News: 0000826623

  ARM Give a man a fire and he's warm for a day, but set fire to him and he's warm for the rest of his life (Terry Pratchett, Jingo)

Safely reviving shared memory (Mozilla Hacks)

([Development] Jul 21, 2020 17:03 UTC (Tue) (corbet))


The Mozilla Hacks blog [1]covers some recent Firefox changes that will allow code from web sites to use shared memory and high-resolution timers in a (hopefully) safe manner. " Together with others in the WHATWG community, we designed a set of headers that meet these requirements. The Cross-Origin-Opener-Policy header allows you to process-isolate yourself from attackers. It also has the desirable effect that attackers cannot have access to your global object if they were to open you in a popup. This prevents XS-Leaks and various navigation attacks. Adopt this header even if you have no intention of using shared memory! "



[1] https://hacks.mozilla.org/2020/07/safely-reviving-shared-memory/

Whenever Richard Cory went downtown,
We people on the pavement looked at him:
He was a gentleman from sole to crown,
Clean-favored, and imperially slim.
And he was always quietly arrayed,
And he was always human when he talked;
But still he fluttered pulses when he said,
"Good morning," and he glittered when he walked.
And he was rich -- yes, richer than a king --
And admirably schooled in every grace:
In fine, we thought that he was everything
To make us wish that we were in his place.
So on we worked, and waited for the light,
And went without the meat, and cursed the bread;
And Richard Cory, one calm summer night,
Went home and put a bullet through his head.
-- E. A. Robinson, "Richard Cory"