Account Options

  1. Sign in
The old Google Groups will be going away soon.
Switch to the new Google Groups.
Google Groups Home for chromium.org
« Groups Home
Chromium-discuss
+ new post
About this group
Join this group
Chromium sends data to google upon startup
Options
There are currently too many topics in this group that display first. To make this topic appear first, remove this option from another topic.
There was an error processing your request. Please try again.
flag
   17 messages - Collapse all  -  Translate all to Translated (View all originals)
The group you are posting to is a Usenet group. Messages posted to this group will make your email address visible to anyone on the Internet.
Your reply message has not been sent.
Your post was successful
 
From:
To:
Cc:
Followup To:
Add Cc | Add Followup-to | Edit Subject
Subject:
Validation:
For verification purposes please type the characters you see in the picture below or the numbers you hear by clicking the accessibility icon. Listen and type the numbers you hear
 
Alexey  
View profile  
 More options Aug 10 2010, 2:21 am
From: Alexey <ale...@uzhva.ru>
Date: Mon, 9 Aug 2010 23:21:16 -0700 (PDT)
Local: Tues, Aug 10 2010 2:21 am
Subject: Chromium sends data to google upon startup
Print | Individual message | Show original | Find messages by this author
Hello!

I chosed chromium instead of chrome because wikipedia says, that
chromium is open soure and has no code to send any data to google. But
i see, that chromium make some requests upon startup:

It seems that on first request it query google for unique client ID
(getting NID Cookie):

HEAD / HTTP/1.1
Host: www.google.com
Connection: keep-alive
Content-Length: 0
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US)
AppleWebKit/534.6 (KHTML, like Gecko) Chrome/6.0.489.0 Safari/534.6
Accept-Encoding: gzip,deflate,sdch
Accept-Language: ru-RU,ru;q=0.8,en-US;q=0.6,en;q=0.4
Accept-Charset: windows-1251,utf-8;q=0.7,*;q=0.3

HTTP/1.1 302 Found
Location: http://www.google.ru/
Cache-Control: private
Content-Type: text/html; charset=UTF-8
Set-Cookie:
PREF=ID=632128af861ebb83:TM=1281420591:LM=1281420591:S=ELyyEhjZ2JNSeGMV;
expires=Thu, 09-Aug-2012 06:09:51 GMT; path=/; domain=.google.com
Set-Cookie: NID=37=r81qA-
WGJc3SVSCovGM80YSzQb0LXRe39SHMzqClX_9reL_jYI7q3Y3UKfXAdVtkv8m5fZl1W6XR-
of4k10wGAw4LQYK5LTatCv3BOGwcmOc5V_1yhWjo9Hj6qbX2acc; expires=Wed, 09-
Feb-2011 06:09:51 GMT; path=/; domain=.google.com; HttpOnly
Date: Tue, 10 Aug 2010 06:09:51 GMT
Server: gws
Content-Length: 218
X-XSS-Protection: 1; mode=block

Then it query google for full version of the main page:

GET / HTTP/1.1
Host: www.google.ru
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US)
AppleWebKit/534.6 (KHTML, like Gecko) Chrome/6.0.489.0 Safari/534.6
Accept-Encoding: gzip,deflate,sdch
Accept-Language: ru-RU,ru;q=0.8,en-US;q=0.6,en;q=0.4
Accept-Charset: windows-1251,utf-8;q=0.7,*;q=0.3

HTTP/1.1 200 OK
Date: Tue, 10 Aug 2010 06:09:52 GMT
Expires: -1
Cache-Control: private, max-age=0
Content-Type: text/html; charset=UTF-8
Set-Cookie:
PREF=ID=58cd7371512d08cb:NW=1:TM=1281420592:LM=1281420592:S=Se8DowmfivRBO6q O;
expires=Thu, 09-Aug-2012 06:09:52 GMT; path=/; domain=.google.ru
Set-Cookie:
NID=37=f4RNcYXija2zWgTpn10_D_YUh3x3U2kdNxGkEJXB7iCtmPzg1FUT1BzUPOEBLaqyHIg1 239IQZkScPg-
nfddL78qiuw-BDEJyCfq9T8S3gL4ZcjNBdQI5sX39iyUiQbw; expires=Wed, 09-
Feb-2011 06:09:52 GMT; path=/; domain=.google.ru; HttpOnly
Content-Encoding: gzip
Server: gws
Content-Length: 5917
X-XSS-Protection: 1; mode=block

<!doctype html> .... (page data skipped) ....

