open All Channels
seplocked EVE General Discussion
blankseplocked Browsing toxic sites with In-game EVE browser
 
This thread is older than 90 days and has been locked due to inactivity.


 
Author Topic

Eno Lacigol
Amarr
QQ Continuum
Posted - 2010.01.12 06:59:00 - [1]
 

I like to browse some sites that I know for a fact are toxic, but the use of no scrip and and a few other firefox seems to keep me safe. If I was to view a site with the in game browser, would I be likely to be affected by the malware at the site?

Serpents smile
Posted - 2010.01.12 07:09:00 - [2]
 

Shocked

BRAAAAAAIIIINNNZZZ!

Get them!

Arkeladin
Posted - 2010.01.12 07:36:00 - [3]
 

Originally by: Eno Lacigol
I like to browse some sites that I know for a fact are toxic, but the use of no scrip and and a few other firefox seems to keep me safe. If I was to view a site with the in game browser, would I be likely to be affected by the malware at the site?


Ye Ghods.

Bait fate much, do you?

You Fail Logic Forever.

Now, let's look at this logically, since you fail so hard...

You look at "toxic" sites with Firefox, which you've installed some security software on, such as NoScript, probrabl;y AdBlockPlus, and a few others. They are supposedly keeping you "safe" (though there are ways around them).

Now you're asking if the IGB (which is now based on Google's Chrome, and not Gecko like Firefox is), a browser WITHOUT THE SECURITY FEATURES BEING PROVIDED BY YOUR FIREFOX PLUGINS. is safe to use on some of those "toxic" sites.

(Hint: Firefox plugins only work in Firefox).

Hopefully you can come to the correct conclusion, and will feel a bit foolish for having asked in the first place.

If you can't figure it out, here's a spoiler:

NO, YOU IDIOT! CHROME IS NOT FIREFOX, AND YOU WILL GET INFECTED.

Ban Doga
Posted - 2010.01.12 07:47:00 - [4]
 

Edited by: Ban Doga on 12/01/2010 07:51:41
Originally by: Arkeladin
Originally by: Eno Lacigol
I like to browse some sites that I know for a fact are toxic, but the use of no scrip and and a few other firefox seems to keep me safe. If I was to view a site with the in game browser, would I be likely to be affected by the malware at the site?


Ye Ghods.

Bait fate much, do you?

You Fail Logic Forever.

Now, let's look at this logically, since you fail so hard...

You look at "toxic" sites with Firefox, which you've installed some security software on, such as NoScript, probrabl;y AdBlockPlus, and a few others. They are supposedly keeping you "safe" (though there are ways around them).

Now you're asking if the IGB (which is now based on Google's Chrome, and not Gecko like Firefox is), a browser WITHOUT THE SECURITY FEATURES BEING PROVIDED BY YOUR FIREFOX PLUGINS. is safe to use on some of those "toxic" sites.

(Hint: Firefox plugins only work in Firefox).

Hopefully you can come to the correct conclusion, and will feel a bit foolish for having asked in the first place.

If you can't figure it out, here's a spoiler:

NO, YOU IDIOT! CHROME IS NOT FIREFOX, AND YOU WILL GET INFECTED.


Confirming all people using Chrome will get infected because Firefox Plugins are the only thing in the world providing safety.
Convert to Firefox NAO!!

Alakazam
Gallente
Skid-Row
Posted - 2010.01.12 07:48:00 - [5]
 

No it will not keep you safe. You are never safe when you are online, Even with all kind of precautions you are not safe. Virus checkers and firewalls, ad-blockers, noscript just give some sort of security but no guarantee.

Eno Lacigol
Amarr
QQ Continuum
Posted - 2010.01.12 08:43:00 - [6]
 

Edited by: Eno Lacigol on 12/01/2010 08:44:24
First, I am not foolish enough to think I'm 100% while using the plug ins to protect me form the toxic sides while using my out of game browser. I also know that your never 100% safe while online, much like high sec, its only a matter of time till someone wants to mess you up.

That being said, as someone who doesn't know much about the programing of malware, would the malware form a site viewed using the IGB be able to act like it was intended and mess up my PC? I probably would never view a site in the IGB i knew to be toxic, but as a matter of curiusity, I wonder.

Edit: And Arkeladin, I know firefox plug-ins dose not do anything when I'm using IGB, that is the prime reason why I was wondering.

hakkiew365
Muffin Munchers
Muffy Inc.
Posted - 2010.01.12 09:59:00 - [7]
 

Originally by: Arkeladin
Originally by: Eno Lacigol
I like to browse some sites that I know for a fact are toxic, but the use of no scrip and and a few other firefox seems to keep me safe. If I was to view a site with the in game browser, would I be likely to be affected by the malware at the site?


