[-GC-] Rolling out a sandbox for Adobe Flash Player

作者DCaty (世界の終わり)

看板Browsers

標題[-GC-] Rolling out a sandbox for Adobe Flash Player

時間Thu Dec 2 17:35:03 2010

The Chromium Blog： http://blog.chromium.org/2010/12/rolling-out-sandbox-for-adobe-flash.html AolTech： http://downloadsquad.switched.com/2010/11/15/google-chrome-sandboxes-flas h-for-more-secure-browsing/ 短網址：http://goo.gl/f0dxw 中國cnBeta.com：http://www.cnbeta.com/articles/128588.htm Since this past March, we’ve been working closely with Adobe to allow Flash Player to take advantage of new sandboxing technology in Chrome, extending the work we’ve already done with sandboxing for HTML rendering and JavaScript execution. This week, we’re excited to roll out the initial Flash Player sandbox for our dev channel users on Windows XP, Vista and 7. This initial Flash Player sandbox is an important milestone in making Chrome even safer. In particular, users of Windows XP will see a major security benefit, as Chrome is currently the only browser on the XP platform that runs Flash Player in a sandbox. This first iteration of Chrome’s Flash Player sandbox for all Windows platforms uses a modified version of Chrome’s existing sandbox technology that protects certain sensitive resources from being accessed by malicious code, while allowing applications to use less sensitive ones. This implementation is a significant first step in further reducing the potential attack surface of the browser and protecting users against common malware. While we’ve laid a tremendous amount of groundwork in this initial sandbox, there’s still more work to be done. We’re working to improve protection against additional attack vectors, and will be using this initial effort to provide fully sandboxed implementations of the Flash Player on all platforms. We’ll be posting updates as we continue working with Adobe to add new security improvements to the Flash Player sandbox. For those of you on the dev channel for Windows, you’ll be automatically updated soon, and we look forward to your feedback as you test it out. If you prefer to disable this initial sandbox in your Chrome dev experience, add --disable-flash-sandbox to the command line. 只貼第一個連結內文，第二篇有興趣的板友請另行點閱。大意是說，本週發布的Canary & GC dev版本將會加入沙盒技術的Flash 欲關閉此功能，可以加 --disable-flash-sandbox 指令加以關閉第二篇連結有提到 Flash 版本需 10.1.103.19 以上敬請期待~ -- 紙筆產業的價值 -- 再探致灰文明 http://blog.ofset.org/ckhung/index.php?post/109a By HUNG Chao-Kuei on Friday, September 3 2010, 10:00 -- ※ 發信站: 批踢踢實業坊(ptt.cc) ◆ From: 218.168.125.27 ※ 編輯: DCaty 來自: 218.168.125.27 (12/02 17:40)