Search Engine Default
-
stealth789 last edited by
I give no security reasons. I'm a layman. I'm not a security expert. I defer to Opera on this. I expect the people who develop the browser to look at the insure and make an informed decision based on user safety. If they have determined that it is unsafe because of problems with hijacked searches, it would be negligent for them to permit additional default search engines. If they have determined that it's significantly unsafe, it would be gross negligence because the risk is a highly serious computer infection -- viruses, trojans, malware, credit card and identity theft, etc.-- and the work-around is so slight. I look to Opera to protect my security and users security. I expect it of them.
Sure I got that security is a must, and high priority. But I just don't see what's insecure in changing default search engine, when you can set custom one? And decided on what observation? I'm not aware that any of 15+ Opera allowed us to change default search engines. So what is source of this decision? Because Opera till 12.17 has and long time had this option. So you're saying, it's unsecure? Basically stated that security is reason why it's not enabled is not correct. Or you just say that, any other browser is unsecure?
And I really don't know how this can be hijacked. It's only question of implementation. Not of security "for best" interests of users.Now what's the big deal, you can go to the search engine site, add a search engine, have maybe a one letter code, and before the search type the code. Usually just one damn letter to remember. Every time you want to do an Ixquick search, all you have to remember is the letter "i" before your search query. You can do it, I believe. It's not having to memorize War and Peace by Tolstoy. One letter. That's it. That's all. So simple. You know what: It's really not a big deal!
Principle is big deal. I didn't get at least one right reason why is opera disallowing us to choose what's right for us. And if I can add custom search engine why I can't change default. Don't you see irony in here? Because you're telling me, use any search engine. So from this search engine itself is not issue. But don't use it as default, because then it's an issue?
And sure I know of my options. But it's like you can tell me use another browser, there you can do that. Sure I can. But I have hopes, that Opera developers are men of reason. That Opera is product for users. If you persuade me that I have to change browser, because (really I don't know, I still didn't get reasons) ...., so sure I'll think about it.
And question isn't why I can't press one key. But why MANY users need to press this keys like monkeys? When there's possibility to change this on side of developer = one place? This is question you can ask yourself. I'm for simplifying things. Not making things harder without right reason. We need productive browser. It's like telling me I don't need to use car because I can walk. -
stealth789 last edited by
One of the malware problems in the past has been malware that hijacked a browser and inserted its own search engine as default in place of the user's choice. In some cases, the search page that appeared could be cleverly made to look like a Google or similar page but instead send users to malicious sites via the search "results", and the user might not realize it; in other cases, the search function could be corrupted this way from searching out anything useful to remedy their situation if a user discovered the hijacking (or even worse, if the entire system had also been hijacked/compromised). I believe one object of making only a select preset list of search engines able to be set to default is that a user merely has to restart his browser to revert the search engine back to one of the default listed engines, which offers a simple way to unlock the hijacking. By using a preset list, the default candidates can be essentially hard-wired into the browser, which allows them to be reverted by simply restarting the browser.
Sure I understand phishing and other techniques. but past is the past. Name me specific problem now, in current implementation? And it's problem of implementation of possibility to change default search engine. Not of option to change engine itself. That's difference. You're not giving me reason why I cannot change engine. Only that there's need to be secure mechanism to be able to do it. Like in other browsers...
-
Deleted User last edited by
It is a security reason as blackbird71 said. I saw on the Opera blog a moderator's comment that they will allow to change default search engine when they fix the hijacking stuff.
-
stealth789 last edited by
It is a security reason as blackbird71 said. I saw on the Opera blog a moderator's comment that they will allow to change default search engine when they fix the hijacking stuff.
Thank you for your clarification. If it's only temporary technical problem, but allowing us to select whatever search engine we like will be possible after solving this problem, it's fine with me. There's need only to wait for it.
But then it's better to simple write it like it's temporary / will be solved issue. Because I don't like or accept arguments like, users will select un-secure engine, Opera knows better what we want, so we can't select other engine, our 5 is enought for typical user, you can use it other (harder) way ....
-
blackbird71 last edited by
...
