New To Mac-Forums?

Welcome to our community! Join the discussion today by registering your FREE account. If you have any problems with the registration process, please contact us!

Get your questions answered by community gurus Advice and insight from world-class Apple enthusiasts Exclusive access to members-only contests, giveaways and deals

Join today!

 
Start a Discussion
 

Mac-Forums Brief

Subscribe to Mac-Forums Brief to receive special offers from Mac-Forums partners and sponsors

Join the conversation RSS
Switcher Hangout The place for switchers to discuss their new machines, and how to work with OS X. General support can be had here for newbie stuff, like "How do I restart my new iMac?" :)

Is there a way to disable the incessant password requirement?


Post Reply New Thread Subscribe

 
Thread Tools
Thor-HoG

 
Member Since: Mar 12, 2013
Posts: 6
Thor-HoG is on a distinguished road

Thor-HoG is offline
Quote:
Originally Posted by vansmith View Post
Why? I think you might be overestimating the capabilities of sandboxing. It's not bullet proof (in fact it can be easily circumvented as it was in 2011 and 2012) and by no means offers protection against catastrophic failure. A more effective solution, and one that all browsers have now done, is process and plugin isolation.
I never suggested it was "bulletproof." Nothing is, and I never expect it to be. Regarding Firefox (and others) plug-in sandboxing, that's all and good. Security in depth is the best way to do. However, I disagree that is it "more effective" than sandboxing. An hierarchical "sandboxing" as FF does with plug-ins works well when the plug-in is behaving well, and when the OS has been written to properly handle *any* possible breach. Sandboxing on the other hand, requires that the sandboxed app itself explicitly identifies only the required access to the sandbox engine in code. This gives you *two* layers of protection. An attack against the app will have to bypass the apps explicit code, and then it will have to bypass the wrapping sandbox.

Further, there are any number of attack vectors via browser exploits. I say again, ALL browsers should be written to sandbox requirements if they want to be responsible for security. Plug-in isolation would only apply to a plug-in, not to the million other vectors out there.

t
QUOTE Thanks

Post Reply New Thread Subscribe


« Best software to remove duplicate files and pictures | WinRAR for mac »
Thread Tools

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off
Forum Jump

Similar Threads
Thread
Thread Starter
Forum
Replies
Last Post
How do i get rid of ALL passwords? MacForever OS X - Operating System 7 02-17-2013 12:24 PM
I need to end password requirement to print lesnorvell Switcher Hangout 5 02-04-2011 10:23 PM
Password Problem zer0cach3 OS X - Operating System 0 01-02-2006 11:26 PM
Screen saver password problem Biturbo V12 AMG Apple Notebooks 2 12-29-2005 06:10 AM

All times are GMT -4. The time now is 03:30 AM.

Powered by vBulletin
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
X

Welcome to Mac-Forums.com

Create your username to jump into the discussion!

New members like you have made this community the ultimate source for your Mac since 2003!


(4 digit year)

Already a member?