First time here? Check out the site's "greatest hits" or read a post from the archives. Feel free to leave a comment or ask a question, and consider subscribing to the latest posts via RSS or e-mail. Thanks for visiting!
« How to Programmatically Detect if an Ass... | Main | Coding4Fun Hardware Webcast - Available ... »

A New Private Browser - I mean Browzar - does not work as advertised

Posted in Reviews

Browzar_skinsUPDATE: Looks like I was mentioned on the BBC.  I'm afraid they miss the point:

However, some computer experts say they have already identified flaws in Browzar. Scott Hanselman, writing on his blog Computer Zen, claims to have been able to find records of websites he had visited with the program installed.

"Browzar, at least this version, is totally not doing what it says it does," he writes.

The newly released software is entering a market dominated by Internet Explorer.

Of course, the joke here is that Browzar is a wrapper around Internet Explorer.

I had a 2 gig USB Drive, but it was huge and I didn't use it as much as I could. Then I picked up one of these OCZ 2GB Flash for $40 $31 after rebate (that's not a typo!) at Omar's recommendation. It's freaking small.

Then I secured it - you'd be a fool not to, IMHO. Now I'm getting all my Portable Apps moved over to it as well.

Portable apps mean that they can be run directly from a USB Drive without installation. There's a portable version of Firefox, for example.

However, I noticed this little browser, called Browzar, mentioned in this InformationWeek article, that is a single 265k EXE that basically wraps IE 5.5 or above (works fine with 7.0) and is a "private browser." That means it doesn't save cookies or history or autocomplete. Sounds like a convenient thing to have on one's USB drive if one didn't want to leave (blatent) footprints.

Well, since it's hosting IE, I want to see what it's doing. So, I fired it up and visited the naughtiest site I could think of, Pl*yboy, while running Filemon. Here's a screenshot of the cached naughty gifs going in my Temporary Internet Files folder. Notice that Browzar deletes the gifs as soon as it sees them.

Browzar1

Then I closed the browser...You can see here that it deleted a bunch of cookies and such, trying to clean up. However, while it deleted the cookies, it didn't delete the page itself, just closed it.

Browzar3

Notice here, later, I find the file in my IE Cache:

Browzar2

So, Browzar, at least this version, is totally not doing what it says it does. That's a bummer. Maybe next version.

Tracked by:
"2GB USB Hard Drive - $39.99" (Matt's Blog) [Trackback]
"Oh No, There Goes Tokyo, It's Browzar" (Alice Hill's Real Tech News - Independe... [Trackback]
http://www.lazycoder.com/weblog/index.php/archives/2006/09/01/secure-browsing-fr... [Pingback]
"Browzar is ++ungood (and peek into future)" (IT Blogwatch) [Trackback]
"Browzar dmasqu" (devloop :: blog) [Trackback]
"Secure and Private Browsing" (Scott Hanselman's Computer Zen) [Trackback]
"Torpark v1.5.0.6a" (Kurbli) [Trackback]


Thursday, August 31, 2006 9:07:53 PM (Pacific Standard Time, UTC-08:00)
Hi Scott,

This is completely off topic, but I'm trying to find a good Paypal subscription management script that will protect a couple of directories on my site based on the recurring subscription status (paid or not). I would like to offer 3 or 4 recurring subscription options, and then allow access to the private member areas automatically -- no manual intervention needed.

The best script I've found is aMember Pro, but it is sort of expensive at $140 + $40 for Paypal integration per site license.

Do you know of any superior scripts for subscription site management with Paypal integration?

Thanks for your help,

Joe
Joe
Thursday, August 31, 2006 9:44:54 PM (Pacific Standard Time, UTC-08:00)
That is totally off topic. Seems like $180 is a small financial outlay for a scheme that will make you money, no?
Scott Hanselman
Thursday, August 31, 2006 9:46:14 PM (Pacific Standard Time, UTC-08:00)
Scott, is that *really* the dirtiest site you can think of, choir boy?
Haacked
Thursday, August 31, 2006 10:08:36 PM (Pacific Standard Time, UTC-08:00)
I saw this on /. yesterday. Man, that guy is so full of it I can smell him all the way across the Atlantic.

Check out the FAQ -

Q. What are the system requirements for Browzar?

A. The minimum requirements for Browzar are: Windows 98 Second Edition (SE): and Internet Explorer (IE) 5.5.

(My comment - Okay... If you say so, but I don't think you're exactly worthy of calling yourself a secure browser if you're just implementing an ActiveX control and deleting a few choice files AFTER they already live on your filesystem. Oh, yeah, THAT's private.)

