Re: [mediacapture-screen-share] Revisit: Let getDisplayMedia() influence the default type choice in the picker (#184) from Elad Alon via GitHub on 2021-09-03 (public-webrtc-logs@w3.org from September 2021)

From: Elad Alon via GitHub <sysbot+gh@w3.org>
Date: Fri, 03 Sep 2021 13:55:00 +0000
To: public-webrtc-logs@w3.org
Message-ID: <issue_comment.created-912558290-1630677299-sysbot+gh@w3.org>

> I am not sure what you are referring to

TL;DR: My point is that same-origin tabs aren't as special as they initially sound.
Reasoning: If tab X opens and captures a tab Y, then there is a risk that they can communicate **even** if they are not technically same-origin. Currently you can use a "mailman" in the form of an iframe+BroadcastChannel; in the future you could use a PeerConnection, shared cloud infrastructure, etc. We will never sandbox these tabs enough to prevent the kind of attacks self-capture is concerned with.

-- 
GitHub Notification of comment by eladalon1983
Please view or discuss this issue at https://github.com/w3c/mediacapture-screen-share/issues/184#issuecomment-912558290 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Friday, 3 September 2021 13:55:02 UTC