Stories
Slash Boxes
Comments

SoylentNews is people

posted by martyb on Sunday December 15 2019, @03:53PM   Printer-friendly
from the making-it-easy-for-fake-sites dept.

Google Achieves Its Goal of Erasing the WWW Subdomain From Chrome

With the release of Chrome 79, Google completes its goal of erasing www from the browser by no longer allowing Chrome users to automatically show the www trivial subdomain in the address bar.

When Chrome 76 was released, Google decided to no longer show the www "trivial subdomain" in the address bar when visiting a web site. This means, that if you are visiting www.bleepingcomputer.com, Chrome would only show bleepingcomputer.com in the address bar...

[...] According to a Google engineer, www is considered a trivial subdomain because "this isn't information that most users need to concern themselves with in most cases".

Many users, though, felt that this was a security issue, could be confusing for users, and is technically incorrect because www.domain.com is not always the same host as domain.com.

So is this a distinction without a difference or a real issue?


Original Submission

 
This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
  • (Score: 3, Funny) by FatPhil on Sunday December 15 2019, @04:41PM (4 children)

    by FatPhil (863) <pc-soylentNO@SPAMasdf.fi> on Sunday December 15 2019, @04:41PM (#932409) Homepage
    Didn't they remove the "secure site" padlock a year or so ago, because they realised that "the site owner gave money to Honest Akhmed" was not a actually an indicator of trustworthiness, after all, in complete contradiction of what they were saying 5 years prior?
    --
    Great minds discuss ideas; average minds discuss events; small minds discuss people; the smallest discuss themselves
    Starting Score:    1  point
    Moderation   +1  
       Funny=1, Total=1
    Extra 'Funny' Modifier   0  
    Karma-Bonus Modifier   +1  

    Total Score:   3  
  • (Score: 2) by AndyTheAbsurd on Sunday December 15 2019, @08:58PM (3 children)

    by AndyTheAbsurd (3958) on Sunday December 15 2019, @08:58PM (#932466) Journal

    They removed the "secure site" closed padlock, but kept the "Not secure" marker (although I just tried in in Chrome and apparently it's not a padlock anymore, just text; Firefox uses a closed padlock for https and a padlock with a strikeout line through it for insecure).

    Apparently, giving $5 to Honest Akhmed (or $0 to Let's Encrypt) suddenly makes you trustworthy in Google's eyes.

    --
    Please note my username before responding. You may have been trolled.
    • (Score: 2) by driverless on Monday December 16 2019, @12:33AM (2 children)

      by driverless (4770) on Monday December 16 2019, @12:33AM (#932563)

      Just a minor nitpick here, its actually Honest Achmed, not Honest Akhmed. Achmed is, as the name implies, a completely honest CA who will sell you only the best-quality certificates at very reasonable prices. Akhmed is an imposter in Indonesia who defrauds his customers with marked-up certificates resold from GoDaddy.

      • (Score: 1, Informative) by Anonymous Coward on Monday December 16 2019, @04:56AM (1 child)

        by Anonymous Coward on Monday December 16 2019, @04:56AM (#932696)

        For those out of the loop: https://bugzilla.mozilla.org/show_bug.cgi?id=647959 [mozilla.org]

        It has such ringing endorsements. Two of the best being, "Honest Achmed is at least more honest than Comodo." and "Considering the problems at DigiNotar I vote for giving Honest Achmed a second chance!"

        • (Score: 2) by driverless on Monday December 16 2019, @06:07AM

          by driverless (4770) on Monday December 16 2019, @06:07AM (#932707)

          I particularly liked the Pratchett-inspired CA policy "nil certificati sine lucre". That, in a nutshell, is the policy of every commercial CA on the planet, only they hide it behind a mountain of legalese.