Points of confusion
Points of confusion
Posted Sep 30, 2011 22:44 UTC (Fri) by Jan_Zerebecki (guest, #70319)In reply to: Points of confusion by Ross
Parent article: LSS: The kernel hardening roundtable
> 4) "In the future, the team would also like to confine renderers based on where the data comes from, he said, so that all renderers running for a given site were protected from each other as well."
That sentence would make sense if one displayed site embedded something from a different security domain ( e.g. example.com embeds from google.com while you are authenticated by a cookie with google.com ; a whole site by iframe or an picture by img src ). The data comes from different domains and is displayed in one site but still needs to be protected from each other.