this post was submitted on 06 Aug 2023
271 points (100.0% liked)

Technology

37719 readers
116 users here now

A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.

Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.

Subcommunities on Beehaw:


This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 2 years ago
MODERATORS
 

The difference between the two security features is that Safe Browsing will compare a visited site to a locally stored list of domains, compared to Enhanced Safe Browser, which will check if a site is malicious in real-time against Google's cloud services.

While it may seem like Enhanced Safe Browsing is the better way to go, there is a slight trade-off in privacy, as Chrome and Gmail will share URLs with Google to check if they are malicious and temporarily associate this information with your signed-in Google account.

top 37 comments
sorted by: hot top controversial new old
[–] forked_bytes@lemm.ee 123 points 1 year ago (2 children)

there is a slight trade-off in privacy, as Chrome and Gmail will share URLs with Google to check if they are malicious and temporarily associate this information with your signed-in Google account.

Yeah just a slight trade-off of sending Google every URL you visit.

[–] lemann@lemmy.one 29 points 1 year ago

The last opt-in feature they introduced would send them your password in certain cases ☹️

Chrome’s ‘Enhanced Spellcheck’ and Edge’s ‘Microsoft Editor’ are exclusively opt-in add-ons that users must explicitly authorize, and while it’s made clear that your data will be sent back to both companies to improve the products, it’s not so obvious that this could include your personally identifiable information (PII).

https://www.techradar.com/news/your-browser-spellchecker-could-be-leaking-your-passwords

[–] elauso@feddit.de 21 points 1 year ago

Yeah, such a weird editorialization - it's a huge trade-off, making such a feature completely unacceptable for me personally.

[–] jackfrost@lemm.ee 70 points 1 year ago (1 children)

Funny how Firefox can be at least as secure without it having to phone home every time you click on a link.

Usually when this happens, we call it spyware, nuke it from orbit, and find an alternative.

[–] ares35@kbin.social 13 points 1 year ago (1 children)

firefox does utilize the lesser version of these google-provided services by default--how it works

[–] cmnybo@discuss.tchncs.de 36 points 1 year ago (1 children)

Firefox downloads a database of URLs to block. It doesn't send every URL you open to Google.

[–] floofloof@lemmy.ca 2 points 1 year ago* (last edited 1 year ago)

It sends some though:

Phishing and Malware Protection works by checking the sites that you visit against lists of reported phishing, unwanted software and malware sites. These lists are automatically downloaded and updated every 30 minutes or so when the Phishing and Malware Protection features are enabled.

When you download an application file, Firefox checks the site hosting it against a list of sites known to contain "malware". If the site is found on that list, Firefox blocks the file immediately, otherwise it asks Google’s Safe Browsing service if the software is safe by sending it some of the download’s metadata.

[–] Millie@lemm.ee 67 points 1 year ago (4 children)

I forwarded all my gmail addresses to proton recently. I'm very pleased! It works a lot better than gmail-to-gmail forwarding and the UI is purple! Purple!!

[–] USSEthernet@startrek.website 16 points 1 year ago

Proton has been great and I recently found out that I get free access to simplelogin.io for email masking with my proton account.

[–] snoons@lemmy.ca 12 points 1 year ago

I was just going to leave a link to proton. Nice.

[–] floofloof@lemmy.ca 3 points 1 year ago (1 children)

My Gmail address receives a ton of spam, so I'm quite heavily dependent on Google's spam filtering to keep it usable. How is Proton when it comes to spam filtering? Their documentation makes it sound like you have to do it yourself by setting up address-based filters, but I don't think this would be effective given the amount of randomly-sourced stuff that pours in all the time.

[–] Millie@lemm.ee 2 points 1 year ago

I found that it does well with actual full on spam in the form of unsolicited mass mails. If there's anything I've subscribed to, it does just dump it into the inbox until I tell it to do otherwise. So mostly decent. I feel like it might be benefiting from their spam sorting but not from the promotional tag.

[–] baggins@beehaw.org 1 points 1 year ago

Yes, a sort of Deep Purple.

Which suits me just fine 🙂

[–] 5453939160@feddit.de 40 points 1 year ago

But Google is already analyzing all emails received. So the only difference is that they actually know which links have been clicked.

The privacy issue is Gmail, not that particular feature.

