Re: Google checking my system?
KS wrote:
> Mumia W.. wrote:
>> On 08/20/2007 10:18 AM, KS wrote:
>>> Mumia W.. wrote:
>>>> This feature is called "safebrowsing," and turning it off is as easy as
>>>> changing this option:
>>>>
>>>> Edit-> Preferences-> Security-> Tell me if the site I'm visiting is a
>>>> suspected forgery.
>>>>
>>> But there are two choices there. The first one checks for phishing from
>>> a downloaded list of websites, while the second one asks Google for each
>>> site one visits. For me the first choice is enabled by default and the
>>> second choice does give a warning dialog before accepting the TOS.
>>>
>>> I would assume that Iceweasel does not check with google for phishing
>>> with the first choice.
>> Why would you assume that?
>>
>
> The difference between the two choices indicates that the second one
> checks for phishing for all sites the user visits (i.e. real time)
> whereas first one works with an already present list of websites
> (probably packaged with iceweasel?).
>
On further investigation: the anti-phishing page on mozilla.com does say
that the second choice (Google) does real-time checking whereas the
first choice checks from a local file which is updated periodically.
http://www.mozilla.com/en-US/firefox/phishing-protection/
And going into about:config there was a preference
browser.safebrowsing.provider.0.updateURL which has a google uri as its
value
http://sb.google.com/safebrowsing/update?client={moz:client}&appver={moz:version}&;
So effectively it seems both the checks happen against same provider's
db where the real-time check would be more fresh if it changes fast.
Another difference which might be of more importance is that with
real-time checking the browser sends more information about the user's
browsing habits than with the download option.
/KS
Reply to: