5/1/2023 0 Comments Ungoogled chromium updater![]() ![]() ![]() ![]() People who use chromium based browsers are very vulnerable compared to the better security in Firefox and Librewolf with UBO or Noscript, Javascript turned off as much as possible, a simple toggle for that in UBO. ![]() Who would trust browser code authored by an ad-tech company? FOSS or not, i am not trusting that overbloated crap, the insecure chromium engine over the advanced rust programming in Gecko browser engine Firefox or Librewolf, both being much safer and secure browsers than any chromium based browsers. You are talking about google there, the ad-tech company with the browser that gets the most sedcurity problems according to statistics.įirefox users are correct not to trust chromium based browsers because of google as they have terrible security and privacy practices. Google is already limiting ad blockers with Manifest V3. People should expect that an ad-tech company writing browser code (chromium) is not exactly something good for the direction of browsers and web standards. Anyone still using chrome at this stage, should probably consider switching to something more safer like Firefox, Librewolf.įirefox users have been telling people for ages that chromium based browsers are not very safe security wise. No other browser gets as much security problems as Chrome/chromium engine codebase. > The update addresses a security issue in the browser that is rated high and exploited in the wild.Īnother critical security problem for Chrome. Them continuing to lack behind (taking years to catch up) is reality. Of course, in theory, they could catch up immediately and implement them all at once, but we both know that this is not realistic at all. In terms of when things got implemented? Firefox still misses exploit mitigations that Chromium already had several years ago. > How do you even measure security in years? Micay has to say about FF) and you will probably agree, I find the comparison fair and not biased. 3 orgs instead of 2, which is still a low count, does not at all invalidate the manpower shortage in comparison. Even if you include Igalia (who contribute to almost every somewhat major open source project, look it up), this is still not widespread organizational backing compared to what Chromium has behind it. Will include them going forward, I don’t think this fixes the basic issue of the Gecko code base maintenance. Firefox is to Chromium what Solana is to Ethereum, if you know what I mean. The project with more users and devs working on it will have more security issues discovered, doesn’t mean the security practices of competitors are better when they are not as used and tested. They don’t even have real site isolation (different parent domains can still share the same content process) or a sandbox over there, making escapes and exploits child’s play. Firefox has shoddy security practices and is 5 years behind Chromium minimum in terms of security. It’s easy to find nothing when nobody uses your shit or bases any kind of software on it. Who uses the Firefox codebase? Just Mozilla and the undermanned Tor Project, LOL. You know who works with Chromium code? Not just Google, but also Microsoft, Opera, Amazon, Brave Software, Vivaldi Technologies, Intel, and thousands upon thousands of Electron apps. There’s a better chance to catch zero days if the codebase is actually being used and scrutinized. > if they’re patching 20 to 30 security exploits a month, and zero-day in-the-wild’s every month or two, just imagine how many they HAVEN’T caught The security issue that is patched in the new version of Chrome is rated high, the second highest rating after just another zero-day patch day at chromium you guys The official post on the Chrome releases blog offers little information. A restart is required to complete the process.The browser should pick up the latest update and install it automatically. Chrome displays the current version and runs a check for updates.Load chrome://settings/help in the browser's address bar or select Menu > Help > About Google Chrome.Updating desktop versions of Chrome is thankfully straightforward and not limited, as it is on Android. Since the security vulnerability is exploited actively, it is recommended that Chrome users update their browsers asap. Updates are installed automatically once they become available. The update brings the version of the browser to 1.102 for Windows, Mac and Linux devices, and the Extended Stable channel version to 1.114.Īs is the case with updates for Chrome, it may take days or even weeks before the rollout completes. Ahead of Labor Day in the United States, Google released another security update for Chrome. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |