Comment on Google Chrome to soon get a new ‘IP protection’ feature: Here’s what it does
ripcord@kbin.social 1 year agoNext step would be rewrapping the encrypted data (which several existing proxies already support) as a "security enhancement".
Comment on Google Chrome to soon get a new ‘IP protection’ feature: Here’s what it does
ripcord@kbin.social 1 year agoNext step would be rewrapping the encrypted data (which several existing proxies already support) as a "security enhancement".
darth_helmet@sh.itjust.works 1 year ago
They’d have to crack TLS or get you to trust their mitm cert, or fake what they present to the user…
I don’t see Google doing anything that foolish, it’s a security nightmare
ripcord@kbin.social 1 year ago
They ship the browser, which on at least many OSes has the certificate store. And Android. They can ship whatever they want.
People fall for all kinds of shit for reasonableish-soubdubg security reasons. Lots of people would have said they didn't believe people would go for this either.
darth_helmet@sh.itjust.works 1 year ago
Ok, but they still present the certificate to the user. They’d have to be very fucky with how they present that information if they were doing the validation at the proxy and then passing back that cert info.
And yeah, regular users might fall for that shit but Chrome would be banned across the corporate landscape the second it was found out.
ripcord@kbin.social 1 year ago
That optional feature might be banned. Having enough people to opt into it to be profitable would make it worth it. You may be underestimating the # of people who wouldn't care if it was packaged well.
fubo@lemmy.world 1 year ago
They don’t want every government to immediately ban the use of Chrome on government computers …
ripcord@kbin.social 1 year ago
Can you really not imagine a way that they'd ship a feature like that - maybe, disabled permanently with a corporate policy - where this wouldn't be a problem?
I mean, this current feature isn't something that most governments really wouldn't want their users using either. Or the existing "secure DNS" feature, etc.