Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Security of container-bookmarks? #3

Open
mikenrafter opened this issue Nov 14, 2021 · 1 comment
Open

Security of container-bookmarks? #3

mikenrafter opened this issue Nov 14, 2021 · 1 comment

Comments

@mikenrafter
Copy link

https://gitlab.com/mikenrafter/containMarks <- I used some code from your extension, but see here, that I shorten the URL required, and I use random one-time tokens, for security purposes.

An attacker, with some good off-sec, could break out of a container, or into another one, if they knew: an existing container-name, and that your extension was in use.

My extension fixes this. I believe you could tackle those two issues. Feel free to utilize some of my code. It's fairly straightforward, and uses a decent amount of comments. There's also a debug mode, for if you want to peel back the curtain a bit.

Thanks for the groundwork you did on this extension. It greatly accelerated my development process (3.5 days!)
@mikenrafter
Copy link
Author

See also: mozilla/multi-account-containers#1970

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@mikenrafter