chroot mozilla?


Flash seems able to crash mozilla. Presumably an attacker could do nastier things than crash mozilla if they wanted to. And besides, mozilla is large, and written in C++, and therefore certainly has exploits of its own.

By night my fever addled brain dreams of flash-animated viruses.

It doesn't seem safe to be running mozilla outside solid barriers. A chroot cage would be a start. Someone could still run an X keyboard sniffer or pop up fake windows, but they couldn't 0wn my user account directly.

Longer term: we shouldn't be programming in C and C++, full stop.