Sure I understand phishing and other techniques. but past is the past. Name me specific problem now, in current implementation? And it's problem of implementation of possibility to change default search engine. Not of option to change engine itself. That's difference. You're not giving me reason why I cannot change engine. Only that there's need to be secure mechanism to be able to do it. Like in other browsers...Uhmm... just to name the ones first appearing from Dec 2013 to April 2014, consider the following list (and these are just part of the ones starting with numbers or the letter "a" and don't even include all the other letters of the alphabet at the beginning of their common names). There are literally many hundreds currently extant "in the wild" at the present moment:
- IE: CVE-2014-1776
- IE,FF,Chrome: 16Start.com
- IE,FF,Chrome: 1Place.org
- IE,FF,Chrome: 22find virus
- IE,FF,Chrome: ADS.ADK2.com
- IE,FF,Chrome: AllMyWeb.com
- IE,FF,Chrome: Anasayfa.im
- IE,FF,Chrome: Awesomehp.com
- ...
Some of these piggyback or are bundled with software downloads, some appear as part of malware infection kits. Note that most exploits or search-hijackers attack IE, Firefox, and Chrome variants. The threat is very current and very real. And "other browsers" are, indeed, being hijacked continually. One needs only to participate in security forums to discover that reality.
As to blocking the threats, both in Opera and other browsers, there are various techniques that can be used, but they aren't equally capable of being implemented in all browser architectures, their "immunities" vary, and they all take considerable time and effort to insert into browser code without adverse side effects.
Even if only one of the many hundred hijackers had the capacity to alter the default search engine (eg: Anasayfa), that would create untold grief for users who were hit by it, not technically sophisticated enough to know how to reverse its effects, and unable to properly search for help.
-
lem729 last edited by admin
I don't know if you noticed it but Stealth789 added to the Suggestion Box as a wish list matter more default search engines.
https://forums.opera.com/topic/3431/option-to-edit-default-search-engines/1
I very much appreciate your knowledgeable comments on the significant risks involved. I took the liberty there of cross-referencing in that forum at least links to your posts here. Feel free to comment there directly if you're inclined.
-
stealth789 last edited by
...
Sure I understand phishing and other techniques. but past is the past. Name me specific problem now, in current implementation? And it's problem of implementation of possibility to change default search engine. Not of option to change engine itself. That's difference. You're not giving me reason why I cannot change engine. Only that there's need to be secure mechanism to be able to do it. Like in other browsers...Uhmm... just to name the ones first appearing from Dec 2013 to April 2014, consider the following list (and these are just part of the ones starting with numbers or the letter "a" and don't even include all the other letters of the alphabet at the beginning of their common names). There are literally many hundreds currently extant "in the wild" at the present moment:
IE: CVE-2014-1776
IE,FF,Chrome: 16Start.com
IE,FF,Chrome: 1Place.org
IE,FF,Chrome: 22find virus
IE,FF,Chrome: ADS.ADK2.com
IE,FF,Chrome: AllMyWeb.com
IE,FF,Chrome: Anasayfa.im
IE,FF,Chrome: Awesomehp.com
...Some of these piggyback or are bundled with software downloads, some appear as part of malware infection kits. Note that most exploits or search-hijackers attack IE, Firefox, and Chrome variants. The threat is very current and very real. And "other browsers" are, indeed, being hijacked continually. One needs only to participate in security forums to discover that reality.
Ok, got it, that problem is actual. But it's question of technical implementation or securing this setting. Not question if Opera will allow us to use any search engine. And I never got any malware of this kind. I use properly set Firewall and Antivirus. And don't download SW from strange sites. Even using Sandboxing / Virtualization when needed. So I'm not afraid of this.
And if user knowledge has to be restriction here, allow it at least in power user settings is enough. Or allow us to change providers in filesystem. Allow any way. I think, that user that want to change default search engine, is capable of do so in other ways, and has enough knowledge to be safe. At least same way like he is with any search engine. So when Opera selects "safe" engines it's not solution.
And power users are asking for safe engines like StartPage, Ixquick and DuckDuckGo. So why not add these? They're safer than engines provided by Opera (some doesn't even use HTTPS).
As to blocking the threats, both in Opera and other browsers, there are various techniques that can be used, but they aren't equally capable of being implemented in all browser architectures, their "immunities" vary, and they all take considerable time and effort to insert into browser code without adverse side effects.
Even if only one of the many hundred hijackers had the capacity to alter the default search engine (eg: Anasayfa), that would create untold grief for users who were hit by it, not technically sophisticated enough to know how to reverse its effects, and unable to properly search for help.Sure but Opera allows also extensions to change default provider (or override it). So this whole restriction idea is just strange in way it is now. Because for power user any of this argument is just cliche about security issues. In every other browser I change default engine. Also Tor Browser uses StartPage as default. So please don't try to tell me there's no way to allow us to change engine. I think when there's good will, there's always a way...
