X
Nhấn vào đây để đến phiên bản di động của trang web.

Diễn đàn trợ giúp

Why Firefox sandbox is not active?

Được đăng

I have tried to change sandbox level in firefox in about:config, but it doesn´t matter what level I set, I still have access to system files from the browser "file://" page, so that means that my files are exposed and sandbox it´s not restricting anything, right?. How could I solve it?. If I execute firefox with firejail the program crashes. I tried with Tor and the sandbox is working, so is not a problem with my OS, could I use the same configuration that Tor uses in firefox with some trick?. I´m in Linux Manjaro 4.19

I have tried to change sandbox level in firefox in about:config, but it doesn´t matter what level I set, I still have access to system files from the browser "file://" page, so that means that my files are exposed and sandbox it´s not restricting anything, right?. How could I solve it?. If I execute firefox with firejail the program crashes. I tried with Tor and the sandbox is working, so is not a problem with my OS, could I use the same configuration that Tor uses in firefox with some trick?. I´m in Linux Manjaro 4.19
Trích dẫn

Chi tiết hệ thống bổ sung

Phần bổ trợ đã cài đặt

  • Shockwave Flash 31.0 r0

Ứng dụng

  • Chuỗi đại diện người dùng: Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Firefox/68.0

Thông tin chi tiết

jscher2000
  • Top 10 Contributor
8640 giải pháp 70686 câu trả lời
Được đăng

This page describes what the different sandbox levels are supposed to do: https://wiki.mozilla.org/Security/Sandbox#Linux

What is the browser file:// page -- do you mean a directory listing or full path accessed from the address bar?

I should note that what you can access through the address bar isn't necessarily the same as what web content can access. However, I don't know the best way to test that.

Regarding Tor and opening local files, perhaps there is some unique code in Tor related to local files (other than sandbox)?

This page describes what the different sandbox levels are supposed to do: https://wiki.mozilla.org/Security/Sandbox#Linux What is the browser file:// page -- do you mean a directory listing or full path accessed from the address bar? I should note that what ''you'' can access through the address bar isn't necessarily the same as what ''web content'' can access. However, I don't know the best way to test that. Regarding Tor and opening local files, perhaps there is some unique code in Tor related to local files (other than sandbox)?
Bài viết này có hữu ích với bạn không?
Trích dẫn

Người tạo câu hỏi

I mean the full path from the address bar. Actually, I was looking for a way to test that, I know that in Tor I can´t access some files which I can in Firefox (I think that Tor have a different sandbox system, but I´m not sure), but that´s not enough to know if Firefox is totally safe, I just know that PROBABLY, is not as safe as Tor regarding sandboxing.

I mean the full path from the address bar. Actually, I was looking for a way to test that, I know that in Tor I can´t access some files which I can in Firefox (I think that Tor have a different sandbox system, but I´m not sure), but that´s not enough to know if Firefox is totally safe, I just know that PROBABLY, is not as safe as Tor regarding sandboxing.
Bài viết này có hữu ích với bạn không?
Trích dẫn
Đặt một câu hỏi

Bạn phải đăng nhập vào tài khoản của bạn để trả lời bài viết. Vui lòng bắt đầu một câu hỏi mới, nếu bạn chưa có tài khoản.