Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://social.tchncs.de/users/teleclimber/statuses/113759952127169324">Olivier Forget (teleclimber@social.tchncs.de)'s status on Friday, 03-Jan-2025 02:32:57 JST</a><a href="https://social.tchncs.de/@teleclimber" title="teleclimber@social.tchncs.de"><img src="https://gnusocial.jp/avatar/42387-48-20221128235240.webp" width="48" height="48" alt="Olivier Forget" style="position: absolute; left: 0; top: 0;">Olivier Forget</a><div><a href="https://social.tchncs.de/@teleclimber/113759932086333982" rel="in-reply-to">in reply to</a></div></section><article><p>While there are technical challenges related to the sandbox, especially when dealing with different platforms (like Mac and Linux) the real challenge is having a good enough DX (for the app dev) and UX (for the app user) to allow/deny requests.</p><p>At the very least, an app should not be able to dial out willy nilly to a bunch of random domains. Also, it should be blocked from dialing out to local / private IPs unless explicitly allowed.</p><p>2/2</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4301462#notice-8408625">In conversation</a><time datetime="2025-01-03T02:32:57+09:00" title="Friday, 03-Jan-2025 02:32:57 JST">about 3 months ago</time> <span>from <span><a href="https://social.tchncs.de/@teleclimber/113759952127169324" rel="external" title="Sent from social.tchncs.de via ActivityPub">social.tchncs.de</a></span></span><a href="https://social.tchncs.de/@teleclimber/113759952127169324">permalink</a><h4>Attachments</h4><ol><li><article><header><div>No result found on File_thumbnail lookup.</div><h5><a href="https://requests.at/">request counter</a></h5><div></div></header><div></div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Olivier Forget (teleclimber@social.tchncs.de)'s status on Friday, 03-Jan-2025 02:32:57 JST Olivier Forget
in reply to
While there are technical challenges related to the sandbox, especially when dealing with different platforms (like Mac and Linux) the real challenge is having a good enough DX (for the app dev) and UX (for the app user) to allow/deny requests.
At the very least, an app should not be able to dial out willy nilly to a bunch of random domains. Also, it should be blocked from dialing out to local / private IPs unless explicitly allowed.
2/2
In conversationabout 3 months ago from social.tchncs.depermalink
Attachments
1. No result found on File_thumbnail lookup.
  request counter

Public

Embed Notice

HTML Code

Corresponding Notice