[–] BluePhoenix01@beehaw.org 18 points 1 year ago

Yes, I’ve personally noticed this one, and nagging is definitely the right verb. 😓

[–] Nitrate55@lemmy.dbzer0.com 17 points 1 year ago* (last edited 1 year ago) (1 children)

The notification to enable enhanced safe browsing even shows up when you're accessing Gmail on Firefox. It doesn't even make any damn sense, this feature only works on Chrome. And of course they'll never add a "don't show again" option. Think I might just set Gmail to forward to my Proton account from now on.

Edit: found an article on how to forward to ProtonMail in case anyone else wants to know how. Seems very easy to do.

[–] Kikkertje@aussie.zone 3 points 1 year ago (1 children)

I'll keep Gmail for any shit I might want to sign up for and use ProtonMail as my serious email account.

[–] baggins@beehaw.org 3 points 1 year ago

Been doing this for a while now.

I go back to Gmail every now and again to check if I've missed anything, it's just a cesspool of junk and spam.

Good to be away from it

[–] skycat@beehaw.org 16 points 1 year ago

Imagine using chromium, imaging using gmail

[–] RandomStickman@kbin.social 16 points 1 year ago (1 children)
[–] Nitrate55@lemmy.dbzer0.com 2 points 1 year ago* (last edited 1 year ago)

Huh, it never occurred to me to block the notification through uBO. I'll make sure to do that the next time it shows up. Shame I can't use the same method on the Gmail app to make it go away forever.

[–] mintyfrog@lemmy.ml 14 points 1 year ago

Don't use Gmail or Chrome

[–] alnilam@feddit.nl 13 points 1 year ago (2 children)

"As Chrome and Gmail will share the urls with Google".

Chrome and Gmail are Google. You can replace this with "As Google and Google will share urls with Google" without any loss of accuracy.

[–] ares35@kbin.social 4 points 1 year ago

which means doubleclick and adsense will get it, too.

[–] acastcandream@beehaw.org 3 points 1 year ago* (last edited 5 months ago)

spoilerasdfasdfsadfasfasdf

[–] thelastknowngod@lemm.ee 12 points 1 year ago

I still get nagged constantly to add a birthday to my Google account to make sure I am older than 13 or something.. To satisfy some dumb law I think. The email account is like 15 years old though. How could I be under 13 if it's that old?

[–] Duchess@yiffit.net 11 points 1 year ago (1 children)

god, i hate this shit. i have a lot of stuffed tied to my google accounts but i think i'm at least going to switch email apps.

[–] Sproux@lemmy.dbzer0.com 2 points 1 year ago

FairEmail has been the best one ive tried client wise and protonmail if you want to switch email providers completely

[–] Bishma@discuss.tchncs.de 7 points 1 year ago

Ah, August's news story that made me glad I stopped using chrome and gmail. Nice to see you.

[–] Evergreen5970@beehaw.org 6 points 1 year ago* (last edited 1 year ago)

!degoogle@lemmy.ml

[–] DukeOfPorn@lemmynsfw.com 6 points 1 year ago

I revently migrated to Skiff Mail, which has a better free plan than Proton. Check out Privacyguides.org for more info about keeping yourself safe

[–] Rentlar@beehaw.org 5 points 1 year ago

I use my GMail app and IMAP on desktop anyway so I don't come across these silly things. Their labels thing still doesn't make any sense at all.

[–] renard_roux@beehaw.org 2 points 1 year ago (3 children)

I'm actually quite fond of Chrome (don't shoot me) 😕 Is it "better" to use Chromium?

[–] optissima@lemmy.ml 7 points 1 year ago

Simply, yes.

[–] styx@beehaw.org 3 points 1 year ago

There is also Cromite.

[–] Cerothen@lemmy.ca 1 points 1 year ago* (last edited 1 year ago) (1 children)

On Android I just started using kiwi browser a month or two ago it's for android only but it's chromium based and supports extensions which brings ublock and others to mobile.

https://play.google.com/store/apps/details?id=com.kiwibrowser.browser

[–] renard_roux@beehaw.org 1 points 1 year ago

Thanks for the suggestion!

I had a look, and must admit it sets my spidey sense in something of a tingle 🤔

Their website says "© 2019 - 2021", and the blog has a single post from 2019. Similarly, the knowledge base has one single post.

Similarly, their GitHub doesn't seem to have had any changes in the /src project, although this might be because they've moved development to /src.next.

Actually, looking at /src.next, there does seem to be a lot of activity, with issues being closed regularly. Maybe it's just the classic case of devs focusing on dev work and not outward communication or site maintenance.

I'll give it a go at some point and see how it feels 👍