@BRIAN_____ users should click to play also, but most reject the experience. They prefer the dancing pigs
@imelven @metromoxie @dveditz The image in the tweet I retweeted seems to indicate that the Flash sandbox isn't working as one would expect.
-
-
@BRIAN_____ The screenshot more likely shows that the lazy exploit demo guy passed the command line flag to turn off the sandbox. -
@ericlaw You're right; I confused it with --disable-web-security. I do wonder how many of these zero days are really stopped by the sandbox. -
@jarrednicholls@ericlaw Would you say that these are effectively mitigated in Chrome? IIRC, Adobe claims Flash has its own sandbox too... -
@BRIAN_____ Chrome has a strong sandbox. Flash sandbox is much like JavaScript's sandbox-- a limited set of capabilities, not a set of walls -
@BRIAN_____ Ah, the Firefox one, yeah. -
@BRIAN_____ necessitated for the only major browser not already sandboxed... - 2 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.