<html>
<head>
<base href="https://bugs.webkit.org/" />
</head>
<body><span class="vcard"><a class="email" href="mailto:mcatanzaro@igalia.com" title="Michael Catanzaro <mcatanzaro@igalia.com>"> <span class="fn">Michael Catanzaro</span></a>
</span> changed
<a class="bz_bug_link
bz_status_NEW "
title="NEW - [WK2] [Meta] Add sandbox isolation to the WebProcess on Linux"
href="https://bugs.webkit.org/show_bug.cgi?id=89874">bug 89874</a>
<br>
<table border="1" cellspacing="0" cellpadding="8">
<tr>
<th>What</th>
<th>Removed</th>
<th>Added</th>
</tr>
<tr>
<td style="text-align:right;">Status</td>
<td>ASSIGNED
</td>
<td>NEW
</td>
</tr>
<tr>
<td style="text-align:right;">Assignee</td>
<td>tmpsantos@gmail.com
</td>
<td>webkit-unassigned@lists.webkit.org
</td>
</tr></table>
<p>
<div>
<b><a class="bz_bug_link
bz_status_NEW "
title="NEW - [WK2] [Meta] Add sandbox isolation to the WebProcess on Linux"
href="https://bugs.webkit.org/show_bug.cgi?id=89874#c2">Comment # 2</a>
on <a class="bz_bug_link
bz_status_NEW "
title="NEW - [WK2] [Meta] Add sandbox isolation to the WebProcess on Linux"
href="https://bugs.webkit.org/show_bug.cgi?id=89874">bug 89874</a>
from <span class="vcard"><a class="email" href="mailto:mcatanzaro@igalia.com" title="Michael Catanzaro <mcatanzaro@igalia.com>"> <span class="fn">Michael Catanzaro</span></a>
</span></b>
<pre>I removed the seccomp filters code several months ago.
Sandboxing is no longer interesting to GNOME, since we plan to distribute 100% of our apps as Flatpaks, and any WebKit sandbox would likely need to be disabled in favor of the Flatpak sandbox. However, other users of WebKit would surely appreciate having a sandbox, so I'll leave this bug open. (seccomp-filters cannot be the primary security mechanism, though, for the reasons mentioned above.)</pre>
</div>
</p>
<hr>
<span>You are receiving this mail because:</span>
<ul>
<li>You are the assignee for the bug.</li>
</ul>
</body>
</html>