zlacker

I see, it lets me install random .EXEs from sketchy web sites on my Windows machine without having to worry. Sounds safe.

replies(1): >>iknows+M3

>>Camper+(OP)
Whats your point? You just ran a bunch of untrusted code when you visitied this website.

replies(2): >>EvanAn+a7 >>parl_m+lH

>>iknows+M3
Untrusted code running in a well-defined and maintained sandbox.

replies(2): >>pauldd+fp1 >>hardwa+dV1

>>iknows+M3
Running a native binary in an environment with a large attack space and user level permissions is not NEARLY the same as running javascript in a browser with all of its sandboxing, isolation, and controls. And you know it.

>>EvanAn+a7
Yes and....

replies(1): >>EvanAn+EQ2

>>EvanAn+a7
Still stuff manages to escape constantly

You can find exploits on gh for older chromium versions easily

replies(1): >>EvanAn+jQ2

>>hardwa+dV1
Even so it's disingenuous to compare running native code in an OS w/o a capabilities model to running Javascript in a browser.

>>pauldd+fp1
Visiting a website and running Javascript vs. running a native application aren't equivalent. Browser sandbox exploits are "a thing" but that doesn't make the situations the same.

replies(1): >>pauldd+ta3

>>EvanAn+EQ2
Yes and WASM can be sandboxed just as easily as JavaScript.

There is nothing "magical" about web browsers in that regard.

replies(1): >>EvanAn+ui3

>>pauldd+ta3
I don’t follow where you’re going.

I didn’t say there was anything “magical” about browsers. They have a sandbox for JavaScript, by default. Windows doesn’t have a sandbox for native apps, by default.

A parent poster seemed to be making a statement of equivalency between running a native application in Windows and running JavaScript in a browser. I don’t think they’re equivalent.

That’s what I’m saying.

replies(1): >>iknows+qc4

>>EvanAn+ui3
We are literally talking about an environment for running Win32 apps in a sandbox