Google has decided to keep support for the File Transfer Protocol (FTP) in Chrome a bit longer, after initially saying it would completely remove it in Chrome 82.
Due to the lack of support for secure connections or proxies, the implementation of FTP in Chrome creates security risks for users. Moreover, usage of the protocol is low, and removing it from the browser will not impact a large number of users.
Chrome 80, which arrived in the stable channel in early February, deprecated support for FTP. At the time, Google said the protocol would be disabled in Chrome 81 and completely removed in Chrome 82.
Although it has been considering removing FTP support for a couple of years, Google has decided to keep the protocol untouched for a bit longer, due to the current COVID-19 pandemic.
“Alright folks. In light of the current crisis, we are going to ‘undeprecate’ FTP on the Chrome stable channel. I.e. FTP will start working again,” Asanka Herath, software engineer at Google, posted on the dedicated Chromium bug topic.
The deprecation will resume once organizations potentially impacted by the change will be better positioned to deal with any emerging outages and migrations.
The coronavirus crisis has forced the Internet giant to delay stable Chrome releases and even completely skip Chrome 82, and also to roll back the enforcement of SameSite cookie labeling, a cross-site request forgery (CSRF) protection introduced in Chrome 80.
What’s more, the crisis has forced Google, Microsoft and Mozilla to delay the removal of the older Transport Layer Security (TLS) 1.0 and 1.1 protocols in Chrome, Edge, Internet Explorer, and Firefox, after initially planning on removing it this spring.
Mozilla too is planning on removing FTP support from its browser. It would initially turn it off by default in Firefox 77, but wants to completely remove it from the browser at the beginning of 2021.
Related: Google Rolls Back Recently Introduced Chrome CSRF Protection
Related: Browser Makers Delay Removal of TLS 1.0 and 1.1 Support
More from Ionut Arghire
- Ransomware Gang Publishes Data Allegedly Stolen From Maritime Firm Royal Dirkzwager
- Zoom Paid Out $3.9 Million in Bug Bounties in 2022
- Malicious NuGet Packages Used to Target .NET Developers
- Google Pixel Vulnerability Allows Recovery of Cropped Screenshots
- Millions Stolen in Hack at Cryptocurrency ATM Manufacturer General Bytes
- NBA Notifying Individuals of Data Breach at Mailing Services Provider
- Adobe Acrobat Sign Abused to Distribute Malware
- Latitude Financial Services Data Breach Impacts 300,000 Customers
Latest News
- Google Suspends Chinese Shopping App Amid Security Concerns
- Verosint Launches Account Fraud Detection and Prevention Platform
- Ransomware Gang Publishes Data Allegedly Stolen From Maritime Firm Royal Dirkzwager
- Zoom Paid Out $3.9 Million in Bug Bounties in 2022
- Oleria Scores $8M Seed Funding for ID Authentication Technology
- Exploitation of 55 Zero-Day Vulnerabilities Came to Light in 2022: Mandiant
- News Analysis: UK Commits $3 Billion to Support National Quantum Strategy
- Malicious NuGet Packages Used to Target .NET Developers
