Author Topic: Chrome: Managed by your organisation (Avast 20.2.2401)  (Read 51102 times)

0 Members and 1 Guest are viewing this topic.

Offline JindrichK

  • Avast team
  • Newbie
  • *
  • Posts: 2
Re: Chrome: Managed by your organisation (Avast 20.2.2401)
« Reply #15 on: April 03, 2020, 09:07:14 AM »
I am the developer responsible for this side-effect and I am sorry for this experience. Let me explain, what we did in the version 20.2 that causes this message.

Background:
There is a network protocol currently in development called QUIC. As it is in the active development by Google and others, there are some versions of this protocol that we cannot check properly for malicious traffic.
Therefore, we decided to block these protocol versions and the way how we do it is using Chrome Policy setting (which is, according to Google, the preferred way to do it).

You can check the policy by visiting chrome://policy

Kind Regards,

Jindrich

Offline kemije8725

  • Newbie
  • *
  • Posts: 18
Re: Chrome: Managed by your organisation (Avast 20.2.2401)
« Reply #16 on: April 03, 2020, 09:38:43 AM »
i got the explanation but I want to opt-out. You should give us an option if you can add it. Not everyone likes it.

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 44302
  • 60 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Chrome: Managed by your organisation (Avast 20.2.2401)
« Reply #17 on: April 03, 2020, 02:51:11 PM »
i got the explanation but I want to opt-out. You should give us an option if you can add it. Not everyone likes it.
There has to be another way. My computer, my control. Thanks
Free avast! Security Seminar: http://bit.ly/2N1eaR2  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 10 Pro v1909 64bit, 24 Gig Ram, 1TB SSD, AvastOmni 20.7.xxx, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline Kristian46

  • Newbie
  • *
  • Posts: 18
Re: Chrome: Managed by your organisation (Avast 20.2.2401)
« Reply #18 on: April 03, 2020, 02:54:37 PM »
I am the developer responsible for this side-effect and I am sorry for this experience. Let me explain, what we did in the version 20.2 that causes this message.

Background:
There is a network protocol currently in development called QUIC. As it is in the active development by Google and others, there are some versions of this protocol that we cannot check properly for malicious traffic.
Therefore, we decided to block these protocol versions and the way how we do it is using Chrome Policy setting (which is, according to Google, the preferred way to do it).

You can check the policy by visiting chrome://policy

Kind Regards,

Jindrich

how about in firefox browser policies: theres no "quicallowed" listed on there, but theres this thing called "certificates" with policy value:"ImportEnterpriceRoots" listed as "true"
turning off the avast web shield doesnt do anything to get rid the "manage by organization" in firefox but in chrome it does rid the issue if you turn off the web sheild

my firefox version is: 74.0 (64-bit)


Offline kemije8725

  • Newbie
  • *
  • Posts: 18
Re: Chrome: Managed by your organisation (Avast 20.2.2401)
« Reply #19 on: April 03, 2020, 03:01:00 PM »
I just want full control of my browser. My pc, I want absolute control. No need for extra features.
There has to be a way, I don't believe you cannot add option for users who don't want it.
Please do fix it asap
« Last Edit: April 03, 2020, 03:03:31 PM by kemije8725 »

Offline ct36

  • Newbie
  • *
  • Posts: 6
Re: Chrome: Managed by your organisation (Avast 20.2.2401)
« Reply #20 on: April 03, 2020, 03:19:18 PM »
I am the developer responsible for this side-effect and I am sorry for this experience. Let me explain, what we did in the version 20.2 that causes this message.

Background:
There is a network protocol currently in development called QUIC. As it is in the active development by Google and others, there are some versions of this protocol that we cannot check properly for malicious traffic.
Therefore, we decided to block these protocol versions and the way how we do it is using Chrome Policy setting (which is, according to Google, the preferred way to do it).

You can check the policy by visiting chrome://policy

Kind Regards,

Jindrich


so will you do something about it?is it safe to put personal info on sites while this is happening?
(you are a developer and you have only 1 post?)

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 44302
  • 60 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Chrome: Managed by your organisation (Avast 20.2.2401)
« Reply #21 on: April 03, 2020, 03:31:15 PM »
Many developers never come to this forum. :)
Free avast! Security Seminar: http://bit.ly/2N1eaR2  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 10 Pro v1909 64bit, 24 Gig Ram, 1TB SSD, AvastOmni 20.7.xxx, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline kemije8725

  • Newbie
  • *
  • Posts: 18
Re: Chrome: Managed by your organisation (Avast 20.2.2401)
« Reply #22 on: April 03, 2020, 05:56:56 PM »
Many developers never come to this forum. :)

They will lose consumers at this rate.

