I love Chrome, but it's almost unusable on Lion for me at the moment. Full screen support isn't very good, it doesn't work with desktop/spaces and it's felt more unreliable than in the past (though that's anecdotal).
There is also introduced css3 bugs on chrome 12 lion (corrected in v13), backface-visibility stopped working, and this was working on snow leopard (v12)
"Even if you do not proactively trigger prerendering yourself, it is still possible that another site will instruct Chrome to prerender your site. If your page is being prerendered, it may or may not ever be shown to the user (depending on if the user clicks the link)"
I posted similar concerns in a thread here yesterday which got little response.
I don't think it's actually any more powerful in that regard than, say, <iframe> tags. If your application lets users perform destructive actions with a GET request, you were already vulnerable.
That makes sense, but it raised a question on my mind: What about malicious sites? Could this be used to do something without the user knowing?
One could mark a link as prefetch and that URL would be downloaded without prompting the user. Does that impose a genuine threat, or is that something that malicious sites can already do?
13 is a really high version number. One thing I love about chrome is how silent the updates are. Other browsers tend to nag you about downloading the latest version, running an installer, etc..
Chrome updates much more silently + in the background, which is one of the many reasons it's my favorite browser.
Finally, the Omnibox gets some love with partial URL/title matching. I switched from Firefox to Chrome for a while, and the Omnibox was my number one gripe: the URL matching was frustratingly poor, and it seemed to have no concept of sorting by recency or most visited. By comparison, the sort order in Firefox's AwesomeBar is so well-thought out that most of the time I can find the site I want in only a couple of keystrokes - yesterday, I needed to pull up a URL I'd used the day before, but all that came to mind was that it contained a '|' character... when I typed in '|', it appeared.
Maybe it's time for me to give Chrome another go, but it's got a high bar to beat.
19 comments
[ 2.8 ms ] story [ 51.4 ms ] threadEdit: typo.
This was on Chrome 12 on OSX 10.7 I'll have to see how 13 behaves.
People using the GET verb for deletions. Bad practice but common as dirt.
Ouch!
http://code.google.com/chrome/whitepapers/prerender.html
Thanks for the heads up :)
"Even if you do not proactively trigger prerendering yourself, it is still possible that another site will instruct Chrome to prerender your site. If your page is being prerendered, it may or may not ever be shown to the user (depending on if the user clicks the link)"
I posted similar concerns in a thread here yesterday which got little response.
Good job I've got a low IQ and use IE9 :)
One could mark a link as prefetch and that URL would be downloaded without prompting the user. Does that impose a genuine threat, or is that something that malicious sites can already do?
Chrome updates much more silently + in the background, which is one of the many reasons it's my favorite browser.
Maybe it's time for me to give Chrome another go, but it's got a high bar to beat.