You are here

Home » Forums » Support Forums » Internet Apps Support

How to make ChromePortable NOT READ/follow policies/REG items on the host box

3 posts / 0 new
Log in or register to post comments
Last post
April 7, 2022 - 8:08am
#1
Asteriz
Offline
Last seen: 11 months 3 weeks ago
Joined: 2018-08-07 01:48
How to make ChromePortable NOT READ/follow policies/REG items on the host box

The problem is that on a particular host box HKLM\SOFTWARE\Policies\Google\Chrome /v RestoreOnStartup is set to 0x04 which prevents restoration of previously open windows/tabs and that makes ChromePortable completely useless.

I tend to have like a dozen windows 5-6 tabs each and the very reason for taking the latest ChromePortable was to avoid that policy force fed to that box for the locally installed Chrome.

0x04 is "Open a specific page or set of pages" in On startup settings
0x01 is "Continue where you left off" == restore tabs and windows

Since you are already able to virtualize password(s) == intercept registry reads for particular paths can you do the same for HKLM\SOFTWARE\Policies\Google\Chrome /v RestoreOnStartup

The value(s) can be in already present GoogleChromePortable.ini or a new .ini

Top
April 7, 2022 - 10:53am
John T. Haller
John T. Haller's picture
Online
Last seen: 50 min 51 sec ago
AdminDeveloperModeratorTranslator
Joined: 2005-11-28 22:21
Not Possible Without Admin Rights

This is not possible without admin rights. I'd suggest using Firefox Portable.

Sometimes, the impossible can become possible, if you're awesome!

Top
April 9, 2022 - 5:20am
(Reply to #2)
Asteriz
Offline
Last seen: 11 months 3 weeks ago
Joined: 2018-08-07 01:48
I did try Firefox Portable - it broke into pieces

.

There doesn't seem to be a way to attach a screenshot here and it will be hard to grasp the Firefox problem without seeing it. The box is under a crazy VPN kept by Zscaler which messes with SSL (called SSL "packet inspection" or snooping) and plants it's own versions of de-facto fake certificates - the data in them is copied from originals but signatures are different. Zscaler was injected as "root authority" but your portable Firefox either doesn't see that at all or get;s confused by something else and refuses HTTPS connection to google.com and support.mozilla.org.

It recognizes Zcaler as: Zscaler Intermediate Root CA (zscaler.net) (t)

Error code: MOZILLA_PKIX_ERROR_MITM_DETECTED

And the the text after that states directly that Firefox refuses to do exactly what Zscaler wants it to do:

Firefox uses the Mozilla CA store to verify that a connection is secure, rather than certificates supplied by the user’s operating system. So, if an antivirus program or a network is intercepting a connection with a security certificate issued by a CA that is not in the Mozilla CA store, the connection is considered unsafe.

But, when I install Firefox (== definitely not portable) then it doesn't have any of these problems at all. => you'd need to convince/force Firefox under your portable setup to drop the paranoia and play ball with the host - plain install apparently does that.

Portable Chrome doesn't have any problems in that regard either

Top
Log in or register to post comments