-
lem729 last edited by
I defer to Opera on this. I trust them more than any user who says they have technical knowledge, and to hell with what the developer of the browser thinks. I do not want some user to push and bully Opera into providing a feature that is dangerous to the vast bulk of users, who would rather be safe than sorry. Now you say: "Ok, got it, that problem is actual. But it's question of technical implementation or securing this setting. Not question if Opera will allow us to use any search engine. And I never got any malware of this kind. I use properly set Firewall and Antivirus. And don't download SW from strange sites. Even using Sandboxing / Virtualization when needed. So I'm not afraid of this."
Maybe you're not afraid of this, and have technical knowledge, but other are. Most users have no idea what some of the technical precautions that you take even mean. Now what is it that blackbird71 said about the state of security (including those other browsers that you tout as models because they permit all of the search engines): "The threat is very current and very real. And "other browsers" are, indeed, being hijacked continually. One needs only to participate in security forums to discover that reality."
And by the way, if people were trying to hijack the Opera search engines, would it surprise anyone if they came into the Opera forum, and tried aggressively to encourage Opera to expand search engines, so that it would be easier to hijack them? The reality is that anyone who has an interest in hijacking an Opera web search engine would have an interest in setting up an identity in the forum (they'd probably be relatively new to the forum), and in aggressively pushing Opera to have more search engines (because Opera cannot protect them as well).
I believe this is an issue where all of us in the Opera community need to be on guard.
-
stealth789 last edited by
I defer to Opera on this. I trust them more than any user who says they have technical knowledge, and to hell with what the developer of the browser thinks. I do not want some user to push and bully Opera into providing a feature that is dangerous to the vast bulk of users, who would rather be safe than sorry. Now you say: "Ok, got it, that problem is actual. But it's question of technical implementation or securing this setting. Not question if Opera will allow us to use any search engine. And I never got any malware of this kind. I use properly set Firewall and Antivirus. And don't download SW from strange sites. Even using Sandboxing / Virtualization when needed. So I'm not afraid of this."
I don't need anyone to trust me or my knowledge. I'm not forcing or recommending anyone to change/use specific search engine. I want to be able to choose one for myself, and for other users to be free to choose one for themself if they need it!
Maybe you're not afraid of this, and have technical knowledge, but other are. Most users have no idea what some of the technical precautions that you take even mean. Now what is it that blackbird71 said about the state of security (including those other browsers that you tout as models because they permit all of the search engines): "The threat is very current and very real. And "other browsers" are, indeed, being hijacked continually. One needs only to participate in security forums to discover that reality."
Like I said, I'm not choosing what to use for somebody else. I'm not deciding for somebody else. And there's always a way how even standard user will use Opera's recommended engine, but even power users will be able to choose what they want. And I used browser as other options, as something to be able to compare with. And also Opera 12.17 is part of this group!
And by the way, if people were trying to hijack the Opera search engines, would it surprise anyone if they came into the Opera forum, and tried aggressively to encourage Opera to expand search engines, so that it would be easier to hijack them? The reality is that anyone who has an interest in hijacking an Opera web search engine would have an interest in setting up an identity in the forum (they'd probably be relatively new to the forum), and in aggressively pushing Opera to have more search engines (because Opera cannot protect them as well).
I believe this is an issue where all of us in the Opera community need to be on guard.For hijacking you mean what? Change engine for my own? Because it's not hijacking search engine that Opera choose. It's choosing different one. So I'm the one responsible here.
And by aggressively you mean what? Did I use any harsh word? I'm not sticking to the theme or what? I think I'm man of reason. And sure I need good reasons for me to let thing go. I'm trying to find a way. So please don't move topic to me.
And sure you can argument that I'm new in forum. Or that my skin has some color, or to whatever you want. But it would be better to argument on debate, and reasons there. Not try to use "argumentum ad hominem". And I'm sorry if you feel way of forcing. But I'm not the side that is forcing me to something. I'm just trying to use arguments from my side.
-
lem729 last edited by
You say: "I want to be able to choose one for myself, and for other users to be free to choose one for themself if they need it!" What you want, and what get are different things, when you download and install a "free browser." Opera has a right not to put something out there that they deem UNSAFE.
