Ubuntu Desktop Security Defaults
John McCabe-Dansted
gmatht at gmail.com
Sat Apr 18 06:59:55 UTC 2009
On Wed, Apr 15, 2009 at 10:24 AM, Null Ack <nullack at gmail.com> wrote:
> X security. He makes what seems to be a very sound suggestion about
> Plash and hooking into GTK, thus overcoming the problem of needing to
> in advance make determinations about what a desktop user might do and
> the X security problems.
Chromium also uses this technique, using a trusted file open dialog
box, to prevent a subverted renderer process from uploading arbitrary
files:
http://www.tomshardware.com/reviews/google-chrome-security,2271-3.html
IMHO, Chromium has a very nice architecture.
--
John C. McCabe-Dansted
PhD Student
University of Western Australia
More information about the Ubuntu-devel-discuss
mailing list