--
Chromium Discussion mailing list: chromium...@chromium.org
View archives, change email options, or unsubscribe:
http://groups.google.com/a/chromium.org/group/chromium-discuss
Hi
--
Chromium Discussion mailing list: chromium...@chromium.org
View archives, change email options, or unsubscribe:
http://groups.google.com/a/chromium.org/group/chromium-discuss
I believe that it should be left to the developer to decide. Not all HTTPS sites require that automatic logout. Also there is no way to determine which sites this should happen on, from the browser vendors perspective.
Currently I work for a company, we are PCI compliant, and we deal with consumer credit reports. We have a auto logout function tied to the "onbeforeunload" event.
Users are not as aware, or have a false since of security, that's why as developers we need to implement best practices.
Evans, you make some good points (I mentioned the inactivity timeout as well) for keeping this behavior. Perhaps we could all at least agree that browser behavior choices of this magnitude should be user selectable (and not buried too deeply for typical users to find). Let individuals have the option to choose between tighter security and convenience as opposed to forcing or defaulting everyone into a more open, generic behavior.
--
My whole point is that I don't want anyone else to be able to act as me on the internet, and I want my online stuff safe.
"People were educated that closing a browser is safe"
I was 'educated' that you log out. I have never thought closing a browser window logs you out, never, never, ever.
Joshua Woodward
http://joshuawoodward.com/ +
http://twitter.com/howtohtml5
"People were educated that closing a browser is safe"
I was 'educated' that you log out. I have never thought closing a browser window logs you out, never, never, ever.
Joshua Woodward
Are you claiming you are an average/regular user and not a power user?
If not it doesn't count how you were educated.
Regular users are told "click that X button in top right corner and you're good".
The reason is that there's no universal log out method, so even if it is mentioned that one has to log out it is always added to close the browser, and all people remember is clicking the X button.
The trend is that software protects average users, i.e. by giving them less choices (simpler control panel in Windows), hiding things (i.e. no menu bar), and making defaults much safer (i.e. no option to suppress invalid certificate warning in Chrome).
Providing an option what makes regular users' browsing less safer is completely opposite to this and to everything I thought Chrome is until now.
Power users are not really affected because they know what this is all about but the masses who have no idea of the backgrounds are at risk.
I think your "average user" argument can also function as a counter argument.The average user does not change the defaults (or ever enters the settings tab). A more than average user - might. A power user - usually does.I am not sure the previous preference (to restore the last open tabs) was blindly transitioned to the "Continue where I left off" feature. For the sake of the more than average/power users - I do hope they converted that option to "Show the new tab page" or something so they could reassess the new, alternative feature (not a very nice user experience, but a safe one, I guess).
--
Chromium Discussion mailing list: chromium...@chromium.org
View archives, change email options, or unsubscribe:
http://groups.google.com/a/chromium.org/group/chromium-discuss
Don't worry, we figured out it's a typo.And I don't agree with this Apple-like philosophy what says that we're good, everything else is wrong. I.e. I was told that it's not a design bug that on iPhone I need to use shift 2 times when I have to enter an email address but it's a bug in websites because they don't indicate the input is for email so that iPhone keyboard can switch to email entry mode. See the point? It's not their product faulty but everyting else.
Fixing a browser is much easier than educate millions of users.
Users are always right but companies tend to forget this.
It's sad that serving the user is still the first item on Google's list but in reality all products started to serve Google's internal needs instead (sell more ads and products to have more revenue).
(wow, Google gives you so many services for free
For Free?! Don't think so my friend; they're making reams of $ from our data.
Never said anything about liking/disliking - just correcting a factual error.