Semantic of NPN_GetURL. Local files. History

Darin Fisher darin at chromium.org
Fri Feb 24 20:30:12 PST 2012


On Fri, Feb 24, 2012 at 5:55 AM, Mike Shaver <mike.shaver at gmail.com> wrote:

> On Thu, Feb 23, 2012 at 1:35 PM, John Yani <vanuan at gmail.com> wrote:
> > 1) browser has broader rights than a plugin; (npapi plugins run in a
> > sandboxed environment, which is not the case; at least it can't be for
> > Windows' filesystems)
>
> Some NPAPI plugins do run in sandboxes without filesystem access, f.e.
> in Chrome.
>
> Mike



That's only true of the NPAPI Flash bundled with Google Chrome.  While we
have a command line switch that can enable sandboxing of arbitrary plugins,
that features is not enabled by default.

The problem is that it is not possible to predict what arbitrary
third-party NPAPI plugins will require from the system.

-Darin
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.mozilla.org/pipermail/plugin-futures/attachments/20120224/e29b721a/attachment.html>


More information about the plugin-futures mailing list