1. Advertising
    y u no do it?

    Advertising (learn more)

    Advertise virtually anything here, with CPM banner ads, CPM email ads and CPC contextual links. You can target relevant areas of the site and show ads based on geographical location of the user if you wish.

    Starts at just $1 per CPM or $0.10 per CPC.

Need some security advice for using a custom browser extension from a 3rd party developer

Discussion in 'Programming' started by KettleBlack, Nov 20, 2020.

  1. #1
    I'm in the market to hire a developer to help me out with a chrome browser extension that can read the content of web pages. Given that most extensions can read what your browse on the internet, what are the risks of going this route? Would a connection montitor/blocker like Little Snitch be successful in stopping any captured data from being transmitted to the 3rd party? I realize that I should ideally be able to trust a developer I'm working with, but I'm just trying to play it safe.

    Thanks for any advice.
     
    KettleBlack, Nov 20, 2020 IP
  2. Efetobor Agbontaen

    Efetobor Agbontaen Active Member

    Messages:
    136
    Likes Received:
    41
    Best Answers:
    5
    Trophy Points:
    85
    #2
    I don't know much about Little Snitch but from what I have seen, it should be able to do that.
    But it would be more effective if you knew the server the developer uses. That way, you can simply block this server even from your hosts file
     
    Efetobor Agbontaen, Nov 20, 2020 IP
  3. KettleBlack

    KettleBlack Peon

    Messages:
    2
    Likes Received:
    0
    Best Answers:
    0
    Trophy Points:
    1
    #3
    Perhaps a dumb question - should it be a red flag if the extension attempts to connect to a server? Can't all this be done locally? Or is it required for a browser extension to use a server?
     
    KettleBlack, Nov 20, 2020 IP
  4. Efetobor Agbontaen

    Efetobor Agbontaen Active Member

    Messages:
    136
    Likes Received:
    41
    Best Answers:
    5
    Trophy Points:
    85
    #4
    No Not really. It depends on what exactly the extension does. An extension that needs some server side processing will need to connect to a server.

    If you are certain that the extension can work 100% locally, then connecting to a 3rd Party server is completely unnecessary.

    Though some developers might want to have a way to disable the extension remotely for payment validation too.
     
    Efetobor Agbontaen, Nov 22, 2020 IP