Ye Ghods.

Bait fate much, do you?

You Fail Logic Forever.

Now, let's look at this logically, since you fail so hard...

You look at "toxic" sites with Firefox, which you've installed some security software on, such as NoScript, probrabl;y AdBlockPlus, and a few others. They are supposedly keeping you "safe" (though there are ways around them).

Now you're asking if the IGB (which is now based on Google's Chrome, and not Gecko like Firefox is), a browser WITHOUT THE SECURITY FEATURES BEING PROVIDED BY YOUR FIREFOX PLUGINS. is safe to use on some of those "toxic" sites.

(Hint: Firefox plugins only work in Firefox).

Hopefully you can come to the correct conclusion, and will feel a bit foolish for having asked in the first place.

If you can't figure it out, here's a spoiler:

NO, YOU IDIOT! CHROME IS NOT FIREFOX, AND YOU WILL GET INFECTED.


I hope this is a joke. If not, you must be ******ed.

Niccolado Starwalker
Gallente
Shadow Templars
Posted - 2010.01.12 11:12:00 - [8]
 

Originally by: Eno Lacigol
I like to browse some sites that I know for a fact are toxic, but the use of no scrip and and a few other firefox seems to keep me safe. If I was to view a site with the in game browser, would I be likely to be affected by the malware at the site?


No wonder why theres so many people being hacked. They simply seems to lack a vital human organ called brain.


Mia Sin
Amarr
Space Ponies
Posted - 2010.01.12 11:26:00 - [9]
 

The stripped down chrome might actually be safer than a plugged up firefox. Might. I imagine it would depend on the type of attack.
Never heard of the term "toxic" when referring to malware... is that in now?

Also: My portrait kind of sucks....

Mey Alman
Jonferson Space Dynamics Division
Posted - 2010.01.12 12:18:00 - [10]
 

You guys all miss the point. The point is maleware is coded to infect the underlying system (in most cases Windows). But the IGB essentially (at least apparently) runs with EVE as its underlying system.
So the Question is does the common maleware (not EVE specific one) have the ability to infect the system by "coming out of the IGB going through the EVE client to windows".

Sunbound
Posted - 2010.01.12 14:42:00 - [11]
 

Edited by: Sunbound on 12/01/2010 14:44:14
Originally by: Mey Alman
You guys all miss the point. The point is maleware is coded to infect the underlying system (in most cases Windows). But the IGB essentially (at least apparently) runs with EVE as its underlying system.


Chromium is run inside an OS. EVE is not an OS. It simply launches Chromium in parallel to itself, and communicates with it through additional program layer.

Also, it's malware - as in, "malicious software". Maleware would be something totally different.

Also, malware infests your OS, yes. But it needs a vulnerable piece of network-oriented software to get in. A browser you are using can be such software. That's the main reason you can't use plugins like Flash or Java in IGB - to reduce the number of things that have potential vulnerabilities. But there are no guarantees that Chromium itself has no vulnerabilities. And the main thing is, once you visit the website - it knows your IP address, and your IP address can be used to attack any vulnerable network software on your system, not necessarily your browser.

Originally by: Mia Sin
Also: My portrait kind of sucks....


On the other hand, you look like the brightest guy in this thread Laughing

Cpt Cosmic
Posted - 2010.01.12 14:53:00 - [12]
 

Edited by: Cpt Cosmic on 12/01/2010 14:53:28
it would be nice to be able to watch dirty nakid vids while doing market stuff... I think ccp would get many subscribers then Rolling Eyes because we all know what the purpose of the internet is

Arkeladin
Posted - 2010.01.12 15:47:00 - [13]
 

Originally by: Eno Lacigol
Edited by: Eno Lacigol on 12/01/2010 08:44:24
First, I am not foolish enough to think I'm 100% while using the plug ins to protect me form the toxic sides while using my out of game browser. I also know that your never 100% safe while online, much like high sec, its only a matter of time till someone wants to mess you up.

That being said, as someone who doesn't know much about the programing of malware, would the malware form a site viewed using the IGB be able to act like it was intended and mess up my PC? I probably would never view a site in the IGB i knew to be toxic, but as a matter of curiusity, I wonder.

Edit: And Arkeladin, I know firefox plug-ins dose not do anything when I'm using IGB, that is the prime reason why I was wondering.


