Join the AMA (Ask Me Anything) with the Firefox leadership team to celebrate Firefox 20th anniversary and discuss Firefox’s future on Mozilla Connect. Mark your calendar on Thursday, November 14, 18:00 - 20:00 UTC!

Die Funktionalität dieser Website ist durch Wartungsarbeiten eingeschränkt, die Ihr Erlebnis verbessern sollen. Wenn ein Artikel Ihr Problem nicht löst und Sie eine Frage stellen möchten, können Sie unsere Gemeinschaft über @FirefoxSupport auf Twitter, /r/firefox oder Reddit fragen.

Avatar for Username

Hilfe durchsuchen

Vorsicht vor Support-Betrug: Wir fordern Sie niemals auf, eine Telefonnummer anzurufen, eine SMS an eine Telefonnummer zu senden oder persönliche Daten preiszugeben. Bitte melden Sie verdächtige Aktivitäten über die Funktion „Missbrauch melden“.

Weitere Informationen

Dieses Thema wurde archiviert. Bitte stellen Sie eine neue Frage, wenn Sie Hilfe benötigen.

block phishing but do not use google

  • 3 Antworten
  • 1 hat dieses Problem
  • 6 Aufrufe
  • Letzte Antwort von philipp

ohjustinternetstuff
ohjustinternetstuff
more options

> When you download an application file, Firefox checks the site hosting it against a list of sites known to contain "malware". If the site is found on that list, Firefox blocks the file immediately, **otherwise it asks Google’s Safe Browsing service if the software is safe by sending it some of the download’s metadata.**

So a record of any application I download that is not immediately identified as malware is sent to Google?

How can I use the purely local part of this service without sending anything to an external site?

Thanks!

> When you download an application file, Firefox checks the site hosting it against a list of sites known to contain "malware". If the site is found on that list, Firefox blocks the file immediately, **otherwise it asks Google’s Safe Browsing service if the software is safe by sending it some of the download’s metadata.** So a record of any application I download that is not immediately identified as malware is sent to Google? How can I use the purely local part of this service without sending anything to an external site? Thanks!

Ausgewählte Lösung

as far as i know it's still windows only - just to be sure you could still toggle the browser.safebrowsing.downloads.remote.enabled pref to false though.

Diese Antwort im Kontext lesen 👍 0

Alle Antworten (3)

philipp
philipp
  • Moderator
more options

ohjustinternetstuff said

So a record of any application I download that is not immediately identified as malware is sent to Google?

hi, only information from unsigned executables (or when the signature doesn't check out) will be sent to google's safebrowsing service. the implementation & also how to turn off that remote app reputation check are explained in https://wiki.mozilla.org/Security/Features/Application_Reputation_Design_Doc

Geändert am von philipp

ohjustinternetstuff
ohjustinternetstuff Fragesteller
more options

Thanks for the reply. In the doc you sent me:

> If a local result is not found, the user-agent may perform a remote-lookup on Windows only.

Is any remote lookup performed on Linux clients (Google or other), or just Windows?


Thanks!

philipp
philipp
  • Moderator
more options

Ausgewählte Lösung

as far as i know it's still windows only - just to be sure you could still toggle the browser.safebrowsing.downloads.remote.enabled pref to false though.