InformAction Forums

NoScripters and WebSec nerds of all lands, unite!
https://forums.informaction.com/

How to secure Prism?

https://forums.informaction.com/viewtopic.php?t=1613

Page 1 of 1

How to secure Prism?

Posted: Sat Jun 13, 2009 5:05 pm
by luntrus
Dear friends,

I like some advice how I can bring security inside Prism: http://labs.mozilla.com/2007/10/prism/
It is basically xulrunner for a single site or desktop application like for instance GMail etc., but it would be loads more secure if I had noscript or requestpolicy in there by default, what alternatives are there?
Like to hear your suggestions,

luntrus

Re: How to secure Prism?

Posted: Sun Jun 14, 2009 8:15 am
by Tom T.
Isn't this a step in the wrong direction? The original problem is that the browser was supposed to be an application itself, not a platform for applications. Which is causing all kinds of security issues. At quick glance, it seems Prism extends this even more. At least I can sandbox my browser. Now these are to run on my desktop? I would say, secure it by avoiding it, though I admit to a bais against novelty for novelty's sake (or money's sake, or the sake of invading users' privacy).
"Not everything that can be done, should be done". -- Thomas T.
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited