Most active commenters
  • kbolino(3)

←back to thread

"Begin disabling installed extensions still using Manifest V2 in Chrome stable"

(developer.chrome.com)
552 points freedomben | 31 comments | 11 Oct 24 14:20 UTC | HN request time: 0.957s | source | bottom
Show context
sho ◴[11 Oct 24 14:49 UTC] No.41809962[source]
Hopefully this is the inflection point for Chrome. Despite all their made-up "security" reasons, everyone knows this is solely about making adblock less effective. For many users, adblock is what makes chrome bearable - and if they make it unbearable, then those users will leave. Slowly but surely.

Google seems much too sure of itself making this change. I hope their arrogance pays off just the same as Microsoft's did with IE.

replies(14): >>41810044 #>>41810118 #>>41810304 #>>41810320 #>>41810359 #>>41810375 #>>41810472 #>>41810519 #>>41810553 #>>41811938 #>>41812626 #>>41813079 #>>41813685 #>>41822203 #
1. freedomben ◴[11 Oct 24 15:04 UTC] No.41810118[source]
Agreed on hoping this is the inflection point, but only partial agreement that it's about adblock. For sure Google wants adblock to die, but I think it goes even deeper than that.

I think it's part of a much bigger trend in tech in general but also in Google: Removing user control. When you look at the "security" things they are doing, many of them have a common philosophy underpinning them that the user (aka device owner) is a security threat and must be protected against. Web integrity, Manifest v3, various DoH/DoT, bootloader locking, device integrity which conveniently makes root difficult/impossible, and more.

To all the engineers working on this stuff, I hope you're happy that your work is essentially destroying the world that you and I grew up in. The next generation won't have the wonderful and fertile computing environment that we enjoyed, and it's (partly) your fault.

replies(10): >>41810189 #>>41810253 #>>41810403 #>>41810484 #>>41811226 #>>41812153 #>>41812977 #>>41815654 #>>41816016 #>>41816240 #
2. justanotheratom ◴[11 Oct 24 15:11 UTC] No.41810189[source]
yes, iOS now restricts Apps from getting blanket access to their contacts, photos, and even clipboard. On the one hand, it does protect the user from malicious Apps that trick users into giving blanket access. On the other hand, they could have atleast done it like location access - where user still has an option to give blanket access. It is not fair that Siri is the only one that can access these things now.
replies(2): >>41810347 #>>41810527 #
3. kbolino ◴[11 Oct 24 15:18 UTC] No.41810253[source]
It is important, I think, to understand that personal computing is just one part of the picture. "Enterprise" environments (governments, businesses, large organizations, etc.) have demanded many of these "features" even before Google started implementing them. Your workplace, by and large, does not want you, the replaceable person who happens to be sitting at the keyboard, to be in full control of the device that they own and which is connected to their network. Often this is made more explicit by the device just being a "thin client" or other totally locked down narrow viewport to some other computer you can't even touch. It sucks and the general trend of workplaces trusting their employees less and less has been demeaning and degenerative to the point of often fostering self-fulfilling prophecies of mistrust (don't trust anyone => get untrustworthy people => bad things happen => don't trust anyone => ...).

However, it is important to also understand that the employee is not the only stakeholder. Government agencies answer to legislators, nonprofit management answer to donors, corporate management answer to investors, etc. There are layers of compliance that must be considered as well (internal policies, external regulations, different insurance costs, etc.). It is unsurprising that these fewer but generally deep-pocketed entities have an outsized influence on the market compared to more numerous but less moneyed end users. If you refuse to serve the former, you may quickly find yourself out of business.

replies(4): >>41810399 #>>41810523 #>>41810530 #>>41815683 #
4. moi2388 ◴[11 Oct 24 15:27 UTC] No.41810347[source]
It can. You can still give apps access to all of it with a single press.

And manifest v3 makes things a bit more tedious but not impossible. There are other adblockers which still function just fine

5. ◴[11 Oct 24 15:33 UTC] No.41810399[source]
6. Cthulhu_ ◴[11 Oct 24 15:33 UTC] No.41810403[source]
I get why they built in all of those protections; the vast majority of tech users are not knowledgeable about the details of the stuff they use. And I think a big chunk of those that are, overestimate their own abilities, knowledge, and control. They all need to be protected against themselves.

That said, I don't like that the choice is being taken away. If you do want to tinker at that level with the technology you own, you should be given the choice. By all means make it not obvious how to get there - like, have people reboot their computers while playing Twister on their keyboards with interesting key combos, but give them the option.

7. Arch-TK ◴[11 Oct 24 15:43 UTC] No.41810484[source]
The technologies themselves are mostly a good idea. The problem is that the companies designing them also like to abuse them.