And next it makes very strange erquest to clients1.google.com, sending
some data via query string and getting some data back:

GET /tools/pso/ping?
as=chrome&brand=&pid=&hl=en&rep=2&rlz=I7:1I7GGLL_ru,W1:1W1GGLL_ru,T4:1T4GGL L_ru,C1:1C1_____enRU392RU392,C2:1C2_____enRU392,R7:1R7GGLL_ru&dcc=T
HTTP/1.1
Accept: text/*
User-Agent: Mozilla/4.0 (compatible; Win32)
Host: clients1.google.com

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Date: Tue, 10 Aug 2010 06:10:07 GMT
Expires: Tue, 10 Aug 2010 06:10:07 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Transfer-Encoding: chunked

rlzT4: 1T4GGLL_ru
rlzR7: 1R7GGLL_ru
rlzW1: 1W1GGLL_ru
rlzC1: 1C1_____enRU392RU392
rlzC2: 1C2_____enRU392
rlzI7: 1I7GGLL_ru
dcc: T
set_dcc:
T4:1T4GGLL_ru,R7:1R7GGLL_ru,W1:1W1GGLL_ru,C1:1C1_____enRU392RU392,C2:1C2___ __enRU392,I7:1I7GGLL_ru
events:
stateful-events:
crc32: 7c33310f

Than it makes 3-5 requests to "google safebrowsing", and then verify
all requests i make wia sefebrowsing "feature". But requests to
safebrowsing are not anonymous. All of them signed with cookie, getted
on the first 2-3 requests, that i copied here.

How can I completely remove google spy tools in chromium? I don't need
any assistance and safebrowsing features!


 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
gulbrandr  
View profile  
 More options Aug 10 2010, 4:19 am
From: gulbrandr <mohammed.led...@googlemail.com>
Date: Tue, 10 Aug 2010 01:19:22 -0700 (PDT)
Local: Tues, Aug 10 2010 4:19 am
Subject: Re: Chromium sends data to google upon startup
Print | Individual message | Show original | Find messages by this author
Interesting indeed. Do you see the same ID request when google is not
your homepage?

"And next it makes very strange request to clients1.google.com"
This is not strange at all. Google queries this server to retrieve
search suggestions. To turn it off, read this:
http://googlesystem.blogspot.com/2009/02/how-to-disable-google-sugges...

On 10 août, 08:21, Alexey <ale...@uzhva.ru> wrote:


 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
Alexey  
View profile  
 More options Aug 10 2010, 5:43 am
From: Alexey <ale...@uzhva.ru>
Date: Tue, 10 Aug 2010 02:43:41 -0700 (PDT)
Local: Tues, Aug 10 2010 5:43 am
Subject: Re: Chromium sends data to google upon startup
Print | Individual message | Show original | Find messages by this author
It's not a suggestions or something similar, because i'm doing launch
of chromium and just wait. I'm performing no one action in opened
window, only looking into my sniffer and watching for info.

I disabled ALL plugins and extensions, suggestions, malware
protections. Some requests gone away, but published requests still
there. Each startup chromium (not chrome!) makes 3 requests to google!
I'm not typing or switching anything inside it!