You say: " I'm not choosing what to use for somebody else. I'm not deciding for somebody else." If Opera deems it unsafe, they don't have to permit even you to use it. I mean, you could come right back and sue them. And how do they know how old you are. You might be a teenager. And even if you're an adult, Opera does not have to permit you to do something they deem unsafe.
I think by "aggressively," I mean you're pushing very hard for having the right to the extra engines, that Opera deems unsafe, and where there have been very serious security problems, involving hijacked search engines for all browsers. And why, I wonder are you pushing so hard? Is it that you cannot type one tiny letter, before doing a search? I cannot believe that that is too much for you. The workaround -- typing the one letter, or the separate search bar extension -- is a very miniscule accommodation in the face of a very serious and dangerous problem involving search engine hijackings, that can involve loss of credits cars, identity theft, banks accounts compromised, etc.
Look, when Opera deems additional search engines safe, then I fully favor them! This is one situation though, where I trust them. And as I mentioned, any party wanting to hijack Opera search engines, could easily come into the forum, establish an identity, and aggressively challenge for more engines (because they know, perhaps, that what Opera currently has set up is harder to hijack, but additional engines would be easier to hijack). I know no one personally in the forum, but Opera is an entity that I have dealt with for years. Opera, I trust, more than the advocacy of any other user, on this issue.
-
Deleted User last edited by
Have 5 default search engines is unique feature, in the others browsers a malware can install itself, an example is Hao123 and Ask toolbar. So if the devs lock the default search engines for our safety, I support them
-
stealth789 last edited by
You say: "I want to be able to choose one for myself, and for other users to be free to choose one for themself if they need it!" What you want, and what get are different things, when you download and install a "free browser." Opera has a right not to put something out there that they deem UNSAFE.
So are we talking about security, or about money now? Because sure every browser is "free:. It's model of browser business. Then we can talk about royalties and so on. But then it's different story. So don't use this as an argument, because it's not totally correct. There are reasons and decisions why it's better to made it "free".
And we're not talking about putting there something. Opera don't need to put other engine there.You say: " I'm not choosing what to use for somebody else. I'm not deciding for somebody else." If Opera deems it unsafe, they don't have to permit even you to use it. I mean, you could come right back and sue them. And how do they know how old you are. You might be a teenager. And even if you're an adult, Opera does not have to permit you to do something they deem unsafe.
So question is again. What exactly is unsafe? Using different engine? Or option to be able to change engine? As I read before, problem was with security. So reason was, it's possible for malware to change engine. So if it'll be secure to change it then it's ok? Secure? Or still it's insecure, because Opera knows, what engine I'll add, and? And there are also settings, experimets and power users settings. If these can be safe, I think (if security is reason here) it's possible to made this option enabled.
And sue them? So every browser company has to have many layers just to deal with this kind of mess? It's like someone in Firefox uses will sue them because they used advanced settings. Then it's even possible for any setting. Ok, I got this as an option. But I don't think that's main reason here.
I think by "aggressively," I mean you're pushing very hard for having the right to the extra engines, that Opera deems unsafe, and where there have been very serious security problems, involving hijacked search engines for all browsers. And why, I wonder are you pushing so hard? Is it that you cannot type one tiny letter, before doing a search? I cannot believe that that is too much for you. The workaround -- typing the one letter, or the separate search bar extension -- is a very miniscule accommodation in the face of a very serious and dangerous problem involving search engine hijackings, that can involve loss of credits cars, identity theft, banks accounts compromised, etc.
I'm using space for arguments here. I still hope I'm arguing without attacking someone directly. If you fill like that, just let me know, where I crossed boundaries here! I have no intention to be rude to anybody! It's just how I work. Arguing as much as possible. To understand right reasons, and try to make some kind of compromise.
And sure now it all seams, like money from Google are the main reason. Ok, if this is main reason. At least I got it, and can understand. Somehow ;).
But it's not about one letter. It's about why this way. You say that contract is stated, that Opera cannot allow other engine as default? Because that's still not true, when you can choose Wikipedia. And let's say that someone made extension, that allows you to use any search engine from address bar. Will Opera allow it? If not, will they allow you to use it if it's outside address bar in extension windows? Becase I don't get point, where it's OK, and where it's not. Because for example is it now possible for malware to change my custom search engines?Look, when Opera deems additional search engines safe, then I fully favor them! This is one situation though, where I trust them. And as I mentioned, any party wanting to hijack Opera search engines, could easily come into the forum, establish an identity, and aggressively challenge for more engines (because they know, perhaps, that what Opera currently has set up is harder to hijack, but additional engines would be easier to hijack). I know no one personally in the forum, but Opera is an entity that I have dealt with for years. Opera, I trust, more than the advocacy of any other user, on this issue.
