dslreports logo
site
 
    All Forums Hot Topics Gallery
spc

spacer




how-to block ads


Search Topic:
uniqs
3
share rss forum feed


Brano
I hate Vogons
Premium,MVM
join:2002-06-25
Burlington, ON
kudos:10
Reviews:
·TekSavvy DSL
·Bell Fibe

1 edit
reply to OZO

Re: How do you access more then one Google account at same time

You should have copied the whole paragraph

quote:
Security

Because the data for all users which have been used for an instance of Chrome are associated with a single operating system identity, there is no expectation of special privacy. That is, there is no additional encryption of preferences and settings on the local machine other than that which already exists for user data directories in Chrome. Obviously, a password is needed to log in to a specific Chrome identity on the browser. However, no additional protection for the user data directories is planned. On Mac OS X, in fact, because passwords are stored in the commonly accessible keychain, it will be possible for a user in one account to access the passwords that have been stored on that machine by a user with another account.

You will have this issue with other browsers too (i.e. Firefox using profiles) ... unless you logout a user from OS and login as different user to OS.

Point is, if it's just you single OZO user (in OS) using multiple google users you're fine.
If multiple physical users i.e. you and yor wife are using same OS account with same Chrome but multiple Google users you could theoretically (and practically I'm quite sure) compromise each-other's Google identities.

....you're fine

OZO
Premium
join:2003-01-17
kudos:2

Fortunately instance of Chromium browser is not defined by OS's user login. You can run different instance of browser if you want just by specifying different profile (see definitions in this post). Personally I always run it with command line containing -user-data-dir option. It means that I don't use default profile, but rather a custom one. If I need to run a different instance, I launch browser pointing to a different profile. And now, with the BAT file posted above, I may launch unlimited number of Chromium browsers that don't share any data between them in case I need that. It's just like with old, good IE, but without all of this hassle ;)

--
Keep it simple, it'll become complex by itself...



Brano
I hate Vogons
Premium,MVM
join:2002-06-25
Burlington, ON
kudos:10
Reviews:
·TekSavvy DSL
·Bell Fibe

Sorry, you're not getting what the folks here »www.chromium.org/user-experience···profiles are trying to say. Read it carefully again.

quote:
Security
Because the data for all users which have been used for an instance of Chrome are associated with a single operating system identity, there is no expectation of special privacy. That is, there is no additional encryption of preferences and settings on the local machine other than that which already exists for user data directories in Chrome. Obviously, a password is needed to log in to a specific Chrome identity on the browser. However, no additional protection for the user data directories is planned.

It doesn't matter how you shuffle the profiles with scripts or manually, if the various Chrome (or Firefox or IE) profile data are accessible by the same user there's "no expectation of special privacy".

OZO
Premium
join:2003-01-17
kudos:2

Thank you for citing it several times. I'm not looking for "expectation of special privacy" form other users on my computer. I'm not looking for an encryption mechanism to hide and protect data (history, cookies, bookmarks, etc) from other users on that computer (or, as they mentioned, from other "operating system identity"). No, I don't worry about that local protection. I'm looking for protection from potential cross-reference vulnerabilities, that modern browsers are exposed quite often to (thanks to the advertisement industry, subsidizing the development of all commercial browsers and making tracking of users easier, especially with third party cookies and other similar approaches). I want to make sure, that all session data, that I have in one web browser is completely isolated from access by the web sites, opened in other instances of the same browser. In other words, if I signed in in one browser and got session cookies, entered credentials, added history of visited sites, etc in the process, I want to make sure, that all that session data will not be accessible from any other browser instances.

With old IE it was simple - just make sure you run browser in a different process and it will not share session data between those processes. With Chromium it becomes more convoluted due to the way how now it opens many processes within one "instance" (hence the new term/way of isolation). That's the separate "instance", that I'm looking for for a cross-reference protection. And it looks like I've found it now. Thank you.
--
Keep it simple, it'll become complex by itself...