{"type":"doc","content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#333333","name":"user"}}],"text":"12 月 6 日,"},{"type":"link","attrs":{"href":"https:\/\/www.mozilla.org\/en-US","title":null,"type":null},"content":[{"type":"text","text":"Mozilla"}]},{"type":"text","marks":[{"type":"color","attrs":{"color":"#333333","name":"user"}}],"text":" 通過其 Mozilla Hacks 博客"},{"type":"link","attrs":{"href":"https:\/\/hacks.mozilla.org\/2021\/12\/webassembly-and-back-again-fine-grained-sandboxing-in-firefox-95\/","title":null,"type":null},"content":[{"type":"text","text":"宣佈"}]},{"type":"text","marks":[{"type":"color","attrs":{"color":"#333333","name":"user"}}],"text":",它計劃在 Firefox 95 中發佈一種名爲 RLBox 的“新型沙盒技術”,該技術是與加州大學聖地亞哥分校和德克薩斯大學的研究人員一起開發的。Mozilla 表示,RLBox 能夠更輕鬆有效地隔離瀏覽器的子組件,併爲 Mozilla 提供比傳統沙盒技術更多的優勢。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":" "}]},{"type":"heading","attrs":{"align":null,"level":2},"content":[{"type":"text","text":"RLBox 的優勢"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":" "}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#333333","name":"user"}}],"text":"沙盒是業界廣泛使用的安全方法,瀏覽器在沙盒進程中運行 web 內容,試圖阻止惡意或有bug的網站危及整個瀏覽器。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":" "}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":"RLBox 旨在對第三方庫進行沙盒處理,它由一個基於WebAssembly的沙盒和一個 API 組成,用於在沙盒庫內改進現有的應用程序代碼。RLBox 將把沙盒庫的內存與應用程序\/Firefox 的內存隔離開來。RLBox 與傳統方法的另一個不同之處在於,它對性能的影響和內存使用更低,這也使得它有可能對關鍵的瀏覽器組件進行沙盒處理。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":" "}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":"GitHub 上的文檔對 RLBox 有更詳細的解釋。在Mozilla Hacks上也有這樣一篇博文,概述了 RLBox 的工作: "}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":" "}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":"https:\/\/plsyssec.github.io\/rlbox_sandboxing_api\/sphinx\/"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":" "}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":"該技術的原型此前已在 Firefox 74 和 Firefox 75 中分別提供給了 Linux 和 Mac 用戶。"},{"type":"text","marks":[{"type":"color","attrs":{"color":"#333333","name":"user"}}],"text":"在 Firefox 95 中"},{"type":"text","text":",將被部署至所有支持的 Firefox 平臺上,包括桌面端和移動端。同時在 Firefox 95 中,RLBox 將率先用於隔離三個不同的模塊:Graphite、Hunspell 和 Ogg,在 Firefox 96 中,另外兩個模塊:Expat 和 Woff2 也將被隔離。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":" "}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":"Mozilla 工程師 Bobby Holley 表示:“RLBox 讓我們在幾個方面都能獲得巨大的好處:它能夠保護用戶不受意外缺陷和供應鏈攻擊的影響,而且它們中的任何一個零日漏洞也不會對 Firefox 構成威脅,也能減少我們倉促應付的情況發生。因此,我們打算在未來將 RLBox 繼續應用於更多的組件。雖然有些組件由於太依賴與程序的其他部分共享內存,以及對性能太敏感,並不適合這種方法,但我們已經確定了其他一些良好的候選者。”"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":" "}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"link","attrs":{"href":"https:\/\/www.firefox.com.cn","title":null,"type":null},"content":[{"type":"text","text":"Mozilla"}],"marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}]},{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":" 還一同更新了漏洞懸賞計劃,在新的計劃中,即使隔離庫中沒有漏洞,但只要研究人員能夠繞過新的沙盒就能獲得報酬,這也有助於進一步加強 Firefox 瀏覽器的安全性。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":" "}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":"同時,RLBox 並非只能用於 Firefox 瀏覽器,Mozilla 還希望其他瀏覽器和軟件項目也能夠採用這項技術,從而爲用戶在更廣泛的應用領域帶來更高的安全性。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":" "}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":"Firefox 95下載地址:"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":" "}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"link","attrs":{"href":"https:\/\/www.codingsky.com\/jump\/aHR0cHM6Ly9mdHAubW96aWxsYS5vcmcvcHViL2ZpcmVmb3gvcmVsZWFzZXMvOTUuMC8=","title":null,"type":null},"content":[{"type":"text","text":"http:\/\/ftp.mozilla.org\/pub\/firefox\/releases\/95.0\/"}],"marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}]}]}]}
Firefox 95 發佈 RLBox“新型沙盒技術”
