Slashdot Mirror

← Back to Stories (view on slashdot.org)

Google Disables Inline Installation For Chrome Extensions (venturebeat.com)

Posted by msmash on from the tightening-bolts dept.

An anonymous reader writes: Google today announced that Chrome will no longer support inline installation of extensions. New extensions lose inline installation starting today, existing extensions will lose the ability in three months, and in early December the inline install API will be removed from the browser with the release of Chrome 71. Critics have pointed out such moves make the Chrome Web Store a walled garden, while Google insists pushing users to the store ultimately protects them.

40 of 100 comments (clear)

  1. Apple. by Anonymous Coward · · Score: 1

    Apple did it first post.

  2. This is fine by omnichad · · Score: 4, Insightful

    If you've ever seen a regular Chrome user's computer, you know there's at least one rogue extension that they can't explain how it was installed. More likely, several - and one of them changing the new tab page or redirecting searches away from Google.

    1. Re:This is fine by AmiMoJo · · Score: 4, Informative

      And you can still install extensions from outside the Chrome store, you just download them, enable dev mode and load them up that way.

      It's sufficiently difficult enough to deter users being tricked into doing it by dodgy web sites, but easy enough that it doesn't really affect developers and nerds.

      --
      const int one = 65536; (Silvermoon, Texture.cs)
      SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
  3. You are Safer in the Store.... by Zurkeyon3733 · · Score: 2

    Right up to the moment you realize that as much as 30% of the apps there are not properly vetted, and that infections are RAMPANT! But, of course, going to a developer who doesn't want to pay google or conform to their BS, that you may have been downloading apps and content from for DECADES, is worse somehow because google can't extort them or force creative control over their code/IP.... Isn't it?

    1. Re:You are Safer in the Store.... by farble1670 · · Score: 1

      Right up to the moment you realize that as much as 30% of the apps there are not properly vetted

      And 70% of the apps have been vetted. Sounds safer to me.

    2. Re:You are Safer in the Store.... by rudy_wayne · · Score: 2

      More like 0% of apps are properly vetted.

      If you happen to get an app or extension that isn't malware, it's more likely just luck and coincidence, not an actual benefit of getting something from an official App Store.

      After all, Google and Apple have so few employees and so little money, they can't possibly conduct proper vetting of apps.

    3. Re:You are Safer in the Store.... by oh_my_080980980 · · Score: 1

      And what exactly are you installing that you need Google to protect you.....

    4. Re:You are Safer in the Store.... by Carewolf · · Score: 1

      More like 0% of apps are properly vetted.

      If you happen to get an app or extension that isn't malware, it's more likely just luck and coincidence, not an actual benefit of getting something from an official App Store.

      After all, Google and Apple have so few employees and so little money, they can't possibly conduct proper vetting of apps.

      What is the point of getting a malware-free extension for Chrome? Chrome already is malware, it is made specifically as spyware to collect more data on you, and while it benign in that it can be (mostly) disabled, and Google is probably one of the safest places to have your personal data, and trusted to only to sell it anonymized as statistics, it still is what it is.

  4. No biggie by Billy+the+Mountain · · Score: 1

    As long as they support Radial, Boxer, and V8 and Wankel Rotary installations, we're good to go.

    --
    That was the turning point of my life--I went from negative zero to positive zero.
    1. Re:No biggie by sconeu · · Score: 1

      I have a V6, you insensitive clod!

      --
      General Relativity: Space-time tells matter where to go; Matter tells space-time what shape to be.
    2. Re:No biggie by Actually,+I+do+RTFA · · Score: 1

      Of course they support V8. It's a critical part of their engine. Not only that, they opensourced their work on it.

      --
      Your ad here. Ask me how!
    3. Re: No biggie by cas2000 · · Score: 1

      Ethel shook her twigs angrily. And Billy just laughed.

  5. Re:Another reason by Anonymous Coward · · Score: 3, Insightful

    Just gave me a reason to suggest ONLY using Chrome to most users. There is no end to the amount of sideloaded shitware extensions that fuck up your browser.

    "But the website said I needed this to do X!" "I don't know. It just appeared there and I cant search anymore" "Why do I see so many ads?"

    To their Credit, google has taken down a good 20 or 30 extensions I've reported as obvious garbage that violates their terms. Still. Anything to cut down on this crap is great.

  6. Good, another reason by Anonymous Coward · · Score: 1, Interesting

    To push Chrome onto the vast majority of people. I can't even count the number of people who I've help with computer issues with odd, usually scammy/spammy/spyware/malware type extensions installed. 100% of the time they had no idea exactly what they were installing, they were essentially "drive by" installs because of this inline installation feature. 100% of the time, I uninstall those extensions and never get one single complaint about "hey this used to work, but now it doesn't"

    The root of the problem is less that a tiny fraction of computer users actually read any of the fucking dialog prompts they are shown. If there is a "yes" or "ok" button, they push that the vast majority of the time and only click "no" or "cancel" on rare occasion.

  7. Re:Another reason by Anonymous Coward · · Score: 1

    To their Credit, google has taken down a good 20 or 30 extensions I've reported as obvious garbage that violates their terms.

    And how did that "obvious garbage" get into the Chrome Store in the first place?

    Google, Apple, whatever. NONE of them can be arsed to scrutinize things that are submitted to their store. Everybody knows it, and the "bad guys" exploit it routinely.

    Their "walled garden" is a PR move and nothing more.

  8. Government by Anonymous Coward · · Score: 1

    1. Put up a app walled garden.
    2. Have government demand you remove app that chronicles torture and murder.
    3. Profit

    So long as Google has a walled garden for the expressed purpose of removing nefarious content based upon the whim of governments across the globe, Google is complicit in the support of crimes against humanity.

  9. Re:Another reason by Anonymous Coward · · Score: 2, Insightful

    In order to sideload an extension, you have to not only have OS permission (you do have your group policies setup correctly, right?) and the knowledge to enable developer mode in Chrome, but you also have to know how to download and execute the extension file itself. It's also not like the Chrome Web store is any safer. There are tons of malware and spyware extensions there.

    This is just another idiotic way that a corporation can scream out "look at me, look at me, we're protecting users", when in fact the exact opposite is true. They aren't protecting users, they are harming users by taking control and choice away from users.

  10. So how do I develop? by ugen · · Score: 2

    I wrote a small Chrome extension previously. I did submit it to the Chrome store (where I can download it) - but during the development process I needed to modify and reload that extensions many times over (as is natural to any dev. process)

    Without inline extension installation ability - how would a developer be expected to do that? Is there going to be a special "developer" Chrome version? Or would developer have to submit every line change of the extension to the store in order to test it?

    1. Re:So how do I develop? by Anonymous Coward · · Score: 4, Informative

      Inline installation just refers to installs from a website. What you are talking about can be done locally using the extensions tab in dev mode.

    2. Re:So how do I develop? by Tough+Love · · Score: 1

      Develop your app using Chromium, then port it to Chrome.

      --
      When all you have is a hammer, every problem starts to look like a thumb.
    3. Re:So how do I develop? by Anonymous Coward · · Score: 1

      Windows didn't 'nag' if it found DRDos, it gave a fake error message and then pretended to crash.

    4. Re:So how do I develop? by GoRK · · Score: 2

      Sort of; you can no longer download and install a packaged extension. You have to unpack the extension and put chrome into developer mode where it will display a warning about the extension every time you open Chrome.

      Tried to install moonlight on my macbook yesterday (chrome is the only way to run it on os x) and it was really fucking annoying.

    5. Re:So how do I develop? by TeknoHog · · Score: 1

      Welcome to the world of users vs. developers. I recently installed Android in a VM so I can publish the content I produce on a real OS. I also need to use an "app" (things sure have developed from from the olden decades of "application program") for 2FA, because obviously smartphones and/or Chrome are the best way to keep things secure online.

      --
      Escher was the first MC and Giger invented the HR department.
    6. Re:So how do I develop? by Tough+Love · · Score: 1

      Remember how Windows used to nag you if it found itself running under DRDos? It's like that. Microsoft ended up being sued and paying out for such practices, ISTR DRDos was part of that.

      Wow, some Microsoft belly crawler doesn't want the world to remember that.

      But the internet does remember.

      --
      When all you have is a hammer, every problem starts to look like a thumb.
  11. Re: Another reason by Anonymous Coward · · Score: 1

    Maybe on googles side. But Apple has their walled garden locked down pretty tight.

    Not saying "nothing" gets thru. It's just that I trust them a lot more than I trust google.

  12. Does it affect Chromium? by rsilvergun · · Score: 1

    Though it sucks to see another browser making it harder on Devs. I'm still trying to get my extension to play nice with FF Quantum (It's a slow, laborious re-write with a lot more C++ I need to write to do the conversion now). I'm not seeing a lot of improvements in security just more work for devs.

    --
    Hi! I make Firefox Plug-ins. Check 'em out @ https://addons.mozilla.org/en-US/firefox/addon/youtube-mp3-podcaster/
  13. So that's why Firefox... by urusan · · Score: 4, Interesting

    So that's why Firefox has been becoming more and more Chrome-like, so it can be an alternative to Chrome after this change!

  14. Its not like the chrome web store is trustworthy by blackest_k · · Score: 1

    I've reported too many dodgy chrome extensions from the chrome store to trust it.
    What this is really about is control over what you can install.

    There are useful extensions for working round restrictions and google is trying to stop you using them.

    Although this is often effective.

    document.body.contentEditable = 'true'; document.designMode='on'; void 0

    just add it as a bookmark usually is fairly successful, just delete the content you don't want.

    --
    Blarney Quality Restaurant, Plants
  15. You brought this on yourselves by Tough+Love · · Score: 2

    You brought this on yourselves. Who would have thought that a Google-owned browser monoculture would increasingly tend towards evil? Solution: use Chromium. Better solution: use Firefox.

    --
    When all you have is a hammer, every problem starts to look like a thumb.
    1. Re:You brought this on yourselves by johnsie · · Score: 1

      Browse as little as possible. The Internet is a giant data collection tool.

    2. Re:You brought this on yourselves by vandamme · · Score: 1

      Even better solution: use a real Linux distro, not ChromeOS. I'm running GalliumOS, which is a spin of Ubuntu optimized for Chromebooks.

  16. Re:Another reason by Anonymous Coward · · Score: 3, Interesting

    To their Credit, google has taken down a good 20 or 30 extensions I've reported as obvious garbage that violates their terms.

    And how did that "obvious garbage" get into the Chrome Store in the first place?

    Google, Apple, whatever. NONE of them can be arsed to scrutinize things that are submitted to their store.

    Google does not manually review every extension in the store. However, when an extension in the store is found to violate the rules, the removal from the store removes it for all users. That *dramatically* reduces the pay-off of tricking users into installing malware.

  17. I am not an app developer by foradoxium · · Score: 1

    But would this mean app developers can't test their extensions without first getting them in the store? If so is Google going to allow bad apps onto the store for the use of testing? Seems very odd.

  18. Re:Another reason by Ol+Olsoc · · Score: 1, Troll

    Just gave me a reason to suggest ONLY using Chrome to most users. There is no end to the amount of sideloaded shitware extensions that fuck up your browser.

    Hmm, I had to use Chrome this morning, and the once stable browser hung on me several times. I wonder if there is any relation. Can't think why, but that's never happened before. Ended up having to use FF.

    --
    The shepherds did so well protecting the flock that the sheep no longer believed that wolves existed.
  19. Inline Extensions by enderwiggin7 · · Score: 1

    And the definition is? I've been a Chrome user since the beginning and I've never heard that term.

  20. Re:Another reason by Anonymous Coward · · Score: 1

    They probably are, and they should be.

    Unless, of course, you like the idea of the computer equipment you paid for effectively being owned by a company, which is precisely what we are progressing towards.

  21. Re:Everyone moving to a walled garden by skids · · Score: 1

    Yeah, well they would get even better security still if the walled gardens would democratize the vetting process, and allow users to add multiple authorities which vouch for apps, and choose which authorities to trust (to the possible exclusion of "the store" whichever store that happens to be.)

    (Really it astounds me that people stand for being forced to divulge a user identity in order to obtain all software, including free-as-in-beer and opensource, but that's an othogonal matter. It also astounds me that people stand for having basic things like a goddamn text notepad or file manager missing from the base install and relying on 3rd parties, but hey... it's the 10's)

    --
    Someone had to do it.
  22. not a garden by Reverend+Green · · Score: 1

    It's not a "walled garden", it's a "prison state".

  23. How about an option that allows the adults freedom by Marisaze · · Score: 1

    Can we get a setting that allows me to use my computer the way I want to? I know how to not wreck myself and would maybe like to not be beholden to Google's strategy tax.

    Oh well, I never got on the Chrome bandwagon, this just ensures I never will.

  24. Re:Everyone moving to a walled garden by jwymanm · · Score: 1

    Love this post. Thank you. Unfortunately it seems everyone is content in being consumers and more and more are born into this environment of not giving a fuck about freedoms.