Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!


Click here to return to the 'Run Firefox in a protected sandbox' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
Run Firefox in a protected sandbox
Authored by: chsnyder on Mar 20, '10 11:18:14AM
More info about sandboxes, from the manual page:
The sandbox facility allows applications to voluntarily restrict their access to operating system resources. This safety mechanism is intended to limit potential damage in the event that a vulnerability is exploited. It is not a replacement for other operating system access controls.

New processes inherit the sandbox of their parent.
Sandboxing Firefox or any other application that fetches data from untrusted sources will prevent an exploit in FF or in any of its plugins to read or write data outside of the sandbox.

That's a layer of protection we should all have, given well-publicized issues with plugins recently. It would be ideal for developers to "self-sandbox" their internet-enabled apps, as they know exactly which resources the app needs to touch. Perhaps some do?

[ Reply to This | # ]
Run Firefox in a protected sandbox
Authored by: osxpounder on Mar 09, '11 04:21:30PM

Dang, not well-publicized enough for me. I don't know about security issues with Firefox plugins.

What are 1 or 2 good sites I could check regularly that would keep me up to date on that kind of news?



[ Reply to This | # ]