{"type":"doc","content":[{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#333333","name":"user"}}],"text":"12 月 6 日,"},{"type":"link","attrs":{"href":"https:\/\/www.mozilla.org\/en-US","title":null,"type":null},"content":[{"type":"text","text":"Mozilla"}]},{"type":"text","marks":[{"type":"color","attrs":{"color":"#333333","name":"user"}}],"text":" 通過其 Mozilla Hacks 博客"},{"type":"link","attrs":{"href":"https:\/\/hacks.mozilla.org\/2021\/12\/webassembly-and-back-again-fine-grained-sandboxing-in-firefox-95\/","title":null,"type":null},"content":[{"type":"text","text":"宣佈"}]},{"type":"text","marks":[{"type":"color","attrs":{"color":"#333333","name":"user"}}],"text":",它計劃在 Firefox 95 中發佈一種名爲 RLBox 的“新型沙盒技術”,該技術是與加州大學聖地亞哥分校和德克薩斯大學的研究人員一起開發的。Mozilla 表示,RLBox 能夠更輕鬆有效地隔離瀏覽器的子組件,併爲 Mozilla 提供比傳統沙盒技術更多的優勢。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":" "}]},{"type":"heading","attrs":{"align":null,"level":2},"content":[{"type":"text","text":"RLBox 的優勢"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":" "}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#333333","name":"user"}}],"text":"沙盒是業界廣泛使用的安全方法,瀏覽器在沙盒進程中運行 web 內容,試圖阻止惡意或有bug的網站危及整個瀏覽器。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":" "}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":"RLBox 旨在對第三方庫進行沙盒處理,它由一個基於WebAssembly的沙盒和一個 API 組成,用於在沙盒庫內改進現有的應用程序代碼。RLBox 將把沙盒庫的內存與應用程序\/Firefox 的內存隔離開來。RLBox 與傳統方法的另一個不同之處在於,它對性能的影響和內存使用更低,這也使得它有可能對關鍵的瀏覽器組件進行沙盒處理。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":" "}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":"GitHub 上的文檔對 RLBox 有更詳細的解釋。在Mozilla Hacks上也有這樣一篇博文,概述了 RLBox 的工作: "}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":" "}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":"https:\/\/plsyssec.github.io\/rlbox_sandboxing_api\/sphinx\/"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":" "}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":"該技術的原型此前已在 Firefox 74 和 Firefox 75 中分別提供給了 Linux 和 Mac 用戶。"},{"type":"text","marks":[{"type":"color","attrs":{"color":"#333333","name":"user"}}],"text":"在 Firefox 95 中"},{"type":"text","text":",將被部署至所有支持的 Firefox 平臺上,包括桌面端和移動端。同時在 Firefox 95 中,RLBox 將率先用於隔離三個不同的模塊:Graphite、Hunspell 和 Ogg,在 Firefox 96 中,另外兩個模塊:Expat 和 Woff2 也將被隔離。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":" "}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":"Mozilla 工程師 Bobby Holley 表示:“RLBox 讓我們在幾個方面都能獲得巨大的好處:它能夠保護用戶不受意外缺陷和供應鏈攻擊的影響,而且它們中的任何一個零日漏洞也不會對 Firefox 構成威脅,也能減少我們倉促應付的情況發生。因此,我們打算在未來將 RLBox 繼續應用於更多的組件。雖然有些組件由於太依賴與程序的其他部分共享內存,以及對性能太敏感,並不適合這種方法,但我們已經確定了其他一些良好的候選者。”"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":" "}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"link","attrs":{"href":"https:\/\/www.firefox.com.cn","title":null,"type":null},"content":[{"type":"text","text":"Mozilla"}],"marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}]},{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":" 還一同更新了漏洞懸賞計劃,在新的計劃中,即使隔離庫中沒有漏洞,但只要研究人員能夠繞過新的沙盒就能獲得報酬,這也有助於進一步加強 Firefox 瀏覽器的安全性。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":" "}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":"同時,RLBox 並非只能用於 Firefox 瀏覽器,Mozilla 還希望其他瀏覽器和軟件項目也能夠採用這項技術,從而爲用戶在更廣泛的應用領域帶來更高的安全性。"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":" "}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":"Firefox 95下載地址:"}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"text","marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}],"text":" "}]},{"type":"paragraph","attrs":{"indent":0,"number":0,"align":null,"origin":null},"content":[{"type":"link","attrs":{"href":"https:\/\/www.codingsky.com\/jump\/aHR0cHM6Ly9mdHAubW96aWxsYS5vcmcvcHViL2ZpcmVmb3gvcmVsZWFzZXMvOTUuMC8=","title":null,"type":null},"content":[{"type":"text","text":"http:\/\/ftp.mozilla.org\/pub\/firefox\/releases\/95.0\/"}],"marks":[{"type":"color","attrs":{"color":"#494949","name":"user"}}]}]}]}
發表評論
所有評論
還沒有人評論,想成為第一個評論的人麼? 請在上方評論欄輸入並且點擊發布.
相關文章