Q. Will Browzar run on Apple Macintosh computers?

A. Not yet, but we plan to release a Mac version soon so watch this space!

(My comment - That'll be a neat trick, since IE for Mac is pretty well dead.)

Q. Will Browzar run under Linux?

A. Not yet, but watch this space!

(See above. But even better. Got plans to support... what, exactly?)

And to second an earlier opinion... Pl*yboy is the dirtiest you could come up with? I read the dead tree version for the articles! (and why are we obfuscating the "a"?)
Cam
Friday, September 01, 2006 12:46:33 AM (Pacific Standard Time, UTC-08:00)
Hi Scott,

I was looking for something like that too and I found the "Distrust" extension for Firefox (http://www.gness.com/distrust/). When activated, it prevents the browser from recording history entries, disables the cache, sets the duration of all cookie to session etc. As far as my limited testing goes, it seems to be working great.

Julien
Julien
Friday, September 01, 2006 4:44:08 AM (Pacific Standard Time, UTC-08:00)
Got to admire their marketing skills though. They seem to have hit a keynote with the big boys of news, even if the software is nowhere near what it is claiming to be.

BBC Technology News: http://news.bbc.co.uk/1/hi/technology/5305250.stm

I'm just wondering how many people will get sucked into thinking this is an actual self contained browser, since that's how there press releases seem to be pushing it (or are being interpreted) - as a replacement for IE, not the IE add-on that it really is.
Dave
Friday, September 01, 2006 3:41:42 PM (Pacific Standard Time, UTC-08:00)
I've been using Firefox since it first appeared, and various versions of Mozilla before that. I have also used Opera going back to when it first appeared. They both are way better than IE for security settings, and have always been. For at least a year both have had a feature to clear "private data" when closing the browser. In fact IE has "Delete temporary Internet files" but it's buried in Advanced settings, but that's all it does. I run Firefox with cookies set to "Accept from originating site" and "ask me" for others, and Clear Private data set to delete History, cache, etc. when closing. What is it that Browzar think they are doing that's new? How will they get it to work on Linux when IE doesn't? Ha! Ha! Ha!
Sadiq
Friday, September 01, 2006 5:11:17 PM (Pacific Standard Time, UTC-08:00)
I can't believe it, internet explorer control wrapped up in a cheap and nasty GUI. I wrote a better browser than this years back using C# and ie wrapper. Mine did other terrfic things, maybe I should have marketed and made the headlines. These media people will do anything for a story......

Gotta give it to the guy!!!
Khalid
Friday, September 01, 2006 9:31:37 PM (Pacific Standard Time, UTC-08:00)
Sounds more like Browzaren't
Scott
Friday, September 01, 2006 11:07:22 PM (Pacific Standard Time, UTC-08:00)
You did get a mention and a link on the BBC. That's how I got here!

Now you are in my favs..........
Wilf
Saturday, September 02, 2006 12:36:50 AM (Pacific Standard Time, UTC-08:00)
Scott - Saw your comment here:

http://web3.0log.org/2006/09/01/new-secure-browser-browzar-is-fake-and-full-of-adware/ (which, in turn, ended up on Bruce Schneier's blog... Man, I'm speaking volumes about my blogroll...)

It's totally worth mentioning here what that other blog mentioned - This thing promises privacy but delivers adware.
Cam
Saturday, September 02, 2006 4:24:27 AM (Pacific Standard Time, UTC-08:00)
looks like the bbc article has been rewritten to address the problem you mentioned. clearly a bcc fan of the hanselman.
secretGeek
Sunday, September 03, 2006 11:20:11 AM (Pacific Standard Time, UTC-08:00)
But are they really gone?

Anything that is "deleted" on a hard drive isn't truly gone until the blocks it occupied are overwritten.

After downloading Browzar and taking my own sightseeing tour of Pl@yboy.com, I was able to recover a number of cookies, web pages and images using 'Active @ UNDELETE' (a data recovery tool).

The best way for the FBI to *NOT* find incriminating photos on your hard drive, is to *NOT* have them on there in the first place!

Seriously though, I don't understand the need to browse the web in secret? What am I missing?

