FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Debian > Debian User

 
 
LinkBack Thread Tools
 
Old 03-14-2012, 06:09 PM
Dan
 
Default OT chromium/chrome sandbox

Hi,

I installed chrome and also new version of chromium, but I installed
both only for a single user that I only use to use chrome/chromium. I
installed chrome in /home/user/opt. Usually I do that with programs
that I download from internet.

Interestingly I noticed that chrome/chromium use some kind of sandbox
to isolate the process that renders the page. That is a good idea for
security purposes, but it requires to the executable chrome-sandbox to
have suid root access. I do not understand that. How about if there is
a bug in chrome-sandbox? Then some malicious code could get root
access which is even worse.

I am running chrome with the option --no-sandbox, and I didn't set the
root suid to chrome-sandbox. Do you think that this is a good idea?

Best,
Dan


--
To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Archive: CAK00fOKtcY1PpQAbbFPGZY8qN7V1AhHFkofTYrQ-6-=z3uJiog@mail.gmail.com">http://lists.debian.org/CAK00fOKtcY1PpQAbbFPGZY8qN7V1AhHFkofTYrQ-6-=z3uJiog@mail.gmail.com
 

Thread Tools




All times are GMT. The time now is 07:18 PM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org