Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
d33
on May 11, 2018
|
parent
|
context
|
favorite
| on:
Linux sandboxing improvements in Firefox 60
Interesting. Sandboxing in Chrome is something I turn off when I write my headless bots as it requires extra privileges. Would be nice to see a comparison between it and FF.
jbroman
on May 11, 2018
|
next
[–]
If you're on Linux >= 3.10, I believe Chrome should use the namespaces sandbox rather than the (privileged) setuid sandbox.
https://chromium.googlesource.com/chromium/src/+/master/docs...
staticassertion
on May 11, 2018
|
prev
[–]
Can you elaborate?
icebraining
on May 11, 2018
|
parent
[–]
I'm guessing d33 is talking about the capabilities needed to setup the sandbox (like CAP_SYS_CHROOT), as mentioned in the article.
Consider applying for YC's Summer 2026 batch! Applications are open till May 4
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
