akkartik
/
teliva
1
1
Fork 0
Code Issues Pull Requests Releases Activity

sandbox: more scenarios

This commit is contained in:
Kartik K. Agaram 2021-12-25 16:16:52 -08:00
parent dbbb396003
commit e4c0b0a3e7
1 changed files with 5 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
sandboxing/README.md
View File

@ -36,6 +36,11 @@ Scenarios:
- `teliva_editor_state` - `teliva_editor_state`
- app-specific sandboxing policies - app-specific sandboxing policies
* (2) app can read from a remote server but not write (POST) * (2) app can read from a remote server but not write (POST)
* (1) app permissions are saved across restart
* (1) permissions the owner grants to one app are not automatically granted
to another
* (2) downloading a second app with identical name doesn't receive its
predecessors permissions
* app gains access to a remote server for a legitimate purpose, reads * app gains access to a remote server for a legitimate purpose, reads
sensitive data from the local system file for legitimate purpose. Now sensitive data from the local system file for legitimate purpose. Now
there's nothing preventing it from exfiltrating the sensitive data to the there's nothing preventing it from exfiltrating the sensitive data to the