On 10 авг, 12:19, gulbrandr <mohammed.led...@googlemail.com> wrote:


 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
Alexey  
View profile  
 More options Aug 10 2010, 5:54 am
From: Alexey <ale...@uzhva.ru>
Date: Tue, 10 Aug 2010 02:54:09 -0700 (PDT)
Local: Tues, Aug 10 2010 5:54 am
Subject: Re: Chromium sends data to google upon startup
Print | Individual message | Show original | Find messages by this author
Besides it, Google says, that it use RLZ for only branded
distribution. But in quiries above we see "GET /tools/pso/ping?
as=chrome&brand=&pid=&hl=en&rep=2&rlz=I7:1I7GGLL_ru,W1:1W1GGLL_ru,T4:1T4GGL ­
L_ru,C1:1C1_____enRU392RU392,C2:1C2_____enRU392,R7:1R7GGLL_ru&dcc=T"
request even in Chromium!

On 10 авг, 13:43, Alexey <ale...@uzhva.ru> wrote:


 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
Alexey  
View profile  
 More options Aug 10 2010, 6:08 am
From: Alexey <ale...@uzhva.ru>
Date: Tue, 10 Aug 2010 03:08:13 -0700 (PDT)
Local: Tues, Aug 10 2010 6:08 am
Subject: Re: Chromium sends data to google upon startup
Print | Individual message | Show original | Find messages by this author
Ok, i found related code in RLZ library:
http://www.google.com/codesearch/p?hl=ru#HLxzG3ShG8A/trunk/win/lib/li...

//
// Ping information.
//

// rep=2: includes the new stateful events.
const char kProtocolCgiArgument[] = "rep=2";

const char kEventsCgiVariable[]         = "events";
const char kStatefulEventsCgiVariable[] = "stateful-events";
const char kEventsCgiSeparator          = ',';

const char kRlzCgiVariable[]  = "rlz";
const char kRlzCgiSeparator[] = ",";
const char kRlzCgiIndicator[] = ":";

const char kProductSignatureCgiVariable[] = "as";
const char kProductBrandCgiVariable[]     = "brand";
const char kProductLanguageCgiVariable[]  = "hl";
const char kProductIdCgiVariable[] = "pid";

const char kDccCgiVariable[] = "dcc";
const char kRlsCgiVariable[] = "rls";
const char kMachineIdCgiVariable[] = "id";
const char kSetDccResponseVariable[] = "set_dcc";

//
// Financial server information.
//

const char kFinancialPingPath[] = "/tools/pso/ping";
const char kFinancialServer[]   = "clients1.google.com";
const char kFinancialPingType[] = "GET";

const int kFinancialPort = 80;

// Ping times in 100-nanosecond intervals.
const int64 kEventsPingInterval = 24LL * 3600LL * 10000000LL;  // 1
day
const int64 kNoEventsPingInterval = kEventsPingInterval * 7LL;  // 1
week

const char kFinancialPingUserAgent[] = "Mozilla/4.0 (compatible;
Win32)";
const char* kFinancialPingResponseObjects[] = { "text/*", NULL };

My build is downloaded from http://build.chromium.org/buildbot/snapshots/chromium-rel-xp/
and it seems to be RLZ-enabled.

What the hell? Why Chromium is spyware-enabled?!

On 10 авг, 13:54, Alexey <ale...@uzhva.ru> wrote:


 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
PhistucK  
View profile  
 More options Aug 10 2010, 6:18 am
From: PhistucK <phist...@chromium.org>
Date: Tue, 10 Aug 2010 13:18:37 +0300
Local: Tues, Aug 10 2010 6:18 am
Subject: Re: [chromium-discuss] Re: Chromium sends data to google upon startup
Print | Individual message | Show original | Find messages by this author

This is serious. Can anyone respond?

Carlos, I remember seeing you in some discussions regarding RLZ, statistics
and reporting, so I added you. Sorry if this is not your area.

☆PhistucK


 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
gulbrandr  
View profile  
 More options Aug 10 2010, 7:30 am
From: gulbrandr <mohammed.led...@googlemail.com>
Date: Tue, 10 Aug 2010 04:30:09 -0700 (PDT)
Local: Tues, Aug 10 2010 7:30 am
Subject: Re: Chromium sends data to google upon startup
Print | Individual message | Show original | Find messages by this author
Thank you Alexey for looking into the source code. Can you please redo
your test with a different default search engine than Google?

