Discussion in 'all things UNIX' started by ComputerSaysNo, Dec 11, 2012.
This is a serious shortcoming, Adobe what are you doing?
Serious shortcoming how.
Everything in Linux has to run to with least user privilege. And exploits and drivebys in browsers are largely written for Windows.
not that i am interested in Chrome but isn't Flash sandboxed under Chrome in Linux like it is in Windows?
It is in Chrome. They don't even support other browsers on Linux.
Only for newer versions, 11.2 (which works in Firefox and other browsers) still gets support.
"Adobe will continue to provide security updates to non-Pepper distributions of Flash Player 11.2 on Linux for five years from its release"
If a sandbox was needed, surely SELinux or Apparmour would provide suitable protection ?
Thanks to m00nbl00d's idea it can be run at Low il in Firefox on Vista/Win7
11.2 gets security updates, but it won't be getting any new features, like a sandbox. I believe sandboxing was introduced in 11.3 for Firefox.
You can AppArmor the plugin container process and that's one decent method of protection.
Why is Flash even still alive? This is a SERIOUS shortcoming too, I wish flash would just DIE already!
Separate names with a comma.