« previous next »
Pages: [1]   Go Down

Author Topic: Browser plugin reputation  (Read 1981 times)

0 Members and 1 Guest are viewing this topic.

REDACTED

  • Guest
Browser plugin reputation
« on: December 18, 2014, 06:55:08 AM »
I have enjoyed using Avast for some time now.  As a IT Security Professional with 20+ years of experience I have worked with a great number of products. I have supported a great number of products. The Free version of Avast is probably one of the best AV solutions I have encountered thus far.  Realizing that AV alone is not and should not be your only solution is key to keeping things secure. Nothing is perfect , nothing has 100% reliability and multilayer solutions are required.

I have to say I am VERY Disappointed and a bit confused when it comes to Avast and the web plugin reputation scoring. Yes there are bad plugin's and yes many pose a risk.  Avast seems to have taken the approach of false hope here. Rely upon users for reports.  That can not be the only heuristic utilized. I hope Avast realizes this.  For Example there is NOTHING wrong with Video Download Helper for Firefox. NOTHING. The code is stable and it has been updated. Unless I am missing a CERT advisory I have no clue why people would rate this as a problem, with one exception. They are downloading malicious content.  That and Avast can not scan those objects.  The plugin's you list are poor are honestly laughable. You may as well blacklist ALL plugins.

What compounds this issue is the fact that your application itself decides to make changes IE your default search engine.

Additionally why are we pointed to an update site like Download.com when it is well known that 98% of the files there are preloaded with their own tracking software? 

I realize the product is free, but I really hope your not doing this to paying customers.   I have done this long enough to know that a single point is a single point of failure. If you ask users to supply data and that is the only data you use, then your setting yourself up for failure.  Users do bad things, not always on purpose but they just do not understand.

I encourage you to rethink this process.  This is one reason why I decided to actually purchase malwarebytes before purchasing Avast.  I may actually uninstall it if you guys keep adding bloated false features.  Please stop.  Don't destroy a good product.

Chris Smith
TPM
CIM
CEH
CPT
 
Logged

Offline Asyn

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 76034
    • >>> Avast Forum - Deutschsprachiger Bereich <<<
Re: Browser plugin reputation
« Reply #1 on: December 18, 2014, 07:01:01 AM »
Logged
W8.1 [x64] - Avast Free AV 23.3.8047.BC [UI.757] - Firefox ESR 102.9 [NS/uBO/PB] - Thunderbird 102.9.1
Avast-Tools: Secure Browser 109.0 - Cleanup 23.1 - SecureLine 5.18 - DriverUpdater 23.1 - CCleaner 6.01
Avast Wissenswertes (Downloads, Anleitungen & Infos): https://forum.avast.com/index.php?topic=60523.0

Offline Eddy

  • Avast Evangelist
  • Maybe Bot
  • ***
  • Posts: 31078
  • Watching (over?) you
    • Malware removal, Biljart and other things.
Re: Browser plugin reputation
« Reply #2 on: December 18, 2014, 03:13:20 PM »
I take it the thumb down is for yourself.
You obviously have not read on how the rating is done.
Quote
Rely upon users for reports
Wrong, it doesn't do that. Part of the rating comes from users behavior, not from user reports.
Quote
That can not be the only heuristic utilized
It isn't as explained in how the BCU rating is done.
Quote
What compounds this issue is the fact that your application itself decides to make changes IE your default search engine.
Wrong again. It doesn't. It only changes to Bing (or another) if the user choses to have it do so.
Quote
If you ask users to supply data and that is the only data you use
Users are not asked to supply date and the user data collected is not the only thing that is used.

For someone saying to be a IT Pro for 20+ years, you are sure doing a poor job
Search and research before posting next time please.
Logged
Pages: [1]   Go Up
« previous next »