MozillaWiki

Mozilla 2/Protected mode: Difference between revisions

Page Discussion

Mozilla 2/Protected mode (view source)

Revision as of 03:57, 7 May 2009

180 bytes removed ,  7 May 2009
→‎Potential Areas Affected / Issues
 
(6 intermediate revisions by the same user not shown)
Line 14: Line 14:
In general, Integrity applies the general rule of "no write-up", implying objects with lower integrity do not have write access to objects with higher integrity. In addition, objects running at much lower integrity levels often have "no read-up" rules applied for higher integrity objects which restrict access completely.
In general, Integrity applies the general rule of "no write-up", implying objects with lower integrity do not have write access to objects with higher integrity. In addition, objects running at much lower integrity levels often have "no read-up" rules applied for higher integrity objects which restrict access completely.


Firefox 2.0 currently runs at the default "medium" integrity level. The goal is to add support for running at both low and medium integrity without adversely effecting the browser's usability or user experience. The decision of which integrity level Fx runs at would be left to the user through a user pref or command line option.
Firefox currently runs at a default "medium" integrity level. The goal is to add support for running at both the default medium and a low "protected mode" integrity level without adversely effecting the browser's usability or user experience. The decision of which integrity level Fx runs would be left to the user through a user pref or command line option.


Three broad goals summarize the work required:
Three broad goals summarize the work required:


* Research into the areas of the Fx codebase that will be affected in some way when the Fx process is running at "low" integrity.
* Research the areas of the Mozilla codebase which would be affected by applications running at a "low" integrity.
* Add support for a medium integrity launch shim ("broker") designed to support a low integrity level Firefox process as well as better os security and integration (see bug 396196). Both shim and Firefox will run at medium integrity initially.
* Add support for a medium integrity launch shim ("broker") for Firefox. (bug 396196)
handling, application startup, and a more reliable DDE interface.
* Augment the functionality of the broker to support interaction between a low integrity Firefox process and the os and applications running at higher integrity levels.
* Augment the functionality of the broker so that a low integrity instance of Firefox can interact with higher integrity os systems and applications.


== Potential Areas Affected / Issues ==
== Potential Areas Affected / Issues ==
Line 32: Line 31:
* directory services (default locations)
* directory services (default locations)
* general file access - write access restrictions to %userprofile%\AppData\LocalLow
* general file access - write access restrictions to %userprofile%\AppData\LocalLow
* profile management
* profile management / migration
* drag and drop
* drag and drop
* copy paste
* copy paste
Jmathies
Confirmed users
1,983

edits

Retrieved from "https://wiki.mozilla.org/Special:MobileDiff/89948...142970"