Take, for example, hardware attestation on android. There's not really any serious issue with this feature, it can be used to ensure your device is not compromised. This is for example how GrapheneOS enables its use with the auditor application.

But, on the other hand, Google abuses the feature to ensure that you are running a google signed OS if you want to use Google Pay. Meanwhile you can use banking apps which also use hardware attestation (although, from their perspective, they don't use enough of it to ensure it isn't being spoofed, and even then...) without any problem on GOS. Moreover, before Google Pay completely killed all of its competition, it was possible to even find third party banks which would provide you with the ability to pay with your phone without using google pay.

Likewise, secure boot is a great concept if you want to be more sure about the integrity of your laptop throughout its lifetime. But some companies have abused it to force you to use Windows. If you want to set up your own signing keys for secure boot, you end up having to deal with poorly managed UEFI keys from third parties which weaken the security of your machine. The feature, as it's implemented, is rarely designed with helping end user's secure their machines. But the core of the design is fine.

I think limiting root on a phone is also a really good idea, the issue is that Google likes to give themselves and their "system apps" special privileges. If APIs were exposed to allow you to bless your own applications with the right permissions, you would probably not care so much about root restrictions.

So all in all, fundamentally, most of these features are fine. They're genuinely great for security. But the main problem is how they're abuse by the companies in control and how little effort is put into allowing power-users to use those features for their own benefit.

replies(1): >>41810650 #
8. EasyMark ◴[11 Oct 24 15:46 UTC] No.41810523[source]
Then they could have made Mv3 an option to turn on by sysadmins who lock down their browsers. If you aren’t locking down your users browsers then that’s on you. I mean at worst they could have made mv2 opt-in and most people would have highly curtailed their complaints of “I’ll jump ship to _____________” . People don’t like it when features are removed especially when there are viable alternatives like, adding a special tier of review to get mv2 approval for your extension, opt-in/out as discussed, easy access by sysadmins to turn it on/off. Instead google pulled a bully “so, pencil-neck, what are you gonna do about it?” instead. They are tone-deaf and see themselves as the new 800lb silverback on the block.
replies(2): >>41810681 #>>41815373 #
9. kstrauser ◴[11 Oct 24 15:47 UTC] No.41810527[source]
That's literally how iOS works today. If I go into Settings > Privacy & Security > Photos, I can give apps None, Limited Access, or Full Access. Same with Contacts, same with the clipboard (where the per-app choices are Ask, Deny, or Allow).

> It is not fair that Siri is the only one that can access these things now.

That would be true if it was, but it isn't.

10. consp ◴[11 Oct 24 15:47 UTC] No.41810530[source]
> It sucks and the general trend of workplaces trusting their employees less and less

You get what you pay for. Seeing that employee retention is frowned upon.

11. freedomben ◴[11 Oct 24 15:57 UTC] No.41810650[source]
No disagreement here, although if past experience has proven anything I think it's that companies will abuse whatever "security features" they can to accomplish their objectives. It reminds me a lot of the old adage, "the same wall can keep people in just like it can keep people out."

When the OS is fundamentally in the user's control, they are limited in what they can do, but when the OS disregards it's owners preferences/desires and enforces it's creators desires.

Minor thing actually:

> If APIs were exposed to allow you to bless your own applications with the right permissions, you would probably not care so much about root restrictions.

I absolutely agree with this in theory, but in practice I'm not sure it would ever work because they just aren't going to put in the work to build and maintain APIs for things they don't care about, and there would be a very long tail of things to do (and sometimes those things are legitimately a lot of work). Call recording being a classic example.

But all in all, I very much agree. I love those features when they are in my control on my devices. Biggest issue is, they virtually never are and the number of occurences is trending down.

Anyway,

replies(1): >>41820741 #
12. kbolino ◴[11 Oct 24 16:02 UTC] No.41810681{3}[source]
I was mostly commenting on the "broader trend" aspects and the assignment of primary blame to implementing engineers.

There's another problem with Chrome, which is that nobody is actually paying for it. So the big corps move features along there only in the sense that they won't adopt it or will drop it otherwise. I don't think the big corps are pushing for Mv3 but they also probably don't care that it arrives either. Conversely, I wager Google estimates nearly nobody will revolt and leave Chrome over the loss of Mv2. It hurts ad-blocker developers and it hurts the most conscious users, but Chrome is a marketing product targeted at mass adoption first and foremost. I personally hope their estimation is wrong and the current browser monopoly breaks, but this may not yet be the breaking point.

Even if that happens, Chrome eagerly adopting enterprise policy support may keep it on life support in that environment, though.

