1. Download our Official Android App: Forums for Android!

Google Chrome ,IE,is it safe ?

Discussion in 'Computers' started by karandpr, Jul 28, 2011.

  1. karandpr

    karandpr Android Expert
    Thread Starter
    Rank:
     #46
    Points:
    443
    Posts:
    2,952
    Joined:
    Feb 16, 2011

    Feb 16, 2011
    2,952
    1,816
    443
    Male
    Strict Disclaimer : The information,knowledge and data provided in this post should be used only for educational purpose .Native Legal Laws apply if any knowledge is used for purposes other than knowledge.I take no responsibility is a person after viewing this article participates in activities beyond the boundary of Laws .


    Ok
    I got strange hobbies and one of them is creating live scenarios of cyber crime .

    OS :Microsoft Windows

    My speciality is not in remote access ,though .(Too lazy)
    Instead I create scenarios with Live access to a computer usually people use to in web defacement cases . (Prank ,false emails ,facebooks ,using the works ...)
    Live access means some access your computer when it is on .Usually when the user goes for a coffee or boss for details :D
    Usually I put together a bunch of easily available tools to see if those can be converted in something evil .
    Then I make a database so to facilitate me .

    Today I came across an How To Geek article about IE's password safety .
    So ofcourse it piqued my interest .
    The software can be used to view the stored passwords of a web browser .

    Ordinarily All web browsers are in the same water .
    You can view all the passwords .
    It takes 15 seconds for a user to
    use the software ,copy the passwords and remove the USB drive .
    so in one minute all your passwords will be compromised
    and in one day you may lose job,girlfriend, status ,whatever .........

    However Firefox and Opera have additional facility which you can use to secure the password ,a master password for all your passwords .it makes passwords unreadable in that software. It is a step in right direction . :d

    So a phisher will have to know your master password for access .

    But IE and Chrome,nothing ,nada .They are actually defenseless against a live attack unless you chose not to store passwords at all (a wise policy )
    .
    Some user actually asked the google for such a feature .Their reply is hilarious.(After 20 months ......)
    Google Chrome Master Password? - Google Chrome Help

    I used my Home PC with Opera 11.5 ,Google Chrome 14.0.797.0 ,Firefox Beta 6.0 b3 and IE 9.0.1
    .The software works But after a master password ,Opera and FF password were cloaked .

    Live access crimes happen and it is always nice to have additional security.
    Google can atleast add this simple feature . :)

    For paranoids I suggest Keepass.For super paranoids I suggest powerful brains plus taekwondo , and a major in law
     

    Advertisement

  2. andruoid

    andruoid Android Expert
    Rank:
    None
    Points:
    343
    Posts:
    1,424
    Joined:
    Jan 10, 2011

    Jan 10, 2011
    1,424
    1,304
    343
    Male
    BC, Canada
    I don't enable "remember passwords" or "forms" in Chrome so its not an issue. :)
     
  3. sethman88

    sethman88 Well-Known Member
    Rank:
    None
    Points:
    58
    Posts:
    141
    Joined:
    Jun 1, 2011

    Jun 1, 2011
    141
    13
    58
    student
    Abingdon VA
    same here I use chrome but I never enable remeber passwords on anything except my phone. but all my passwords on my laptop are never remebered
     
  4. karandpr

    karandpr Android Expert
    Thread Starter
    Rank:
     #46
    Points:
    443
    Posts:
    2,952
    Joined:
    Feb 16, 2011

    Feb 16, 2011
    2,952
    1,816
    443
    Male
    A wise policy .:D
     
  5. SUroot

    SUroot Extreme Android User
    Rank:
    None
    Points:
    1,123
    Posts:
    23,916
    Joined:
    May 25, 2010

    May 25, 2010
    23,916
    5,307
    1,123
    UK Technical Lead; Desktop Support
    Riddlesden, West Yorkshire, UK
    Firefox user ;)
     
    NightAngel79 likes this.
  6. sethman88

    sethman88 Well-Known Member
    Rank:
    None
    Points:
    58
    Posts:
    141
    Joined:
    Jun 1, 2011

    Jun 1, 2011
    141
    13
    58
    student
    Abingdon VA
    plus I hate using IE its to slow no matter how good a computer you have, firefox and chrome are way better, just like at work I have a much more powerful maching, but have to use IE, but at home I have an above standard laptop, nothing to fancy just some RAM and Rom upgrades and HD, but I use chrome on it and its a lot faster on the internet then my work machine
     
  7. karandpr

    karandpr Android Expert
    Thread Starter
    Rank:
     #46
    Points:
    443
    Posts:
    2,952
    Joined:
    Feb 16, 2011

    Feb 16, 2011
    2,952
    1,816
    443
    Male
    Actually Live machine phishing is more relevant in office space . :)
    It's always wise not save passwords in offices .
    Chrome is fast I admit .
    But for guys who give updates weekly (annoying) ,an additional layer of security doesnt hurt anyone .
    I use opera on my desktop and chrome time to time and the difference of speed is negligible .I just dont use IE .
     
  8. karandpr

    karandpr Android Expert
    Thread Starter
    Rank:
     #46
    Points:
    443
    Posts:
    2,952
    Joined:
    Feb 16, 2011

    Feb 16, 2011
    2,952
    1,816
    443
    Male
  9. starxpilot

    starxpilot Android Enthusiast
    Rank:
    None
    Points:
    98
    Posts:
    536
    Joined:
    Jul 24, 2011

    Jul 24, 2011
    536
    61
    98
    Loss Prevention Agent
    Garland
    If Privacy is an issue, I'd suggest you go with Firefox.

