W3C home > Mailing lists > Public > public-media-capture-logs@w3.org > July 2016

Re: [mediacapture-main] Iframe sandboxing options for gUM

From: Dominique Hazael-Massieux via GitHub <sysbot+gh@w3.org>
Date: Thu, 07 Jul 2016 06:56:31 +0000
To: public-media-capture-logs@w3.org
Message-ID: <issue_comment.created-230998331-1467874589-sysbot+gh@w3.org>
As described 
[above](https://github.com/w3c/mediacapture-main/issues/268#issuecomment-161580967)
 (which itself was a refinement of [another earlier 
comment](https://github.com/w3c/mediacapture-main/issues/268#issuecomment-161337256),
 the sandbox model is so restrictive by default (and with a growing & 
unbounded set of restrictions) that it is unlikely to be used; since 
using `getUserMedia` from an iframe from a different origin ought to 
be the exception rather than the norm, the model where it always has 
to be explicitly enabled seems a better match and to bring better 
protection to the user.

Now if current usage doesn't allow that change, it is reasonable to 
reconsider that approach; but it would be useful to have more details 
on what metrics tell us (if we have any)

-- 
GitHub Notification of comment by dontcallmedom
Please view or discuss this issue at 
https://github.com/w3c/mediacapture-main/issues/268#issuecomment-230998331
 using your GitHub account
Received on Thursday, 7 July 2016 06:56:39 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 16:27:30 UTC