search

xiongtong3 / switchy

Automatically exported from code.google.com/p/switchy
0 stars 0 forks source link

Is access to personal files and all websites really necessary? #202

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago 
When about to install this extension, Chrome informs me that it needs access to 
all websites I visit and *all personal data and files on my computer*. I can 
kind of understand the need to access the websites I visit, so it can route 
things through the proxy. But I can't imagine why it needs access to *any* of 
my computer files and data. As a result, I have not installed the extension, 
because I'm not particularly keen to give anyone access to my personal files.

I would strongly recommend that the extension be redesigned to not require 
access to all of the user's personal files. Alternatively, the extension could 
be more precise to Chrome about what files it wants access (assuming that's 
possible).

Original issue reported on code.google.com by the.ouiz...@gmail.com on 7 Aug 2010 at 7:11

GoogleCodeExporter commented 9 years ago 
I also wonder about this. What would be nice, while trying to come up with 
something not to need that wide access, is an explanation on either the project 
page or this site as to why that's happening, the reasons behind it and a 
certain assurance from you that this has to be in that way for this to work.

I do believe that this being open source is a bit far off to think it might do 
anything destructive, but this extension might expose data to other 
vulnerabilities so overall it is an important security issue.

Original comment by abar...@gmail.com on 16 Sep 2010 at 9:37

GoogleCodeExporter commented 9 years ago 
@Comment 1: Switchy is not exactly open source:
http://code.google.com/p/switchy/issues/detail?id=56

Original comment by mi...@mihaic.ro on 14 Apr 2011 at 3:02

GoogleCodeExporter commented 9 years ago 
It had been a while since this issue was brought up and I would be happy to 
hear the develpoer's  notes on this: Access to such a wide amount of personal 
data together with hidden soruce code sounds like a bad combination. I am sure 
many potential users would be happy to know there is nothing to be afraid of. 
Similar extensions to chrome do not require such privileges. So, can we clear 
the Myst around this issue?

Original comment by rimo...@gmail.com on 25 Jun 2011 at 4:10

GoogleCodeExporter commented 9 years ago 
I second that motion (and wholehearted enjoyed the Myst reference :-) ).

Original comment by the.ouiz...@gmail.com on 25 Jun 2011 at 4:15

GoogleCodeExporter commented 9 years ago 
"As a result, I have not installed the extension, because I'm not particularly 
keen to give anyone access to my personal files." Same for me. I removed the 
application when I noticed this even I need it so much. I see still no reply 
from the developer since 2011. That's strange.

Original comment by volkan.e...@gmail.com on 26 Apr 2013 at 8:32