The Great Suspender Chrome extension was officially banned today. Google said it had malware added to it and killed it
Yea I was hoping it would turn out better but oh well. This is a pre malware fork https://chrome.google.com/webstore/detail/the-marvellous-suspender/noogafoofpebimajpfpamcfhoaifemoa
With Malicious extensions like this does anyone work on a policy of blocking all extensions, then only allowing approved ones?
Been using a forked version of TGS that was created to remove the tracking. https://github.com/aciidic/thegreatsuspender-notrack
it’s not in the chrome web store, though. manual install required.
@colinmccarthy We considered doing an extension allowlist, but it’s frankly a lot of work to get to that point. the easiest thing to do would be to just allow all currently installed extensions and then set it up to block new ones going forward. We tend to block malicious extensions that we find, but haven’t moved towards the allowlist model yet.
another one bites the dust
We use API Whitelisting in Google
this is a great video to watch from chrome team at google.https://www.youtube.com/watch?v=aEJL-nwkg2M
block extensions by permissions as it may change over time.
On that note: which permissions do you block?
yeah @rose it would be quiet a process to manage approvals.
extension approval workflows are coming.
@dominik high or critical?
Don't know, Brian. I'm lost on that note tbh
i can test it and see if it breaks any extensions that i use haha
chrome sneak peak starts tat 8:00.
@colinmccarthy all schools/districts work like that, all over the world. Block all, allow few.
Thanks Good to know what others are doing.
@colinmccarthy I use this script to quickly see what apps & auth scopes of my users. Admin console provides the same info but I haven't figured out where I can get the same report https://github.com/slackhq/gsuite-oauth-third-party-app-report
Thanks. Will have to check it out
thanks for sharing the script
Already have an account? Login
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.
Sorry, we're still checking this file's contents to make sure it's safe to download. Please try again in a few minutes.
Sorry, our virus scanner detected that this file isn't safe to download.
We use 3 different kinds of cookies. You can choose which cookies you want to accept. We need basic cookies to make this site work, therefore these are the minimum you can select. Learn more about our cookies.