New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.

Issue 605645 link

Starred by 4 users

Issue metadata

Status: Assigned
Owner:
Last visit 20 days ago
Cc:
Components:
EstimatedDays: ----
NextAction: ----
OS: Windows
Pri: 3
Type: Feature



Sign in to add a comment

Hardening chrome downloads of installers

Reported by joshjdr...@gmail.com, Apr 21 2016

Issue description

From http://seclists.org/oss-sec/2016/q2/126 (point #3)... Putting downloads into a directory of it's own can mitigate "Carpet bombing" style attacks. Please consider implementing this strategy!
 
oops. I posted too soon. This is more of a Windows problem than OSX/Linux TBH.

Comment 2 by nasko@chromium.org, Apr 21 2016

Cc: jsc...@chromium.org nasko@chromium.org
Components: UI>Browser>Downloads
Labels: -Type-Bug -OS-Mac Security OS-Windows Type-Feature

Comment 3 Deleted

For more color, please also read http://justhaifei1.blogspot.com/2015/10/watch-your-downloads-risk-of-auto.html or see the plethora of Stefan Kanthak's advisories about such DLL planting issues.
Status: Available (was: Unconfirmed)
This has been suggested and the intention to implement has floated around for a while. The general approach that we've considered is to download .exe files to a temporary directory and then prompt the user whether to run or save the file (i.e. downloads of .exe files would no longer be "automatic").

"Run" launches the .exe off the temporary directory and schedules the temporary directory to be deleted on reboot. "Save" moves the .exe out to the default download directory.

That sounds like a workable UX to me! I assume "save" would also prompt for location if that option was enabled (as I always turn it on).
Project Member

Comment 7 by sheriffbot@chromium.org, May 5 2017

Labels: Hotlist-Recharge-Cold
Status: Untriaged (was: Available)
This issue has been available for more than 365 days, and should be re-evaluated. Please re-triage this issue.
The Hotlist-Recharge-Cold label is applied for tracking purposes, and should not be removed after re-triaging the issue.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot
Owner: nancygao@chromium.org
Status: Assigned (was: Untriaged)

Sign in to add a comment