Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

At least I know a website couldn't read my id_rsa, as opposed to native executables. Unless there is a very serious browser exploit.


They're working on it: https://wicg.github.io/file-system-access/

While local apps are getting sandboxed properly: https://docs.flatpak.org/en/latest/sandbox-permissions.html


> They're working on it: https://wicg.github.io/file-system-access/

It seems it need user to manually select a file/folder to be used, like Android or iOS does.

> While local apps are getting sandboxed properly: https://docs.flatpak.org/en/latest/sandbox-permissions.html

It looks good, but it seems many applications still require filesystem=host to run (https://flatkill.org/2020/). Also, its sandbox solution isn't going to work on Windows, Mac and BSDs.


> It seems it need user to manually select a file/folder to be used, like Android or iOS does.

please select your home directory for our super-awesome functionality


It doesn't need to, the server has the master key and the data it cares about is tracked on each HTTP request.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: