New issue
Advanced search Search tips

Issue 798652 link

Starred by 2 users
Status: WontFix
Owner: ----
Closed: Mar 2018
Cc:
est...@chromium.org
nparker@chromium.org
mea...@chromium.org
Components:
EstimatedDays: ----
NextAction: ----
OS: Linux , Windows , Chrome , Mac
Pri: 3
Type: Feature



Sign in to add a comment

Bookmarks manager should label dangerous bookmarked sites and secure bookmarked sites

Reported by 93m4qau...@gmail.com, Jan 3 2018 
UserAgent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.108 Safari/537.36

Steps to reproduce the problem:
1. Bookmark a dangerous site (e.g. http://malware.testing.google.test/testing/malware/)
2. Bookmark a secure site (e.g. https://www.google.com).
3. Open chrome://bookmarks.

What is the expected behavior?
The dangerous site is marked with a red warning triangle and the secure site is marked with a green padlock just left of the favicon. When you hover over the red warning triangle, it could display "This site is dangerous". When you hover over the green padlock, it could display "This site is secure".

What went wrong?
The dangerous site is not marked and the secure site is not marked.

Did this work before? No 

Chrome version: 63.0.3239.108  Channel: stable
OS Version: 6.1 (Windows 7, Windows Server 2008 R2)
Flash Version: 

This is a feature request, not a bug. I think this would be a good addition to Chrome because a) it's good to point out dangerous sites and b) it's good to reward secure sites by showing a green padlock next to them in bookmarks.

Comment 1 by krajshree@chromium.org, Jan 3 2018

Labels: Needs-Triage-M63

Comment 2 by calamity@chromium.org, Jan 4 2018

Components: -UI UI>Browser>Bookmarks Security
Labels: -Type-Bug -Pri-2 Team-Security-UX OS-Chrome OS-Linux OS-Mac Pri-3 Type-Feature
Owner: raymes@chromium.org
Status: Untriaged (was: Unconfirmed)

Comment 3 by est...@chromium.org, Jan 7 2018

Status: Assigned (was: Untriaged)

Comment 4 by raymes@chromium.org, Jan 7 2018

Cc: nparker@chromium.org mea...@chromium.org est...@chromium.org
Components: -Security UI>Browser>Omnibox>SecurityIndicators
Owner: ----
Status: Available (was: Assigned)
Hmm, not sure I'm the right person to look at this. This seems to be more related to bookmarks folks and security indicator folks.

Comment 5 by nparker@chromium.org, Jan 16 2018 

I don't think there's a lot of value in marking dangerous sites, since, a) they're rare and b) the user will get warned immediately when they click on it.

For HTTP-vs-HTTPS, that's an interesting idea, and one for estark to decide if it fits into HTTP-bad plans.

Comment 6 by elawrence@chromium.org, Jan 29 2018

Components: -UI>Browser>Omnibox>SecurityIndicators
The limitation of showing the lock icon in the Bookmark is that it could be misleading; clicking on the link could certainly redirect the user to a non-secure page.

We already show the site's Favicon within the bookmarks UI, and it would probably be confusing to add another icon. We could consider penalizing non-secure bookmarks (e.g. instead of a favicon, we show a broken lock) but that's sure to be contentious.

Comment 7 by 93m4qau...@gmail.com, Jan 30 2018 

I agree that penalizing insecure sites with a broken lock would probably be a better idea than marking HTTPS sites with a green padlock.

Comment 8 by 93m4qau...@gmail.com, Mar 1 2018 

I kind of changed my mind about this. I suppose this could just be closed as WontFix.

Comment 9 by nparker@chromium.org, Mar 8 2018

Status: WontFix (was: Available)

Sign in to add a comment