W3C home > Mailing lists > Public > public-webrtc-logs@w3.org > February 2022

Re: [mediacapture-screen-share] Avoid Hall-of-Mirrors (#209)

From: jesup via GitHub <sysbot+gh@w3.org>
Date: Fri, 25 Feb 2022 00:45:31 +0000
To: public-webrtc-logs@w3.org
Message-ID: <issue_comment.created-1050404687-1645749930-sysbot+gh@w3.org>
If the point of the security risk is that a site may use capture of itself to export arbitrary content under it's control, breaking cross-origin capture restrictions, this does nothing at all to address it.  A malicious app would of course not exclude the current tab, and would in fact give the user a reason for wanting to capture the current tab.

-- 
GitHub Notification of comment by jesup
Please view or discuss this issue at https://github.com/w3c/mediacapture-screen-share/issues/209#issuecomment-1050404687 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config
Received on Friday, 25 February 2022 00:45:33 UTC

This archive was generated by hypermail 2.4.0 : Saturday, 6 May 2023 21:19:56 UTC