Tell me about portable browsers...

Bob001 · 7th May 2012, 09:38 PM

Portable browsers are often recommended as a security tool when using public computers at a library, internet cafe etc. You load portable versions of Firefox, Chrome etc. from your own computer onto your own flash drive, then insert the flash drive into the public computer, and theoretically whatever you do on that computer is through your own browser. Question: What are the security flaws, if any, in this plan? Does anything you do remain on the public computer when you remove the drive? Does a portable browser defeat a keylogger or packet sniffer? What does a portable browser do to make me safer, and what does it NOT do?

http://portableapps.com

Earthborn · 7th May 2012, 10:48 PM

I think the biggest flaw with that plan is that you often won't have access to the USB ports, and if the owner of the public computer is unwise enough to expose the USB ports to the public, taking your own flash drives and running software from them is definitely frowned upon.

A portable app should not leave any trace on the host computer, though it may produce some temporary files. It will not protect you against keyloggers or packet sniffers, but a portable browser does allow you to take your own favourites/bookmarks with you and won't write cookies to the host computer.

All in all, using portable apps on a public computer is never going to be a great security protection for you, and a huge security risk to the host computer's owner. Portable apps are for use on the computers of friends you trust, and who trust you.

Dancing David · 8th May 2012, 04:40 AM

Um, what? If you want security you use encryption, like through an https:// site?

Do you mean 'security' in that you are not leaving a track in the history of the installed browser? Because unless you are using a tunnel or a proxy site, the data is going to be somewhere, like in the router tables.

I really don't see many google hits for this.

IMO, the main benefit to portable programs is convenience on your own machines. Say I have a really boogered up machine, I can use a portable anti malware program without using the boogered up network connections.

If you are trying to do something on a public computer you don't want to leave traces, that a portable browser really won't help. It will give you a browser that is not installed.

But it won't let you subvert firewalls or filters.

Beerina · 8th May 2012, 04:54 AM

It also won't protect you from keyloggers looking at your sites and the IDs and passwords you type.

Babbylonian · 8th May 2012, 08:12 AM

Originally Posted by Earthborn

I think the biggest flaw with that plan is that you often won't have access to the USB ports, and if the owner of the public computer is unwise enough to expose the USB ports to the public, taking your own flash drives and running software from them is definitely frowned upon.

It's like unprotected sex - there's even insertion! I certainly wouldn't trust my flash drive after it's been inserted into a public computer that allowed such.

CORed · 9th May 2012, 12:27 PM

Originally Posted by Earthborn

I think the biggest flaw with that plan is that you often won't have access to the USB ports, and if the owner of the public computer is unwise enough to expose the USB ports to the public, taking your own flash drives and running software from them is definitely frowned upon.

A portable app should not leave any trace on the host computer, though it may produce some temporary files. It will not protect you against keyloggers or packet sniffers, but a portable browser does allow you to take your own favourites/bookmarks with you and won't write cookies to the host computer.

All in all, using portable apps on a public computer is never going to be a great security protection for you, and a huge security risk to the host computer's owner. Portable apps are for use on the computers of friends you trust, and who trust you.

I have used library computers that allowed me to use a USB flash drive for downloading material. I've never tried to run software from a USB drive on a public computer. Picking up malware from the public computer is certainly a risk if you do this.

Best for your security and flexibility would be to have a bootable USB drive with your own OS on it. There are a number of Linux distributions that can be installed to a bootable USB drive (I have done this, but not for use on a public computer.) OTOH, the owner of a public system would have to be pretty clueless to leave the computer configured to allow you to boot from USB. Also, depending on how their network is configured, and whether your portable OS supports the public computer's NIC or wireless adapter, you might not actually be able to get on their network, and the internet. Of course, it is still entirely possible that the owner of the computer could filter or snoop your internet traffic from elsewhere on the network, unless you do everything over https or other encrypted protocol.

CORed · 9th May 2012, 12:29 PM

Originally Posted by Babbylonian

It's like unprotected sex - there's even insertion! I certainly wouldn't trust my flash drive after it's been inserted into a public computer that allowed such.

True, and a condom isn't going to help.

7th May 2012, 09:38 PM	#1
Bob001 Muse Join Date: Dec 2006 Posts: 878	Tell me about portable browsers... Portable browsers are often recommended as a security tool when using public computers at a library, internet cafe etc. You load portable versions of Firefox, Chrome etc. from your own computer onto your own flash drive, then insert the flash drive into the public computer, and theoretically whatever you do on that computer is through your own browser. Question: What are the security flaws, if any, in this plan? Does anything you do remain on the public computer when you remove the drive? Does a portable browser defeat a keylogger or packet sniffer? What does a portable browser do to make me safer, and what does it NOT do? http://portableapps.com
Bob001 Muse Join Date: Dec 2006 Posts: 878

7th May 2012, 10:48 PM	#2
Earthborn Terrestrial Intelligence Join Date: Aug 2001 Location: Terra Firma Posts: 5,646	I think the biggest flaw with that plan is that you often won't have access to the USB ports, and if the owner of the public computer is unwise enough to expose the USB ports to the public, taking your own flash drives and running software from them is definitely frowned upon. A portable app should not leave any trace on the host computer, though it may produce some temporary files. It will not protect you against keyloggers or packet sniffers, but a portable browser does allow you to take your own favourites/bookmarks with you and won't write cookies to the host computer. All in all, using portable apps on a public computer is never going to be a great security protection for you, and a huge security risk to the host computer's owner. Portable apps are for use on the computers of friends you trust, and who trust you.
	__________________ Perhaps nothing is entirely true; and not even that! Multatuli

8th May 2012, 04:40 AM	#3
Dancing David Penultimate Amazing Join Date: Mar 2003 Location: Central Illinois Posts: 34,695	Um, what? If you want security you use encryption, like through an https:// site? Do you mean 'security' in that you are not leaving a track in the history of the installed browser? Because unless you are using a tunnel or a proxy site, the data is going to be somewhere, like in the router tables. I really don't see many google hits for this. IMO, the main benefit to portable programs is convenience on your own machines. Say I have a really boogered up machine, I can use a portable anti malware program without using the boogered up network connections. If you are trying to do something on a public computer you don't want to leave traces, that a portable browser really won't help. It will give you a browser that is not installed. But it won't let you subvert firewalls or filters.
	__________________ Hell, dynamiting fish in a barrel is more challenging. - Ladewig I suspect you are a sandwich, metaphorically speaking. -Donn And a shot rang out. Now Space is doing time... -Ben Burch You built the toilet - don't complain when people crap in it. _Kid Eager

8th May 2012, 04:54 AM	#4
Beerina Sarcastic Conqueror of Notions Join Date: Mar 2004 Location: A floating island above the clouds Posts: 23,835	It also won't protect you from keyloggers looking at your sites and the IDs and passwords you type.
	__________________ "Great innovations should not be forced [by way of] slender majorities." - Thomas Jefferson The government should nationalize it! Socialized, single-payer video game development and sales *now!* More, cheaper, better games, right? Right?

8th May 2012, 08:12 AM	#5
Babbylonian Illuminator Join Date: Feb 2007 Location: Lake Oswego, OR Posts: 4,463	Originally Posted by Earthborn I think the biggest flaw with that plan is that you often won't have access to the USB ports, and if the owner of the public computer is unwise enough to expose the USB ports to the public, taking your own flash drives and running software from them is definitely frowned upon. It's like unprotected sex - there's even insertion! I certainly wouldn't trust my flash drive after it's been inserted into a public computer that allowed such.
	__________________ Where am I going to find a piece of metal? Here...in space...at this hour?

9th May 2012, 12:27 PM	#6
CORed Illuminator Join Date: Dec 2008 Posts: 4,281	Originally Posted by Earthborn I think the biggest flaw with that plan is that you often won't have access to the USB ports, and if the owner of the public computer is unwise enough to expose the USB ports to the public, taking your own flash drives and running software from them is definitely frowned upon. A portable app should not leave any trace on the host computer, though it may produce some temporary files. It will not protect you against keyloggers or packet sniffers, but a portable browser does allow you to take your own favourites/bookmarks with you and won't write cookies to the host computer. All in all, using portable apps on a public computer is never going to be a great security protection for you, and a huge security risk to the host computer's owner. Portable apps are for use on the computers of friends you trust, and who trust you. I have used library computers that allowed me to use a USB flash drive for downloading material. I've never tried to run software from a USB drive on a public computer. Picking up malware from the public computer is certainly a risk if you do this. Best for your security and flexibility would be to have a bootable USB drive with your own OS on it. There are a number of Linux distributions that can be installed to a bootable USB drive (I have done this, but not for use on a public computer.) OTOH, the owner of a public system would have to be pretty clueless to leave the computer configured to allow you to boot from USB. Also, depending on how their network is configured, and whether your portable OS supports the public computer's NIC or wireless adapter, you might not actually be able to get on their network, and the internet. Of course, it is still entirely possible that the owner of the computer could filter or snoop your internet traffic from elsewhere on the network, unless you do everything over https or other encrypted protocol.
CORed Illuminator Join Date: Dec 2008 Posts: 4,281	Last edited by CORed; 9th May 2012 at 12:28 PM.

9th May 2012, 12:29 PM	#7
CORed Illuminator Join Date: Dec 2008 Posts: 4,281	Originally Posted by Babbylonian It's like unprotected sex - there's even insertion! I certainly wouldn't trust my flash drive after it's been inserted into a public computer that allowed such. True, and a condom isn't going to help.
CORed Illuminator Join Date: Dec 2008 Posts: 4,281