    Like Mods and addons? Go with Firefox.

    Hate Ads? Go with Firefox.

    I'm not promoting Mozilla here, but from my experiences with dozens of browsers, Mozilla Firefox can NOT go wrong. IE shouldn't even be considered except for the few corporate websites that demand you use it because they are too stupid/stubborn to get the big picture and support Chrome, Firefox, etc.

    Like Dell Corporation for an example, their Auto Detect for systems isn't supported outside of IE. -_-

    To be honest, I'm surprised IE and Chorme haven't made attempts to ensure privacy, and with this new Google+, looks like the 'thought of security' is going to be quite hard to prove.
     
  10. mobimop

    mobimop Well-Known Member
    Rank:
    None
    Points:
    38
    Posts:
    221
    Joined:
    Feb 14, 2010

    Feb 14, 2010
    221
    23
    38
    Well the "how to geek" article actually addresses IE 7 and later. Chrome actually encrypts the passwords, they aren't just sitting on the drive in plain text and unlike IE just being logged into the PC doesn't decrypt the password. They can only be decrypted on the same machine and by the same user that encrypted it in the first place.

    Here is a good read on Chrome and how passwords are stored: How Google Chrome Stores Passwords | Switch on the Code

    To be honest most Enterprises are in the process of testing Chrome as the default browser, with the built-in sandboxing it's proving to be a better secure browser.
     
  11. alostpacket

    alostpacket Over Macho Grande?
    Rank:
    None
    Points:
    513
    Posts:
    7,971
    Joined:
    Nov 29, 2009

    Nov 29, 2009
    7,971
    3,604
    513
    Android App Developer
    NY
    Firefox + NoScript = very helpful vs shady websites.

    There are almost no exploits that dont involve javascript in one way or another. Even the people who hate Flash and Java (while they have some good reasons) seem to forget that Js is used to launch those plugins.

    Edit: also now using a add-on HTTPS-Everywhere which helps some too.

    Finally use something like KeePass and store passwords there, much safer encryption.

    And use two-factor authentication.

    And, when you can, eat pizza. Because, well, it's tasty.
     
    9to5cynic and karandpr like this.
  12. JRich8389

    JRich8389 Member
    Rank:
    None
    Points:
    38
    Posts:
    96
    Joined:
    Aug 27, 2011

    Aug 27, 2011
    96
    21
    38
    Network Engineer/Corporal, USMC
    Jacksonville, NC
    Remembered passwords always made me nervous, I had no knowledge of this topic before so it is good to know. I've always used Firefox though, just like the customization capabilities :) Thanks a lot for the information everyone!

    Thinking about switching to Chrome once they allow a little more customization.
     
  13. karandpr

    karandpr Android Expert
    Thread Starter
    Rank:
     #46
    Points:
    443
    Posts:
    2,952
    Joined:
    Feb 16, 2011

    Feb 16, 2011
    2,952
    1,816
    443
    Male
    [​IMG]
     
  14. johnlgalt

    johnlgalt Antidisestablishmentarian
    Rank:
     #44
    Points:
    453
    Posts:
    9,453
    Joined:
    Oct 28, 2009

    Oct 28, 2009
    9,453
    1,957
    453
    Male
    Graduate Research Assitant | That part time IT guy
    3rd Rock
    You do what you an, but the only truly safe computer is one that never connects to the Internet ever and never has any foreign devices attached to it ever.

    After that, it's pretty much a crapshoot- you can do what you want, but no browser is 100% safe, and no AV / AM / AS program or suite is 100% effective.
     
  15. andruoid

    andruoid Android Expert
    Rank:
    None
    Points:
    343
    Posts:
    1,424
    Joined:
    Jan 10, 2011

    Jan 10, 2011
    1,424
    1,304
    343
    Male
    BC, Canada
    That is why I zero fill my drive daily. ;)
     
  16. alostpacket

    alostpacket Over Macho Grande?
    Rank:
    None
    Points:
    513
    Posts:
    7,971
    Joined:
    Nov 29, 2009

    Nov 29, 2009
    7,971
    3,604
    513
    Android App Developer
    NY

    Is it weird that made me think of extra pepperoni?

    :D
     
  17. starxpilot

    starxpilot Android Enthusiast
    Rank:
    None
    Points:
    98
    Posts:
    536
    Joined:
    Jul 24, 2011

    Jul 24, 2011
    536
    61
    98
    Loss Prevention Agent
    Garland
    Nah.

    Although you got a point, seeing a little of Murphy's Law there...

    I don't think we'll see a 100% safe browser in this day and age, not with all the privacy concerns and issues already plaguing the net..
     
  18. SherryS87

    SherryS87 Lurker
    Rank:
    None
    Points:
    5
    Posts:
    2
    Joined:
    Jul 17, 2010

    Jul 17, 2010
    2
    0
    5
    Behavior Analyst
    Wyndmoor, PA
    I use two-factor authentication on Gmail, & Google accounts on the computer.
    My HTC Thunderbolt will no long open Gmail on my phone using the 2 step authentication.

    Suggestions or help please??
     

Share This Page

Loading...