|
|
|
|
|
|
by ryacko
2527 days ago
|
|
|
I’m saying a network namespace or equivalent should isolate the browser from being able to access external IPs or non-whitelisted IPs, if the browser can also access internal systems. A separate browser instance should be used for accessing external links, preferably with JIT disabled, with a file system namespace or equivalent disabling access to much of the file system. But okay, nothing is secure according to you. |
|
|