Chrome should have a template for the "Safe Browsing" anti-phishing files.
------------
Note to tzuk...
The variable '%Tmpl.Chrome%' can't be used, since it points to the folder underneath "User Data":
Tmpl.Chrome=%Local AppData%\Google\Chrome\User Data\Default
------------
I would recommend that all Chrome users allow access to the Chrome "Safe Browsing" (anti-)phishing files.
And, just as the phishing template for Firefox has some security type files added to it, I have added a setting to this template to allow Chrome to update it's "Certificate Revocation Lists" file, when sandboxed.
[Template_Local_Google_Chrome_Phishing_DirectAccess]
Tmpl.Class=Local
Tmpl.Title=Allow direct access to Google Chrome phishing files
OpenFilePath=chrome.exe,%Local AppData%\Google\Chrome\User Data\Safe Browsing*
OpenFilePath=chrome.exe,%Local AppData%\Google\Chrome\User Data\Certificate Revocation Lists
(Dragon and Iron users can check to see if they have those files, and revise the template to use 'dragon.exe' or 'iron.exe' in place of 'chrome.exe')
------
The above template will allow sandboxed Chrome to keep these files updated, outside of the sandbox:
Safe Browsing Download Whitelist
Safe Browsing Extension Blacklist
Safe Browsing Bloom
Safe Browsing Bloom Prefix Set
Safe Browsing Cookies
Safe Browsing Cookies-journal
Safe Browsing Csd Whitelist
Safe Browsing Download
Certificate Revocation Lists
[.08] Add a phishing template for Google Chrome
[.08] Add a phishing template for Google Chrome
Paul
Win 10 Home 64-bit (w/admin rights) - Zone Alarm Pro Firewall, MalwareBytes Premium A/V, Cyberfox, Thunderbird
Sandboxie user since March 2007
Win 10 Home 64-bit (w/admin rights) - Zone Alarm Pro Firewall, MalwareBytes Premium A/V, Cyberfox, Thunderbird
Sandboxie user since March 2007
Added in version 4.05.08 in
Sandbox Settings > Applications > Web Browser > Google Chrome
Allow direct access to Google Chrome phishing database
(Applies to chrome.exe, dragon.exe, iron.exe, opera.exe, maxthon.exe.)
The setting will only apply automatically to new sandboxes!
For existing sandboxes, it has to be enabled manually.
Thanks again!
Sandbox Settings > Applications > Web Browser > Google Chrome
Allow direct access to Google Chrome phishing database
(Applies to chrome.exe, dragon.exe, iron.exe, opera.exe, maxthon.exe.)
The setting will only apply automatically to new sandboxes!
For existing sandboxes, it has to be enabled manually.
Thanks again!
tzuk
Who is online
Users browsing this forum: No registered users and 1 guest