Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

Resolved Question

Do we like this tool?

by Apr 17, 2014 4:13AM PDT

Discussion is locked

itsdigger has chosen the best answer to their question. View answer
4 Posts
- Collapse + Expand Details

Best Answer

- Collapse -
Did you read ..
by Apr 17, 2014 8:21AM PDT

Did you read Netcraft's press release: Netcraft releases Heartbleed indicator for Chrome, Firefox, and Opera ?

And what it says under Update: at the bottom?:

'Several readers have noted the privacy drawbacks posed by use of the Netcraft extension. Among other things, according to one reader, the extension sends vistited URLs that can include query strings, and it does so using an unencrypted HTTP connection. If true, that leaves a list of visited sites open for surveillance and man-in-the-middle attacks. Netcraft has a fuller privacy disclosure in the "About" tab of the extension. Ars readers are encouraged to think over the implications before installing the extension.'

The reader comments can also be found at the bottom.

On a personal note. I haven't had much time to read more about it. I'd like to gain more knowledge before testing it.

What I do know for sure. Netcraft isn't the only site offering the download. If anyone is going to give the extension a try, I strongly suggest being mindful of the site it's downloaded from.

¢ ¢
Carol

- Collapse -
I'll take that as a NO lol
by itsdigger Apr 17, 2014 6:40PM PDT

and leave it be. Thanks Carol

Digger

- Collapse -
Well .. maybe not a definitive NO !!
by Carol~ Apr 18, 2014 3:00AM PDT

But more like a different kind of no ..as in ...... "I don't KNOW". Silly

I stumbled across these in my travels this morning. No doubt there are more.

Netcraft adds Heartbleed sniffing to site-scanning browser tool
This Netcraft tool flags sites affected by Heartbleed

Here it says:

"Keep in mind that detecting Heartbleed is trickier than it seems, and there are questions about the reliability of many existing tools. We've found the Qualys SSL Server Test to work well, but whatever you're doing, it's best not to rely on one company's detection tools alone."

Happy Easter!
Carol

- Collapse -
HAHA
by itsdigger Apr 18, 2014 3:17AM PDT

Yeah, I read all 3 of the articles and Netcraft seems pretty open about the issues and The Register doesn't even mention it, Ars Technica does though.
Just because they DO mention it , I think I'll just leave it alone.

Digger

Back to Spyware, Viruses, & Security forum

CNET Forums

Operating Systems
Software
Electronics & Gadgets
Hardware
Tablets & Mobile Devices
General Help
Brand Forums
Roadshow Autos
Off Topic

Other Forums

Forum Info