Yes, I realize the irony of my name being GuyIncognito ;)
GuyIncognito
Sunday, September 03, 2006 3:45:47 PM (Pacific Standard Time, UTC-08:00)
Scott, whats this cool shell? I want to have it!
Andy
Sunday, September 03, 2006 9:19:33 PM (Pacific Standard Time, UTC-08:00)
Oh, it gets better in this version of the article, which made /. today: http://news.bbc.co.uk/1/hi/technology/5310114.stm

From the article:

<quote>
Mr Ahmed said that he had contacted Mr Hanselman. "We're asking him to provide details of how he did so, so that we can make the necessary changes," he explained. "We have done extensive testing but there maybe certain configurations that cause problems."
</quote>

Right. Like it's not there in black and white with screenshots 15 comments up.
Cam
Sunday, September 03, 2006 10:35:45 PM (Pacific Standard Time, UTC-08:00)
I was about to try this browser, until I read it was IE-based... and until I read this: that's was interesting :)

What shell are you using here ? (http://www.hanselman.com/blog/content/binary/browzar2.png)

Thanks,
Leo.
Leo
Monday, September 04, 2006 8:42:42 PM (Pacific Standard Time, UTC-08:00)
Leo, that's Console, details here: http://www.hanselman.com/blog/ABetterPROMPTForCMDEXEOrCoolPromptEnvironmentVariablesAndANiceTransparentMultiprompt.aspx
Scott Hanselman
Tuesday, September 05, 2006 1:56:01 AM (Pacific Standard Time, UTC-08:00)
Turns out there's not even an option to set your own home page in this browser, unless you edit the file with a hex editor:

http://rogerkarlsson.com/blogs/misc/change-browzar-home-page/
Roger
Comments are closed.

Contact

  • Scott Hanselman

Sponsors

Xceed - The Free WPF Grid
ASP.NET HOSTING
GUI Controls For Drop-In Windows Explorer Like File/Folder Browsing Functionality
SyncBackSE from 2BrightSparks
Free WinForms Library from ComponentFactory.com
CodeIt.Right The First Time
Get closer with NCover
Dell Laptops

On this page...

Tags

Africa (67) ASP.NET (551) ASP.NET Dynamic Data (2) ASP.NET MVC (16) Bugs (166) CodeRush (21) Coding4Fun (37) Corillian (26) DasBlog (129) DevCenter (1) DevDays (5) Diabetes (60) DLR (1) eFinance (14) Gaming (111) HttpHandler (16) HttpModule (21) Identity (3) IIS (5) INETA (8) Internationalization (40) IOC (1) Javascript (61) Learning .NET (86) LINQ (16) Longhorn (11) Microsoft (64) Mix (8) Movies (44) MSBuild (1) Musings (454) Nant (39) NCover (12) NDC (11) NDoc (6) NUnit (46) PDC (55) PHP (2) Podcast (125) PowerShell (59) Programming (216) Python (1) Reviews (120) Ruby (60) Screencasts (16) Silverlight (21) Source Code (31) Speaking (182) Subversion (14) TechEd (122) Thabo (3) Tools (382) VB (3) ViewState (19) Vista (2) Watir (21) Web Services (424) Windows Client (2) XML (287) XmlSerializer (31) Zenzo (38)

Calendar

<May 2008>
SunMonTueWedThuFriSat
27282930123
45678910
11121314151617
18192021222324
25262728293031
1234567
Posts in timeline
Posts in Large Calendar

Archives

May, 2008 (5)
April, 2008 (17)
March, 2008 (26)
February, 2008 (21)
January, 2008 (28)
December, 2007 (19)
November, 2007 (17)
October, 2007 (31)
September, 2007 (39)
August, 2007 (37)
July, 2007 (43)
June, 2007 (37)
May, 2007 (32)
April, 2007 (38)
March, 2007 (29)
February, 2007 (46)
January, 2007 (31)
December, 2006 (27)
November, 2006 (31)
October, 2006 (32)
September, 2006 (39)
August, 2006 (34)
July, 2006 (40)
June, 2006 (18)
May, 2006 (31)
April, 2006 (34)
March, 2006 (30)
February, 2006 (38)
January, 2006 (44)
December, 2005 (19)
November, 2005 (34)
October, 2005 (24)
September, 2005 (37)
August, 2005 (20)
July, 2005 (24)
June, 2005 (33)
May, 2005 (16)
April, 2005 (23)
March, 2005 (33)
February, 2005 (15)
January, 2005 (37)
December, 2004 (28)
November, 2004 (30)
October, 2004 (34)
September, 2004 (22)
August, 2004 (34)
July, 2004 (18)
June, 2004 (64)
May, 2004 (49)
April, 2004 (21)
March, 2004 (29)
February, 2004 (29)
January, 2004 (36)
December, 2003 (25)
November, 2003 (24)
October, 2003 (59)
September, 2003 (42)
August, 2003 (24)
July, 2003 (44)
June, 2003 (29)
May, 2003 (21)
April, 2003 (30)
March, 2003 (27)
February, 2003 (47)
January, 2003 (50)
December, 2002 (31)
November, 2002 (38)
October, 2002 (44)
September, 2002 (15)
May, 2002 (2)
April, 2002 (4)

Google Ads