13. kuhsaft ◴[11 Oct 24 17:02 UTC] No.41811226[source]
> To all the engineers working on this stuff, I hope you're happy that your work is essentially destroying the world that you and I grew up in.

That was a world where the user base was much more limited and devices were less capable. Now we have children, grandparents, educated, and uneducated users with access to web connected devices. These devices now contain everything about you. Compromise of a device can destroy someone’s life.

Not only that, but compromise of a device can cause collateral damage to other devices on the same network.

We now have to cater to every user. Not just to the technologically adept. Look at what people believe on social media. The bar is so low to con people into compromising their device.

replies(4): >>41811404 #>>41813719 #>>41822470 #>>41847036 #
14. jauntywundrkind ◴[11 Oct 24 17:22 UTC] No.41811404[source]
Still a shit poor pathetic excuse to screw over the userscript/grease monkey users.

The browser is called a user agent, but this shift to absolute security no matter what, no say about it is a shift to native apps, is a shift to the developer is in control, is a shift to this being Google and the sites browser, not ours, and that being done unilaterally with nearly no opt outs is the sort of mega tectonic shift that ruins this magical special unique place in software where users had some say in what was happening. We cannot pander to imagined ever worsening users forever.

It feels like the things being done in the name of security are really building an immense prison. The work being done to allow verified age and identity checking ranks up there highly in the this corals humanity, area, not giving us agency.

replies(1): >>41811540 #
15. kuhsaft ◴[11 Oct 24 17:43 UTC] No.41811540{3}[source]
> Still a shit poor pathetic excuse to screw over the userscript/grease monkey users.

Tampermonkey still works fine with MV3

> We cannot pander to imagined ever worsening users forever.

The most popular software/hardware will always pander to the most users. That’s why they’re the most popular.

You can’t complain about the most popular option pandering to the most users. Well, you can complain, but you might be in the minority of the users.

> It feels like the things being done in the name of security are really building an immense prison.

I get that, but we are running so much untrusted code on our machines now. Applications that use thousands of dependencies with the hope that someone spots a bad actor.

replies(2): >>41811945 #>>41818486 #
16. ◴[11 Oct 24 18:26 UTC] No.41811945{4}[source]
17. pipo234 ◴[11 Oct 24 18:41 UTC] No.41812153[source]
> To all the engineers working on this stuff, I hope you're happy that your work is essentially destroying the world that you and I grew up in.

I recently quit my job, developing among others the means to "protect" media using DRM. While this was not a primary motivation, I'm glad to somewhat clean my hands.

The technology (dubbed Common Encryption) is a bunch of smoke and mirrors that a childishly easy to hack around. Yet clearly aimed against good faith consumers.

replies(1): >>41812306 #
18. immibis ◴[11 Oct 24 18:54 UTC] No.41812306[source]
That's a good job - people who don't like DRM (you) get more money, and the bad DRM is a distraction that delays the implementation of good DRM.
replies(1): >>41847021 #
19. shadowgovt ◴[11 Oct 24 19:50 UTC] No.41812977[source]
Their incentive is really to make the Chrome Web Store a tractable problem with minimal human effort. That's about 75% of the incentive. You can't actually make any guarantees at the CWS level regarding safety of audited code if the API allows audited code to execute non-audited code.

> To all the engineers working on this stuff, I hope you're happy that your work is essentially destroying the world that you and I grew up in.

May I be blunt? I grew up in it, so yes. I am. I was there for the Windows virus wildfires. I was there for the malware distribution schemes. I was there for the first wave of enshittification. For the dotcom crash. For the spam wars. For the search engines that didn't work. For the JavaScript injection attacks. For the world where "nobody knew you were a dog" as long as you didn't talk like yourself. I couldn't trust most of my relatives to use a computer the way we had to use them in the late '90s / early aughts. That's not a problem now.

For all its flaws, the modern system is cleaner, simpler, faster, and better for end users and no longer requires them to be super-nerds (and meanwhile, open and malleable devices are still there for the super-nerds to play with and work with). This was the goal---to make computers something that benefit everyone, not just the technorati and the priest-class.

May the past become a foreign country, hard for the modern mind to comprehend. May it always be so.

20. pixl97 ◴[11 Oct 24 21:03 UTC] No.41813719[source]
The problem is one of balance.

Write insecure software and you'll get screwed by hackers. Write secure locked down software nobody can touch or modify, and you'll get doubly screwed by a large corporation that wants to pound every penny they can out of your bloody corpse, upto the point your device is compromised by the corporation who can do whatever they want, but you cannot tell.

There is no win situation here, there are only trade offs.