Yes, they can - to a extent. Chrome is vulnerable to malformed HTML exploits, the .JPG hole, and does allow Java so Java-based Trojans can get in.

Noscript in Firefox blocks Java unless you allow it - AdBlock Plus blocks some of the malformed .JPG holes, popup window exploits and some of the "drive-by" downloads through malformed banners. Chrome by itself has NONE of these blocks in place - and the IGB is based on Chrome.

AFAIK there's no way to add the Chrome security plugins either - CCP's using the engine, not the frontend.

Hopefully that'll clarify it for you a bit. You Still Fail Logic Forever though - just thinking about the question a bit (even with no knowledge of malware or how it gets into your system) would've answered you without the need to post.


Ban Doga
Posted - 2010.01.12 18:12:00 - [14]
 

Originally by: Arkeladin

...

Noscript in Firefox blocks Java unless you allow it

...




Noscript blocks JavaScript, hence the name.

Java is something completely different (and no, JavaScript is not just Java that runs on a website either).
Quote:

Hopefully that'll clarify it for you a bit.


Ivan Ward
Wildly Inappropriate
Goonswarm Federation
Posted - 2010.01.12 18:50:00 - [15]
 

I am sorry that I can not answer your question.

As I am interesting in those, let me call them, toxic sites aswell.
I have to ask you, did you get infected by something when playing EVE?
And are you asking this question with the intention of not revealing that you got (uhm) intoxicated?

Arkeladin
Posted - 2010.01.12 19:26:00 - [16]
 

Originally by: Ban Doga
Originally by: Arkeladin

...

Noscript in Firefox blocks Java unless you allow it

...




Noscript blocks JavaScript, hence the name.

Java is something completely different (and no, JavaScript is not just Java that runs on a website either).



Quoted from the NoScript website:

Originally by: noscript.net

The NoScript Firefox extension provides extra protection for Firefox, Flock, Seamonkey and other mozilla-based browsers: this free, open source add-on allows JavaScript, Java and Flash and other plugins to be executed only by trusted web sites of your choice (e.g. your online bank), and provides the most powerful Anti-XSS protection available in a browser.


Says on the tin it blocks Java, Javascript (and yes, I know the difference), Flash and some other things. It shares some redundancy with AdblockPlus, that can also block Flash. Bolded where it says that for easy reading, as well.

NEITHER ONE works with Chromium/Chrome, so the IGB is not safe in that regard. Which was the original point, IIRC.

Arkeladin
Posted - 2010.01.12 19:32:00 - [17]
 

Originally by: Ban Doga
Edited by: Ban Doga on 12/01/2010 07:51:41
Originally by: Arkeladin
Originally by: Eno Lacigol
I like to browse some sites that I know for a fact are toxic, but the use of no scrip and and a few other firefox seems to keep me safe. If I was to view a site with the in game browser, would I be likely to be affected by the malware at the site?


Ye Ghods.

Bait fate much, do you?

You Fail Logic Forever.

Now, let's look at this logically, since you fail so hard...

You look at "toxic" sites with Firefox, which you've installed some security software on, such as NoScript, probrabl;y AdBlockPlus, and a few others. They are supposedly keeping you "safe" (though there are ways around them).

Now you're asking if the IGB (which is now based on Google's Chrome, and not Gecko like Firefox is), a browser WITHOUT THE SECURITY FEATURES BEING PROVIDED BY YOUR FIREFOX PLUGINS. is safe to use on some of those "toxic" sites.

(Hint: Firefox plugins only work in Firefox).

Hopefully you can come to the correct conclusion, and will feel a bit foolish for having asked in the first place.

If you can't figure it out, here's a spoiler:

NO, YOU IDIOT! CHROME IS NOT FIREFOX, AND YOU WILL GET INFECTED.


Confirming all people using Chrome will get infected because Firefox Plugins are the only thing in the world providing safety.
Convert to Firefox NAO!!



Fail logic yourself much? Suggest you follow that link to see your fail.

Ban Doga
Posted - 2010.01.12 20:16:00 - [18]
 

Originally by: Arkeladin
Originally by: Ban Doga
Edited by: Ban Doga on 12/01/2010 07:51:41
Originally by: Arkeladin
Originally by: Eno Lacigol
I like to browse some sites that I know for a fact are toxic, but the use of no scrip and and a few other firefox seems to keep me safe. If I was to view a site with the in game browser, would I be likely to be affected by the malware at the site?


Ye Ghods.

Bait fate much, do you?

You Fail Logic Forever.

Now, let's look at this logically, since you fail so hard...

