Skip to main content
Information Security

Questions tagged [chromium]

Ask Question

The tag has no summary.

24 questions
Newest Active Bountied Unanswered
3 votes
1 answer
697 views

Chrome (and Chromium-based browsers) have added "local network access restrictions." Chrome 142 restricts the ability to make requests to the user's local network, gated behind a permission ...
Paul Draper's user avatar
  • 980
3 votes
1 answer
122 views

What are the security implications, if any, of allowing a site to "manage windows on all your displays" in Brave/Chrome? Example:
Franck Dernoncourt's user avatar
  • 819
0 votes
1 answer
162 views

Uses Chromium 115 when current stable is 118. They do claim to have the latest chromium security updates. Does patching old chromium with the latest security fixes bring it on par with the latest ...
Shubham Deshmukh's user avatar
  • 21
5 votes
0 answers
341 views

I'm evaluating running Chromium without native sandboxing in a rootless container. A few points: You can containerize Chrome using rootless containers with something like podman. This will utilize ...
Evan Carroll's user avatar
  • 3,237
9 votes
2 answers
2k views

I use Vivaldi. I have previously filled in forms where I used a certain name and e-mail. Today I cleared the browser data except for the autofill stuff. Then I went to Stack Exchange to register an ...
Javiair's user avatar
  • 107
-2 votes
1 answer
751 views

I have been using Brave for a long time now. Lately, I realized it uses Chromium. I really dislike using Google because of my data privacy. So I am starting to wonder if Brave does the same thing.
brrrrrrrt's user avatar
  • 23
1 vote
0 answers
48 views

I finally found a Chromium fork which appears to have made a serious effort to remove all the Google cancer. Sadly, I see this: https://ungoogled-software.github.io/ungoogled-chromium-binaries/ ...
Ziad's user avatar
  • 11
2 votes
1 answer
1k views

I am increasingly being requested to join videoconferences through Zoom, which I don't trust to run on my machine. I understand that there are two common ways of sandboxing this software: you can ...
Psychonaut's user avatar
  • 695
2 votes
2 answers
7k views

Where SAN means: Subject Alternative Name. I feel I have a basic misunderstanding in which certificate the SAN stuff shall go: ca or server or both or what? It might be 3 Years or more in the past, ...
woodz's user avatar
  • 131
16 votes
3 answers
6k views

Attempting to run Puppeteer, a Node library to control a headless Chromium (in order to do things like create a PDF of a website), in Docker is a surprisingly fiddly thing. The problem is that, from ...
Torque's user avatar
  • 261
3 votes
0 answers
397 views

I’ve been trying to understand how does Chrome interact with CT log servers. According to what I’ve read so far, Chrome sends inclusion proof requests (“GET https:///ct/v2/get-proof-by-hash” - https://...
flopoe's user avatar
  • 31
3 votes
0 answers
882 views

There are several attacks possible when embedding links with target="_blank". This is where rel="noopener" and rel="noreferrer" should help. I am expecting that clicking the following link <a ...
Anderson's user avatar
  • 131
1 vote
1 answer
201 views

My situation is: +I have created a special purpose gmail account +I used a complicated password to protect the account. On purpose, I did not use any 2FA options are a "reset" email address or phone ...
kinda.autistic's user avatar
  • 13
1 vote
0 answers
190 views

What is the essence of Google Chrome’s new controversial sign-in feature? How does it work and how does it differ from what was it before? What is the danger of it? Is Chromium affected?
R S's user avatar
  • 225
1 vote
1 answer
507 views

There was a bug in Widevine last year which enabled downloading Encrypted Media Extension Content. They stated that they would give full details after 90 days. Was this meant for public disclosure or ...
user2284570's user avatar
  • 1,512

15 30 50 per page
1
2