21. aftbit ◴[12 Oct 24 00:39 UTC] No.41815373{3}[source]
Well to some extent they did make it Mv3 an option, not forever but for an extra few months, with that enterprise policy flag. Enterprises used their weight to demand not a more secure browser, but an extra flag to allow them to keep running old software longer. Enterprises too are treated as a security threat by Google, who still plans to depreciate Mv2 format, forcing them to move to "more secure" extensions.
22. userbinator ◴[12 Oct 24 01:47 UTC] No.41815654[source]
I think it's part of a much bigger trend in tech in general but also in Google: Removing user control. When you look at the "security" things they are doing, many of them have a common philosophy underpinning them that the user (aka device owner) is a security threat and must be protected against.

IMHO that's actually part of an even bigger societal trend. "You will own nothing and be happy."

The ones in power want to control everyone and turn them into mindless sheeple to be exploited and milked. It's not just tech. There's another comment around here that mentions features being requested by large corporations and governments.

23. userbinator ◴[12 Oct 24 01:53 UTC] No.41815683[source]
Ironically, the FBI recommends using an ad blocker: https://news.ycombinator.com/item?id=41483581
replies(1): >>41815932 #
24. kbolino ◴[12 Oct 24 02:40 UTC] No.41815932{3}[source]
A lot of enterprises run MITM on all HTTPS connections and can just block the ad-serving domains or even remove the ads from the page without any help from the browser. Ad blocker extensions are a low-infrastructure solution that's more useful for home users and small companies.
25. cookiengineer ◴[12 Oct 24 02:55 UTC] No.41816016[source]
You should stop seeing the Browser as a software as a program that's controlled by the user. This idea was over when Microsoft started to display ads in the file manager program (explorer).

The modern Web Browser is an advertisement terminal. If Google would manage to eliminate having to serve content, they would certainly do it.

26. akira2501 ◴[12 Oct 24 03:46 UTC] No.41816240[source]
> and it's (partly) your fault

Punching down into a brutal labor environment instead of punching up into a Congress which was blatently bought off to foment this outcome? Odd choice.

27. jauntywundrkind ◴[12 Oct 24 12:03 UTC] No.41818486{4}[source]
The prohibitions against running code dynamically are quite severe. It took a long long time & there's some work to make sure userscript/contrntScript extensions aren't totally shit out of luck (after years and years of delay & nothing), but whole domains of extension - anything where you run code on the fly - have been outlawed.
28. Arch-TK ◴[12 Oct 24 17:18 UTC] No.41820741{3}[source]
> I absolutely agree with this in theory, but in practice I'm not sure it would ever work because they just aren't going to put in the work to build and maintain APIs for things they don't care about, and there would be a very long tail of things to do (and sometimes those things are legitimately a lot of work). Call recording being a classic example.

I thought about this a bit and I think that at the end of the day, the entire OS is just a bunch of these APIs. And I do think there's even a market for these APIs, they just don't want to set that precedent, I don't think it has anything to do with it being a lot more work than anything else they expose. They already have some very privileged APIs you can bless some apps (e.g. think of MDM) except not for everything and in the case of the MDM APIs it's very difficult to use it as a normal end-power-user.

29. imiric ◴[12 Oct 24 20:54 UTC] No.41822470[source]
> Compromise of a device can destroy someone’s life.

So in order to prevent a hypothetical hacker bogeyman from getting our data we gladly entrust it to corporations that actively squeeze every possible cent out of it by, among other things, giving access to it to other corporations and uncountable "partners" that will feed us content with the goal of psychologically manipulating us into buying things we don't need, or thinking things someone else wants us to think, destroying the very fabric of society in the process.

I somehow find all of that delusional, our acceptance and support of it nightmarish, and trust hackers to be less diabolical in their schemes.

Computers should serve us, not the other way around. The solution to these problems is tech education, not tech babysitters.

30. account42 ◴[15 Oct 24 10:20 UTC] No.41847021{3}[source]
On the other hand, even weak DRM trains users to accept it while power users are less likely to rally against it if they can find workarounds for themselves. So you don't really end up delaying the implementation of good DRM but helping prime its acceptance.
31. account42 ◴[15 Oct 24 10:25 UTC] No.41847036[source]
> That was a world where the user base was much more limited and devices were less capable. Now we have children, grandparents, educated, and uneducated users with access to web connected devices. These devices now contain everything about you. Compromise of a device can destroy someone’s life.

Kids these days have much worse computer skills BECAUSE of the locked up platforms they are exposed to from a young age. Meanwhile two decades ago my non-technical grandpa learned to use a real PC just fine in his old age. Don't underestimate regular users ability to deal with technology when there is a will.