My office does not support Chrome nor does it allow me to install software on my computer. So, I downloaded Chrome portable and put the directory in My Documents which then allowed me to run Chrome. (No auto updates and it can't be set as my default browser, but I'm willing to live with these annoyances.)
Today I was told that this is a security risk, even if I ran it off my USB drive. The reason given was that since it was not installed in Program Files (which is unwriteable by non-admins) but in My Documents (writable by non-admins) I've oened Chrome to possible infection. (Yes, we run all sorts of Anti-Virus software.)
Can anyone supply me with some information that would allow me to defend the position that running Chrome portable is no more dangerous than running Firefox or IE as installed on the machine. (No, they will not install Chrome for me.) They're willing to work with me on this but if I can't come up with anything to reassure them, Chrome has to go.
Thanks for any assistance you can provide. I'll be happy to provide any clarification to the best of my ability.
Michael
Visit the Community page
Join our forums
Subscribe to our email newsletter
Subscribe with RSS
Follow us on BlueSky
Follow us on Facebook
Follow us on LinkedIn
Follow us on Mastodon
Follow us on Twitter
In my personal experience admin rights mean nothing to viruses and trojans. Most of them end up somewhere in the Windows directory, you'd think your average antivirus would make that just as safe as anything in Program Files.
IMO, Internet Explore is the one most prone to letting in bugs and viruses along w/ any internet browsing program in the computer's Program Files. Business just don't like people to use software that they didn't put on the computer.
Load the App and Play :evil:
I'm not a security professional, so as with probably every comment you'll get on this thread, take with the proverbial grain of salt.
My employer has gone through the same sort of process to remove Local Admin rights from everyone, and now any installs have to go through MIS first. We have a couple of Adobe Air based aps that we have to use, and those always require Admin access to update. Drives them crazy.
Anyway, Chrome Portable in a personal folder should be no less (or more) secure than Chrome installed in Program Files. When you run the application, the process is still running with your permission level. If you open Task Manager, you'll see the Chrome process (or FF or IE) running under your user name. Therefore, the process has the ability to write to any location that you can.
There are at least two differences here that you can't really win. One is that with Chrome located in a non-protected location, you could potentially download something crazy off the internet that actually changes the Chrome exe files. Then one of those modified files could run something malicious. However, as someone earlier in the thread noted, your anti-virus solution should catch that. The second is that since you are in control of that application, you now have the responsibility of keeping it up-to-date with new releases from Google. Your company doesn't have a way to necessarily keep track of the install and make certain that it stays current.
Good luck!
Recovering programmer
I'm not going to try to beat down on chrome (I do admit, it is pretty slick), but Firefox 4 just dominated the benchmark battle.
Just sayin.
Anyway, just tell them that you don't visit malicious websites. The only thing that might be hard is, say doing a google search and clicking on a bad result. But for that, there's WOT.