Even if you won't believe me, I'm not trying to harm Opera in any way. I'm long time user. In old Opera wasn't so hard to have option like this. So I don't get it, why is it so big deal now. And I'm giving arguments. So any developer can consider it. He doesn't have to implement it. I'm just trying to put some reason here, from my point of view.
Also big reason is that people after PRISM, and other causes stop trusting Google like it was before. They're more relying on safer privacy. So this is from my point reason why people asks for engines I mentioned. To be safe. So my "initiative" is not to harm opera. But on the other hand feel safe. Sure I can press keys (custom engines). But it would be great if I don't have to.
-
lem729 last edited by
Stealth789
You're writing forever. What exactly is your agenda? You don't seem to get it? It is is Opera's call. Do you know what the word "defer" means? I defer to the Opera Developer on safety. And not to you!
-
stealth789 last edited by
Have 5 default search engines is unique feature, in the others browsers a malware can install itself, an example is Hao123 and Ask toolbar. So if the devs lock the default search engines for our safety, I support them
Basically only Google is hardcoded in Opera. Other engines are based on location. So there are more than 5 engines in "basket". If safety is only reason. Ok. At least for majority, that can live with any engine. But still it doesn't overthrow option to safely change them.
-
stealth789 last edited by
Stealth789
You're writing forever. What exactly is your agenda? You don't seem to get it? It is is Opera's call. Do you know what the word "defer" means? I defer to the Opera Developer on safety. And not to you!Agenda. I was expecting some of Opera developer or someone to argument on this, as I'm used from other product forums. Sure it's Opera call. But I don't think all questions were answered. And by answer I mean with some rational reasoning. I'm not asking you or anybody to defer. I'm trying to argue why it's not allowed.
-
coshoo last edited by
"They who would give up essential Liberty, to purchase a little temporary Safety, deserve neither Liberty nor Safety."
Benjamin Franklin -
lem729 last edited by
Nice quote, coshoo. Liberty is quite important, but believe me, it is not at issue in taking a free browser. You are mistaken if you deem this a "liberty" issue. And by mixing this issue up with liberty, you do a disservice to liberty, and undermine real liberty issues.
-
stealth789 last edited by
Nice quote for sure. And liberty is not important in free browser? Any browser now is free. It's just how it works. It's business model, based on decision.
And sure forcing us to use some engine, and disallow use what we want is not violating of free to choose?If this is about security. So why any of my suggestions are "thrown" away without reasoning? Don't tell me everything is wrong. It's just question if you even try. I understand your status/position here. But there need to be said why exactly this cannot be in any way?
"A man who wants something will find a way; a man who doesn't will find an excuse."Stephen Dolley Jr.
But if it's strictly about security. Even so called secure browsers like Comodo Dragon and SRWare Iron (also based on chromium) allows change. SRWare Iron also use DuckDuckGo as default search engine. TorBrowser (based on Firefox) use startpage.
So if it's about security then Opera can collect any user suggested engines, then review them if they're secure. And then simply add them to default list.
-
Deleted User last edited by
All this discussion for what? If you do not like the way Opera manage search engines, just use another one.
-
lem729 last edited by
Do you know, stealth789 what the word "defer" means. Look it up in a dictionary. I DEFER to Opera on this issue. Period. Browser safety is within their jurisdiction. I have no inclination to second guess them on this based on anything you have said.
As for the liberty quote, it's absurdly out of context. You are given a free browser with certain features. You have paid for it nothing, zero, zip, rien, nada. If you like it fine. If not, as sidneyneto offers, use another browser, where you're happier with how they manage search engines. Liberty suggests rights, and you have no right to utilization of all the default search engines you might like to stay up nights fantasizing about. But you can use any search engine you want from the main Address Bar of Opera if you're not too challenged to type one letter or two in front of the search query. Really, it's quite easy.
Now maybe you don't care about the safety of your passwords, your credit cards, your identity, etc. But let me assure you that many others do. It's a vital interest for them. And they want Opera to protect it, as best Opera can.