Browser security

Ye' old general discussion board. Basically, for everything that isn't covered elsewhere. Come here to shoot the breeze, shoot your mouth off, or whatever suits your fancy.
This forum is not for asking programming related questions.

Moderator: General Moderators

Post Reply
matthijs
DevNet Master
Posts: 3360
Joined: Thu Oct 06, 2005 3:57 pm

Browser security

Post by matthijs »

A big security problem nowadays is people getting tricked into clicking stuff on websites. You probably all know the popups on websites, looking almost like system notify windows, telling "Your PC is infected, run this scanner program" or something like that. You know, even the close icon X is in fact not a regular close button, but will perform the malicious action.

The websites I visit most often don't have those popups so it's not bothering me, but there must be so many people coming to these sites and being tricked into clicking and thereby downloading stuff.

I was thinking, why is it even possible that a browser window is changed by a website? Why would you, as a browser developer, even let that happen? Think about it, if all those strange popups would be contained within a regular browser window, complete with address bar, buttons, etc, it would be totally obvious to most users that the screen shown is not a legitimate system popup but just an attempt to scam.

It is my browser program. With my action buttons (back, forward, home, etc), my address bar, etc. There's a room dedicated to showing the contents of the webpage I'm visiting. A website shouldn't be able, in any way, to change anything to my browser (also not the size! but that's another story).

What are your thoughts?
Chonk
Forum Newbie
Posts: 24
Joined: Fri May 28, 2004 3:58 am

Re: Browser security

Post by Chonk »

As with most security considerations on technologies functionality is implemented then the consequences encountered.

Especially when you consider when these technologies were created , security was not of paramount importance.

Obviously as we become more aware of security practices its in the design stages but its a gradual process and a cat and mouse game between developers and malicious people.
Post Reply