The comments in rlz.h and rlz.cc in /trunk/src/chrome/browser/rlz/ are
informative of what it is trying to do upon startup:
http://src.chromium.org/viewvc/chrome/trunk/src/chrome/browser/rlz/rl...
http://src.chromium.org/viewvc/chrome/trunk/src/chrome/browser/rlz/rl...

This is also interesting: http://blog.chromium.org/2010/06/in-open-for-rlz.html
It says that "RLZ gives us the ability to accurately measure the
success of marketing promotions and distribution partnerships in order
to meet our contractual and financial obligations.".

On 10 août, 12:08, Alexey <ale...@uzhva.ru> wrote:


 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
Alexey  
View profile  
 More options Aug 10 2010, 7:33 am
From: Alexey <ale...@uzhva.ru>
Date: Tue, 10 Aug 2010 04:33:29 -0700 (PDT)
Local: Tues, Aug 10 2010 7:33 am
Subject: Re: Chromium sends data to google upon startup
Print | Individual message | Show original | Find messages by this author

> Thank you Alexey for looking into the source code. Can you please redo
> your test with a different default search engine than Google?

Already did it. Result is the same, nothing changed.

On 10 авг, 15:30, gulbrandr <mohammed.led...@googlemail.com> wrote:


 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
gulbrandr  
View profile  
 More options Aug 10 2010, 10:09 am
From: gulbrandr <mohammed.led...@googlemail.com>
Date: Tue, 10 Aug 2010 07:09:16 -0700 (PDT)
Local: Tues, Aug 10 2010 10:09 am
Subject: Re: Chromium sends data to google upon startup
Print | Individual message | Show original | Find messages by this author
PhistucK, when you say "This is serious", what do you mean?

On 10 août, 12:18, PhistucK <phist...@chromium.org> wrote:


 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
Romkin  
View profile  
 More options Aug 10 2010, 11:29 am
From: Romkin <ram...@gmail.com>
Date: Tue, 10 Aug 2010 08:29:14 -0700 (PDT)
Local: Tues, Aug 10 2010 11:29 am
Subject: Re: Chromium sends data to google upon startup
Print | Individual message | Show original | Find messages by this author
Hmm, it maybe simply a version check, chrome updates automatically?
still doesn't prove that it sends personal information.

On Aug 10, 7:21 am, Alexey <ale...@uzhva.ru> wrote:


 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
Sinister  
View profile  
 More options Aug 10 2010, 11:34 am
From: Sinister <sinl...@gmail.com>
Date: Tue, 10 Aug 2010 08:34:25 -0700 (PDT)
Local: Tues, Aug 10 2010 11:34 am
Subject: Re: Chromium sends data to google upon startup
Print | Individual message | Show original | Find messages by this author
A pity, Chromium doesn't update automatically.

On Aug 10, 7:29 pm, Romkin <ram...@gmail.com> wrote:


 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
D  
View profile  
 More options Aug 10 2010, 11:36 am
From: D <din...@gmail.com>
Date: Tue, 10 Aug 2010 21:06:51 +0530
Local: Tues, Aug 10 2010 11:36 am
Subject: Re: [chromium-discuss] Re: Chromium sends data to google upon startup
Print | Individual message | Show original | Find messages by this author

try this

http://www.thechromesource.com/using-the-chromium-updater-to-stay-cur...
<http://www.thechromesource.com/using-the-chromium-updater-to-stay-cur...>
Greetings,
Dinsan

Chromestory.com


 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
Sinister  
View profile  
 More options Aug 10 2010, 11:46 am
From: Sinister <sinl...@gmail.com>
Date: Tue, 10 Aug 2010 08:46:38 -0700 (PDT)
Local: Tues, Aug 10 2010 11:46 am
Subject: Re: Chromium sends data to google upon startup
Print | Individual message | Show original | Find messages by this author
My sarcasm is lost on you. I just meant to point out that Chromium's
highly suspicious behaviour has nothing to do with updating.