You look at "toxic" sites with Firefox, which you've installed some security software on, such as NoScript, probrabl;y AdBlockPlus, and a few others. They are supposedly keeping you "safe" (though there are ways around them).

Now you're asking if the IGB (which is now based on Google's Chrome, and not Gecko like Firefox is), a browser WITHOUT THE SECURITY FEATURES BEING PROVIDED BY YOUR FIREFOX PLUGINS. is safe to use on some of those "toxic" sites.

(Hint: Firefox plugins only work in Firefox).

Hopefully you can come to the correct conclusion, and will feel a bit foolish for having asked in the first place.

If you can't figure it out, here's a spoiler:

NO, YOU IDIOT! CHROME IS NOT FIREFOX, AND YOU WILL GET INFECTED.


Confirming all people using Chrome will get infected because Firefox Plugins are the only thing in the world providing safety.
Convert to Firefox NAO!!



Fail logic yourself much? Suggest you follow that link to see your fail.


I bow to such compelling arguments...

Mr Kidd
Posted - 2010.01.12 20:47:00 - [19]
 

Originally by: Mey Alman
You guys all miss the point. The point is maleware is coded to infect the underlying system (in most cases Windows). But the IGB essentially (at least apparently) runs with EVE as its underlying system.
So the Question is does the common maleware (not EVE specific one) have the ability to infect the system by "coming out of the IGB going through the EVE client to windows".


The prevalence of malware/trojan infections in IE and Firefox are mostly due to their share of the population using them. Malicious programmers will tend to focus their efforts on products that are the most widely used. Granted a lot of the security holes in IE is due to irresponsible programming. However, any program that is scrutinized enough will have holes found and utilized by those with the determination to do so. How Chrome will hold up is unknown and probably too early to tell given it's low market share and relatively young age. Will it hold up to years long attempts to breach its security? Who knows? How will the IGB hold up over time? Who knows? Being based on Chrome makes me wonder if it is directly inline to receive security fixes at the same intervals that the Chrome browser receives or will receive them. I just don't know how that works. But, I've always thought it was just a bad idea to have an IGB. Given the determination of some people to hack Eve accounts I would not be surprised if in the future the browser becomes a route for doing just that. IMO.

gfldex
Posted - 2010.01.12 21:09:00 - [20]
 

Originally by: Eno Lacigol

That being said, as someone who doesn't know much about the programing of malware, would the malware form a site viewed using the IGB be able to act like it was intended and mess up my PC?


By far the most attacks try to write a file somewhere and then run it. The actual malware is independed from the infection. As a result an infection will do the same stuff. Chrome is doing silent updates. So far I did not notice the IGB to do that. That means even if Chrome is save to use the IGB can be infected by an oldish attack vector. The new IGB is even more risky to use then the old one was.

A few years back a dev would jump into this thread and enlighten us about the matter. The only way to get in touch with CCP right now is using the petition system. Don't forget to update this thread when you get an answer (in a few weeks).

Mey Alman
Jonferson Space Dynamics Division
Posted - 2010.01.12 21:53:00 - [21]
 

Originally by: Sunbound
Edited by: Sunbound on 12/01/2010 14:44:14
Originally by: Mey Alman
You guys all miss the point. The point is maleware is coded to infect the underlying system (in most cases Windows). But the IGB essentially (at least apparently) runs with EVE as its underlying system.


Chromium is run inside an OS. EVE is not an OS. It simply launches Chromium in parallel to itself, and communicates with it through additional program layer.

Also, it's malware - as in, "malicious software". Maleware would be something totally different.

Also, malware infests your OS, yes. But it needs a vulnerable piece of network-oriented software to get in. A browser you are using can be such software. That's the main reason you can't use plugins like Flash or Java in IGB - to reduce the number of things that have potential vulnerabilities. But there are no guarantees that Chromium itself has no vulnerabilities. And the main thing is, once you visit the website - it knows your IP address, and your IP address can be used to attack any vulnerable network software on your system, not necessarily your browser.



Ok if it really only launches chromium parallel to EvE than forget my whole post :) And also my deepest apologies for the malware typo ;)

randomname4me
Posted - 2010.01.12 22:04:00 - [22]
 

In before bwaaaaaaaa my account just got banned due to a security breach.

Blane Xero
Amarr
The Firestorm Cartel
Posted - 2010.01.12 22:16:00 - [23]
 

This thread is going places. Razz


 

This thread is older than 90 days and has been locked due to inactivity.


 


The new forums are live

Please adjust your bookmarks to https://forums.eveonline.com

These forums are archived and read-only