Opera to Start Phoning Home? 197
An anonymous reader writes "Near the end of a story about Opera's determination to stay in the game: 'Earlier this week, Opera announced an addition that will keep it in step with its rivals. Johan Borg, a developer working on the browser, said Tuesday in a blog that the next edition, Opera 9.1, will include beefed up anti-phishing and anti-fraud features. Rather than simply indicate that a site is secure with a notation in the address bar, Opera 9.1 will also query Opera-owned servers for information on any site visited. Those that Opera has identifies as fraudulent will be automatically blocked by the browser.'"
Re:Privacy concern (Score:4, Informative)
When you browse to a site you have not visited before, the browser sends a request for site information to our server. The requests contains the domain name of the site and a hash value of the URL. We don't send the full URL, but we need a fingerprint of the full URL in case you visit a dangerous page on a site that is otherwise harmless.
Presumably, it's because of the following:
The requests go over HTTP, but the replies will be signed by the server to make sure they are genuine. We prefer to send information between the browser and ourselves in plain text, so our users can inspect the data we send "home".
dont they all do this now? (Score:5, Informative)
I don't see how this is any different than what MS or mozilla is doing. As long as it can be disabled by the user it should be ok.
Re:dont they all do this now? (Score:3, Informative)
Opera checks each as you go.
Pro: it's updated as fast as GeoTrust is.. you don't have to wait for your nightly download (or whatever frequency) so you get the most reponsive phishing filter.
Con: The reason this is a headline at all.
Re:secure...says opera? (Score:2, Informative)
Re:dont they all do this now? (Score:3, Informative)
Re:dont they all do this now? (Score:5, Informative)
Does anyone read anymore? (Score:5, Informative)
Re:secure...says opera? (Score:5, Informative)
"When you browse to a site you have not visited before, the browser sends a request for site information to our server. The requests contains the domain name of the site and a hash value of the URL. We don't send the full URL, but we need a fingerprint of the full URL in case you visit a dangerous page on a site that is otherwise harmless."
It only sends a hash of the web address. It would be difficult to extrapolate the whole address from a hash.
Re:Optional, please? (Score:2, Informative)
(according to Opera)
Re:Mmnn features (Score:2, Informative)
Indeed I do. (Score:4, Informative)
Would the second Opera user like to comment?
Re:dont they all do this now? (Score:3, Informative)
So yes, each browser will have a mode which will send nearly every URL you visit to a third party for checking against phishing sites.