> The extension has the "" permission which explicitly allows it to do this. Guy running multiple browsers in Firejail in a VMĮDIT: I do not the difference between have and half apparently probably a sign of my age, haha! It is sad, but I must every few years consume more resources of my computer for useful, but wasteful, separation of software from its self, because, well, queue the recently retracted Theo de Raadt "x86 virtualization being secure is a waste of time" trope rescinded because even his OpenBSD crew will bite the bullet and work on OpenBSD virt technology. Qubes increasingly looks like the future. I am sure that came or is coming down the line, but currently populars apps will play catch up while people like me are forced to preemptively yet again restrict use of likeable tech because security was an afterthought. I like them (who am I to be arrogant and judge the work of these people half my age at least they put out code while I bitch all day), but the browser base is not discernibly updated or managed unless some developers coordinate. I will increasingly have to part with each of the limited extensions I like, all while people here push Electron apps. I am worried that the freedom afforded to me by the beauty of things like Keysnail, like the generally abstracted trend of vendor lockdown, forces me to voluntarily suck it up and deal with crap software defaults and workflows, and doubly recommend the same to people in my environment. Others are intended to have a similar logo and fool busy professionals. What about dupes? I am the only one I know in my department who uses uBlock. Per-user javascript directories? Enumerating just the obvious ones can be a full-time job? Most modern software inventory has no intelligence into plugins. Such extensions have real potential to IOC (indicators of compromise), but only very expensive next-generation malware detection knows that when it sees traffic out.īut what if there is no traffic out? Or it does a more professional job with exfil? This person had Adobe Acrobat Pro, and forgot. It does a purpose-filled operation professionals would need, and they are far less discerning than me. The problem here is it raises fewer eyebrows. I doubt this is malicious, but someone installed this in my environment and inquried why the quality of output went down (in terms of pixelation). I am far more concerned about the semi-professional extensions. These extensions, especially with religiously conservative adults, is of limited concern. I work in a lax multi-national corporate environment, to be vague. This example is hilarious, granted, but not even the one I truly worry about. > Files not included in the repo are pulled from the actual server, Still, as I said above, Google only stopped asking me to verify I'm no robot after disabling this extension, and I tried several times (on/off).Īnd the code loading happens quite officially, I first read it on the extensions developer website itself. Now, this extension actually is open source ( ) and I have not read about any suspicions like mine from anyone else. I don't understand they are allowed to do that, quite openly even? It defeats the purpose of the Chrome Web Store and any guarantees by Google are worthless if extensions can just load some of their code from somewhere else. I had BTTV report a newer version number than there was in the Chrome Web Store for that reason. This extension does load code from a remote site, they write it is because having new releases approved takes too long so this is how they work around it. Long story short, after some experimenting the only thing that seemed to shut Google up was to disable this extension. I ended up buying a new router because my old one hadn't seen any updates in ages, just in case that got hacked. I had trouble with Google suddenly asking me to prove I'm not a bot - for months. I'm not sure, so this is not really an accusation, but I think I had such problems with BetterTTV (. So either start it from CLI or set the time limit to infinite (eg set_time_limit(0) or in php.ini: max_execution_time = 0) Step 1: Download the emotes Alternative #1: BTTV emote->id. So you will run into timeouts if you just run them with an eg 30s php timeout. Not what I initially intended, as this is limited to the emotes I downloaded, but my quick and dirty approach was (using Laravel - so pure php would be without helpers like storage_path or dd):Ĭaution: Those downloads take quite some time.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |