2 ignorant questions coming up. Isnt Java supposed to have a sandbox? Did the recent exploit somehow escape it? Never saw this described.
@dakami @jeremiahg : at this point I think we can safely assume that all plugins are dangerous by default unless also browser sandboxed.
-
-
@slightlylate@jeremiahg and browser sandboxes are only kind of relevant, to be honest -
@dakami@jeremiahg : the # of hurdles always matters. Defense in depth is the only way...although pervasive click-to-play wouldn't hurt.
End of conversation
New conversation -
-
-
@slightlylate@jeremiahg all things are dangerous. Webkit, Trident, and Gecko aren't beautiful. They ARE patched faster though.Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
& Web Standards TL; Blink API OWNER
Named PWAs w/
DMs open. Tweets my own; press@google.com for official comms.