Comments (7)
pfrazee
commented on May 18, 2024
1
@pguth Calling this critical obscures the nature of the issue. Calling it critical makes it sound like there's a known vector to escape the Web API sandbox. That's not the case. The issue is, if there is a vulnerability in the Web API or plugin system, there's no process-level sandbox to contain that failure.
Otherwise, we're in agreement. Before Beaker can be considered a mature browser, it'll need to adopt a process-level sandbox.
from beaker.
pfrazee
commented on May 18, 2024
1
The process-level sandbox is now enabled
from beaker.
perguth
commented on May 18, 2024
Nice article! There has been a follow-up blogpost mentioning the now implemented fixes and also the official security guide.
from beaker.
pfrazee
commented on May 18, 2024
Thanks @wanderer for bringing this up, and thanks @pguth for the useful followups.
To recap: the Chromium sandbox is an extra layer of protection around the Web platform sandboxing. It protects from exploits against the Web platform's implementation. Electron doesn't have it enabled.
In my opinion, It is a security concern, but not a critical one. We should track its status, and possibly copy from Brave's solution when Beaker is more mature.
from beaker.
perguth
commented on May 18, 2024
I would rather rephrase to: It is a critical security concern but we can _carefully_ manage for the time of initial development because:
a) it seems the development is going quickly.
b) the brave browser pioneered a solution.
In the words of the electron security guide:
[...] be aware that displaying arbitrary content from untrusted sources poses a severe security risk that Electron is not intended to handle. [...] if your application executes code from an online source, it is your responsibility to ensure that the code is not malicious.
It closes with:
If your goal is to display a website, a browser will be a more secure option.
@pfraze: Sorry for the wrong impression my first post gave.
from beaker.
perguth
commented on May 18, 2024
Calling this critical obscures the nature of the issue. Calling it critical makes it sound like there's a known vector to escape the Web API sandbox.
Ah, I see.
from beaker.
pfrazee
commented on May 18, 2024
Important progress made by electron recently: electron/electron#6919
There may still need to be more work before I can adopt that flag here. Tracking issue: electron/electron#6712
from beaker.
Related Issues (20)
- [Question] JS: how to prompt self-cloning a site?
- FATAL:electron_main_delegate.cc(253)] Running as root without --no-sandbox is not supported. See https://crbug.com/638180.
- [6059:0925/061055.321176:FATAL:setuid_sandbox_host.cc(158)] The SUID sandbox helper binary was found, but is not configured correctly. Rather than run without sandboxing I'm aborting now. You need to make sure that /home/BEAKER/beaker/scripts/node_modules/electron/dist/chrome-sandbox is owned by root and has mode 4755.
- Can't start Beaker on MacOS 11.6 HOT 3
- Watchlist eyeball icon pops up next to the menu button, but when I click it I go to `beaker://watchlist` which produces "This site can't be reached"
- When trying to open browser immediately after installtion Java.Script Error
- Error: Can't walk dependency graph: Cannot find module '@beaker/dat-serve-resolve-path' f HOT 2
- Consider dat support in brave browser, reconsider ipfs in beaker
- implementation 'com.google.firebase:firebase-analytics:17.4.1'
- implementation 'com.google.firebase:firebase-analytics:17.4.1'
- Javascript error immediately after installation HOT 1
- Web browser extensions
- No more development? HOT 7
- No space between words in interface
- Beaker Installation Issues
- What about adding Aggregore features into Beaker Browser?
- Beaker Browser with Solid
- no IDN?
- PR: Prepare for alignment with upstream code-oss web-modules HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from beaker.