerWeekly.com (http://www.computerweekly.com/Articles/2008/09/04/232136/google-chrome-security-flaw-discovered.htm)

I guess they need to work their a$$ up harder than that just to prove that they really did a good job & not waste their yet new project right into the drain

Well, they did do a good job - but should have started from the WebKit codebase where this bug had already been fixed :biggrin:

yeah but I don't think it existed at the first place when they coded the browser,I mean it surely showed up right after the release was out

No - Safari, whose engine Chrome uses, had already fixed the issue before Chrome itself was out...
Wonder why Google chose to use an old codebase -_-

maybe the google developers started coding chrome parallel to safari and therefore used the old codebase at that time...
but that wouldn't explain why they implemented an up to date java engine and not the old one too...:confused2:

who knows...:rolleyes2:

Yes, it's a mistery...


The "carpet bomb" bug, revealed by researcher Nitesh Dhanjani in early May and named for the way it could be used to dump files onto the Windows desktop, stemmed from the fact that Safari did not require a user's permission to download a file. Attackers, Dhanjani said, could populate a malicious site with rogue code that Safari would automatically download to the desktop, where it might tempt a curious user into opening the file.

After first balking -- for a time it refused the classify the flaw as a security vulnerability -- Apple patched the bug in mid-June by updating Safari to 3.1.2.

But Google used a pre-patch version of WebKit to build Chrome, and so the bug, which was also patched in later editions of WebKit, slipped through. According to Raff, the Chrome beta uses the older WebKit 525.13, the engine used by Safari 3.1.


Update

I don't know if the bug is fixed in the latest Chrome version, but a workaround exists:


Users can set an option in Chrome that will thwart Raff's exploit by popping up a warning asking for a filename and location for any downloaded file. To change Chrome, select Options under the "Customize and control Google Chrome " menu; the menu is at the far right, near the top, and although not named, looks like a small wrench. Next, click the "Minor Tweaks" tab in the Options window, then check the box that reads "Ask where to save each file before downloading."

lol, its quite kind of funny to see how google messed up the beta.. :rolleyes2:
i mean, this security hole for example had to be found by the chrome developers or testers...


I don't know if the bug is fixed in the latest Chrome version, but a workaround exists:
quite a funny imagination: chrome installation takes about 1 minute, and fixing the security holes by yourself about an hour or two, lol...:wink: but pretty frustrating that we really have to do it..

watch out


<title></title>

lol, its quite kind of funny to see how google messed up the beta.. :rolleyes2:
i mean, this security hole for example had to be found by the chrome developers or testers...

I agree, it should have been found... I mean, the bug with the extremely long TITLE or A HREF tags isn't new: IE4 has had it before with IMG (MS worked around it by not displaying an image if its width and height properties are too big, I think).


quite a funny imagination: chrome installation takes about 1 minute, and fixing the security holes by yourself about an hour or two, lol...:wink: but pretty frustrating that we really have to do it..

We also need to remove the unique ID from Local State.tmp every time Chrome is started :redface:
Mmm no, I'd better stick with Opera for now :wink:

We also need to remove the unique ID from Local State.tmp every time Chrome is started

yeah very annoying..:mad2: but isnt there a possibility that the .tmp file didn't get deleted after you close the browser? and then turn on the write-protection, so that you have to do just once when starting it for the first time?:confused2:


greetz

but isnt there a possibility that the .tmp file didn't get deleted after you close the browser? and then turn on the write-protection, so that you have to do just once when starting it for the first time?:confused2:

It's easy to ignore write-protection :frown:

But actually, now I think about it, it's possible to make a .bat to possibly automate this: it would always keep a copy of a callhome-free file under a different name; start Chrome, wait a bit, then use that file to replace the .tmp that's just been created.
It may work! :smile:

But actually, now I think about it, it's possible to make a .bat to possibly automate this: it would always keep a copy of a callhome-free file under a different name; start Chrome, wait a bit, then use that file to replace the .tmp that's just been created.
It may work!

thought already of a .bat file too, but nevertheless you have to access everytime the .bat which will be pretty depressing too after a time :biggrin:

but its better than nothing, for sure!:top:


It's easy to ignore write-protection
didn't know that.. i thought that when i tick the box then this is the final say.:wink:

thought already of a .bat file too, but nevertheless you have to access everytime the .bat which will be pretty depressing too after a time :biggrin:

...

You can make a shortcut to the .bat and launch Chrome through it instead, that's less depressing :biggrin:


didn't know that.. i thought that when i tick the box then this is the final say.:wink:

No, not really: after all, if you try to delete a read-only file, the only thing Windows will do to thwart your attempt is (re)confirming whether you want to proceed :tongue:

You can make a shortcut to the .bat and launch Chrome through it instead, that's less depressing

thats a smart idea, to combine both into one shortcut! if thats possible, then it would be the great compromise :top:


No, not really: after all, if you try to delete a read-only file, the only thing Windows will do to thwart your attempt is (re)confirming whether you want to proceed

LOL

typical of windows....:rolleyes2:

thats a smart idea, to combine both into one shortcut! if thats possible, then it would be the great compromise :top:

I think it is: you launch a shortcut to the .bat, which in turn will run Chrome :wink:
So I'm going to work on this tomorrow, maybe some find it useful :smile:


LOL

typical of windows....:rolleyes2:

Yes, at least it could tell you to remove the read only flag before proceeding... :tongue:

So I'm going to work on this tomorrow, maybe some find it useful

if it wasn't you who worked this out, then i think, we were too late with the idea of the .bat file..:rolleyes2: maybe it was a spy who read this thread...:wink:

http://www.almisoft.de/killchromeid1.png

the news(german again..):
WinFuture.de - Simples Tool bringt Google Chrome zum Schweigen (http://winfuture.de/news,42096.html)


the program, kill chrome id:
AlMiSoft TraXEx - Internet Spurenverwischer (http://www.almisoft.de/?cont=kchrome&PHPSESSID=4bca6ce05436311d3f73cfda4968a842)

it has everything in it, even the issue with the .tmp file and its easy to use though..
:cool2:
----------
another program i found was unchrome, which has a smaller size, but does reveal your personal id in replacing them with 0's.

http://www.abelssoft.de/images/screenshots/unchrome-small.png

UnChrome - Anonymisieren Sie Google Chrome - UnChrome entfernt die eindeutige ID aus Google Chrome (http://www.abelssoft.de/unchrome.php)

greetz

if it wasn't you who worked this out, then i think, we were too late with the idea of the .bat file..:rolleyes2: maybe it was a spy who read this thread...:wink:

...

Well, whoever it was, he/she/they did us a great favor! :biggrin:
Those two programs are more straightforward and easy to use than a .bat file :wink:
And KillChromeID also gives you the possibility of removing "usage statistics" and the GoogleUpdate service, as far as I can see...

So, just checked them out, and both are possible to translate. I'll get on this as soon as possible, to make them easy to use for non-german speakers :smile:

Google is reportedly thinking about cutting deals with PC makers to have its Chrome browser pre-installed on new computers, a move that could position the Internet giant to not only boost its presence in search but also put some of its branded apps - Gmail, Google Docs, Google Reader and others - in front of new users.
Quelle: Google Chrome to be pre-installed on PCs in 2009? | Between the Lines | ZDNet.com (http://blogs.zdnet.com/BTL/?p=10974)

I don't afraid about that chrome is installiert on a PC...

Google Chrome to be pre-installed on PCs in 2009?

Thx for the news, but I have posted the news already yesterday in the Chrome Beta-Thread. :smile:
See for yourself: http://www.sb-innovation.de/showthread.php?threadid=5425&page=7#post55584

greetz :cool:

oh, sorry:closed: