Confirmed users
1,982
edits
Security/Sandbox/Deny Filesystem Access: Difference between revisions
Jump to navigation
Jump to search
Security/Sandbox/Deny Filesystem Access (view source)
Revision as of 15:37, 1 August 2016
, 1 August 2016edits
(adding notes on extensions) |
(edits) |
||
| Line 94: | Line 94: | ||
* Extension write access? | * Extension write access? | ||
** Accessing areas like $PROFILE/chrome/userContent.css | ** Accessing areas like $PROFILE/chrome/userContent.css | ||
** This should always be accomplished through the parent process | ** Consensus is: <strong>This should always be accomplished through the parent process</strong> | ||
** | ** Question: Are there extensions that try to do this from content that we'll break? | ||
** | ** Question: Other areas content process frame scripts might try to write to? | ||
** Extension directories that get created in the root profile directory: | ** Extension directories that get created in the root profile directory: | ||
*** $PROFILE/extension-data/* (uMatrix) | *** $PROFILE/extension-data/* (uMatrix) | ||
*** $PROFILE/adblockplus/* | *** $PROFILE/adblockplus/* (AdBlockPlus) | ||
*** … | *** … | ||