undefined | Better HN

0 points219y ago0 comments

Hosting on GitHub solves one problem, but creates another.

Chrome for example has a sort of a bloom filter which is used to check all downloaded executables. This will raise a nasty warning if the thing you downloaded is not a "popular" download.

For obvious reason, this check is disabled for a bunch of sites, like github, sf, ...

I know for a fact that some malware authors host their stuff on GitHub exactly to bypass this Chrome check.

0 comments

2 comments · 1 top-level

gaadd339y ago· 1 in thread

Do you have any more info about this? I've downloaded random executables from a lot of unpopular (and in some cases, newly created by me) sites and never seen anything pop up in chrome warning me not to download it.

21OP9y ago

Information is scarce on this (a little bit of security through obscurity).

Here is theirs blog post introducing the feature in 2012: https://chrome.googleblog.com/2012/02/faster-browsing-safer-...

> Chrome also does checks on executable files (like ".exe" and ".msi" files). If the executable doesn't match a whitelist, Chrome checks with Google for more information, such as whether the website you're accessing hosts a high number of malicious downloads.

At the time I looked at the implementation in the Chrome source code, but I remember that it took me a while to locate it.

j / k navigate · click thread line to collapse