Advice Request COMODO - Chrome not fully virtualized

Please provide comments and solutions that are helpful to the author of this topic.
Status
Not open for further replies.
C

ctrlz

Level 2
Thread author
Verified
Mar 20, 2017
54
126
66
italy
Hi,
today I run Chrome in the comodo sandbox and I removed ublock origin extension, while in the sandboxed session.
Then I closed the virtualized chrome and opened the normal Chrome (unsandboxed)... and I found that ublock was removed :confused::confused:

Is it normal?
Does it happen to you too?

I already created a thread in the comodo forums (link)

EDIT: well.. probably the problem is that the Google Account is notified, and reflects the extension edit to other sessions :(
 
Last edited:
  • Like
Reactions: Sunshine-boy, frogboy and shmu26
Chrome syncs your customizations to the cloud, and shares them with all your Chrome installations. One of the categories it syncs is your extensions. You can change that setting in Chrome, if you wish, and set it to not sync your extensions.
 
  • Like
Reactions: Maxwell Sien, Sunshine-boy, frogboy and 1 other person
ctrlz said:
@shmu26 thank you, I just realized it, my fault.

Anyway, I didn't think about the fact that if a google account gets infected it will affect the real browser too.
Click to expand...
Well, it won't actually sync an infection, unless the extension itself is malware.
 
  • Like
Reactions: Sunshine-boy
What can be an infection? I don't know.
Everything that changes Chrome settings, such as homepages, popups, extensions/apps that one wants just to try in a sandbox etc. At the end, everything that is synced is exposed and can be compromised into the clean browser too
 
So a malware that replaces my homepage with a fake page (in the google settings) would not sync it to the clean browser?
Or, in the sandbox I try a software that auto-installs an extension, and it is synced
 
  • Like
Reactions: shmu26
ctrlz said:
What can be an infection? I don't know.
Everything that changes Chrome settings, such as homepages, popups, extensions/apps that one wants just to try in a sandbox etc. At the end, everything that is synced is exposed and can be compromised into the clean browser too
Click to expand...
The truth is, I was a little surprised that when you ran Chrome unsandboxed, it remembered your sandboxed settings. It usually doesn't work that way for me. For me, it usually runs at the original settings. Maybe Google changed something.
 
  • Like
Reactions: Sunshine-boy
ctrlz said:
So a malware that replaces my homepage with a fake page (in the google settings) would not sync it to the clean browser?
Or, I try a software that auto-install an extension and it is synced
Click to expand...
If the software installed the extension by forcing its installation from registry or group policy, then it is not a Chrome setting, and it will not sync.
If it installed the extension the regular way, then it cannot install in the first place, unless you click "okay" when you get the Chrome pop-up that warns you about a new extension.
 
  • Like
Reactions: Sunshine-boy and ctrlz
Status
Not open for further replies.

You may also like...