On Aug 10, 7:36 pm, D <din...@gmail.com> wrote:


 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
Glenn Wilson  
View profile  
 More options Aug 10 2010, 1:31 pm
From: Glenn Wilson <gwil...@chromium.org>
Date: Tue, 10 Aug 2010 10:31:58 -0700
Local: Tues, Aug 10 2010 1:31 pm
Subject: Re: [chromium-discuss] Re: Chromium sends data to google upon startup
Print | Individual message | Show original | Find messages by this author

Hi everyone,

We think that the reported RLZ ping behavior (that request to
"/tools/pso/ping...") is a regression -- RLZ pings should not be happening
in Chromium or non-promotional Google Chrome builds, so this is not the
intended behavior.

I've filed this as bug
http://code.google.com/p/chromium/issues/detail?id=51693.  We're working on
it now.

Thanks for reporting the issue!

Glenn


 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
Nico Weber  
View profile  
 More options Aug 10 2010, 1:42 pm
From: Nico Weber <tha...@chromium.org>
Date: Tue, 10 Aug 2010 10:42:22 -0700
Local: Tues, Aug 10 2010 1:42 pm
Subject: Re: [chromium-discuss] Chromium sends data to google upon startup
Print | Individual message | Show original | Find messages by this author

The first two requests are to find out what language your suggestions
should be in (you're in russia, so your search suggestions should come
from google.ru. Chromium needs to find somehow). I think this doesn't
happen if you use a different default search engine.

This seems to be a bug, see Glenn's reply.

> Than it makes 3-5 requests to "google safebrowsing", and then verify
> all requests i make wia sefebrowsing "feature". But requests to
> safebrowsing are not anonymous. All of them signed with cookie, getted
> on the first 2-3 requests, that i copied here.

The safebrowsing requests have a cookie as ddos protection, and for
anonymous usage stats tracking, to answer questions like "How many
clients have up-to-date safe browsing data?" etc.

> How can I completely remove google spy tools in chromium? I don't need
> any assistance and safebrowsing features!

Phishing is a very real problem:
http://www.avira.com/en/threats/section/worldphishing/top/7/index.html

 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
PhistucK  
View profile  
 More options Aug 10 2010, 3:28 pm
From: PhistucK <phist...@gmail.com>
Date: Tue, 10 Aug 2010 22:28:02 +0300
Local: Tues, Aug 10 2010 3:28 pm
Subject: Re: [chromium-discuss] Re: Chromium sends data to google upon startup
Print | Individual message | Show original | Find messages by this author

That this is a serious issue, Chromium is supposed to be free of these
things.
And, as you see, Glenn responded and they are taking care of it.

☆PhistucK

On Tue, Aug 10, 2010 at 17:09, gulbrandr <mohammed.led...@googlemail.com>wrote:


 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
Glenn Wilson  
View profile  
 More options Aug 13 2010, 4:13 pm
From: Glenn Wilson <gwil...@chromium.org>
Date: Fri, 13 Aug 2010 13:13:04 -0700
Local: Fri, Aug 13 2010 4:13 pm
Subject: Re: [chromium-discuss] Re: Chromium sends data to google upon startup
Print | Individual message | Show original | Find messages by this author

Just to follow up on this, the bug has been fixed as of revision 56032:
http://src.chromium.org/viewvc/chrome?view=rev&revision=56032  I tested on
version 6.0.493.0 and it works as expected again (no RLZ.)

We've also made some changes in this revision to help prevent it from
happening again.

Thanks for the report, and your patience!

Best regards,
Glenn

...

read more »


 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
End of messages
« Back to Discussions « Newer topic     Older topic »

Create a group - Google Groups - Google Home - Terms of Service - Privacy Policy
©2012 Google