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 44302
  • 60 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Chrome: Managed by your organisation (Avast 20.2.2401)
« Reply #23 on: April 03, 2020, 06:39:38 PM »
Many developers never come to this forum. :)

They will lose consumers at this rate.
Sorry, I don't understand your reply? One has nothing to do with the other.
Free avast! Security Seminar: http://bit.ly/2N1eaR2  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 10 Pro v1909 64bit, 24 Gig Ram, 1TB SSD, AvastOmni 20.7.xxx, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline lukor

  • Avast team
  • Super Poster
  • *
  • Posts: 1878
    • AVAST Software
Re: Chrome: Managed by your organisation (Avast 20.2.2401)
« Reply #24 on: April 03, 2020, 10:35:56 PM »
so will you do something about it?is it safe to put personal info on sites while this is happening?

Hi ct36,
the policy we change does only one thing - it switches QUIC protocol to HTTP/2 - still very fast and modern internet protocol so that WebShield will be able to scan it. As Jindrich wrote above, you can verify what has changed by visiting chrome://policy link - you will see all modification there. Without this, traffic going via QUIC (most of the Google-owned domains and some CloudFlare hosted domains and more in the future) would be unprotected by WebShield - they simply bypass it. While we really trust Google, its users sometimes host things that Avast might blocks when it is infected (thanks Bob!) - like downloads from Google Drive shared folders.

So from the security point, we think it is better to have all traffic scanned.

Anyway, we hear you, and I understand that you don't want to see the "Managed by your organization" text in the settings - does that mean that you would rather have QUIC connections not scanned?
Thanks!
Lukas

Edit: updated for clarity, thanks Bob!
« Last Edit: April 03, 2020, 11:20:06 PM by lukor »

Offline lukor

  • Avast team
  • Super Poster
  • *
  • Posts: 1878
    • AVAST Software
Re: Chrome: Managed by your organisation (Avast 20.2.2401)
« Reply #25 on: April 03, 2020, 10:48:39 PM »
i got the explanation but I want to opt-out. You should give us an option if you can add it. Not everyone likes it.
There has to be another way. My computer, my control. Thanks

Hi Bob, thanks for your comment. There is another way - we might implement a whole QUIC parser to inspect the traffic. This would save us from having to force Chrome from QUIC to HTTP/2 as we are doing right now. It is a very complex protocol. It runs on UDP (as opposed to the TCP normally used by HTTP/1 and HTTP/2) and on top of the UDP layer, it somewhat reimplements the whole network stack, from TCP, TLS, and HTTP/2 into a new complex mechanism. We are already working on a full-blown QUIC parser for some time, but we are not ready to ship it yet, but planning to have it in beta this year. Since the Internet is always changing and as HTTP/2 gained popularity after it evolved from Google's proprietary SPDY, QUIC will no-doubt also get popular soon and Avast will follow that.

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 44302
  • 60 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Chrome: Managed by your organisation (Avast 20.2.2401)
« Reply #26 on: April 03, 2020, 11:11:33 PM »
@lukor,
As long as I still have control of my settings in Chrome, I can for now live with the Managed by org.
I do have one question regarding this statement,
"Avast blocks - like downloads from Google Drive shared folders."
Is that referring to infected files and folders or, all things from Google Drive shared folders?
Free avast! Security Seminar: http://bit.ly/2N1eaR2  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 10 Pro v1909 64bit, 24 Gig Ram, 1TB SSD, AvastOmni 20.7.xxx, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline lukor

  • Avast team
  • Super Poster
  • *
  • Posts: 1878
    • AVAST Software
Re: Chrome: Managed by your organisation (Avast 20.2.2401)
« Reply #27 on: April 03, 2020, 11:17:42 PM »
Of course, only in case anything is infected - then it might be detected by WebShield and then the connection is terminated - and a dialog is shown.

Offline bob3160

  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 44302
  • 60 Years of Happiness
    • bob3160 Protecting Yourself, Your Computer and, Your Identity
Re: Chrome: Managed by your organisation (Avast 20.2.2401)
« Reply #28 on: April 03, 2020, 11:19:28 PM »
Of course, only in case anything is infected - then it might be detected by WebShield and then the connection is terminated - and a dialog is shown.
Thanks for the clarification.
Free avast! Security Seminar: http://bit.ly/2N1eaR2  -  Important: http://www.organdonor.gov/ -- My Web Site: http://bob3160.strikingly.com/ - Win 10 Pro v1909 64bit, 24 Gig Ram, 1TB SSD, AvastOmni 20.7.xxx, How to Successfully Install Avast http://goo.gl/VLXdeRepair & Clean Install https://goo.gl/t7aJGq

Offline lukor

  • Avast team
  • Super Poster
  • *
  • Posts: 1878
    • AVAST Software
Re: Chrome: Managed by your organisation (Avast 20.2.2401)
« Reply #29 on: April 03, 2020, 11:21:31 PM »
Thanks for the clarification.

Always learning to express myself clearly in English. Thank you!