Subj : RE: Brave Browser
To   : Mike Powell
From : Arelor
Date : Wed Sep 18 2024 16:38:25

  Re: RE: Brave Browser
  By: Mike Powell to ROB MCCART on Wed Sep 18 2024 09:39 am

 > One thing that I find annoying regarding browsers... "private/incognito"
 > mode is supposed to afford you a little more security.  So, I usually use
 > that to access any systems that may contain my sensitive information (like
 > the bank) and that require a userid/password.
 >
 > The problem there is that the bank site is always going to treat that
 > private mode browser session as a red flag, which means I always get a lot
 > more "are you a robot" challenges with pictures or other things that are
 > barely legible, even on a decent sized monitor.
 >
 > It is an annoyance but I guess it is more secure than the alternative.  ;)

Firefox on OpenBSD uses some security frameworks available from the OS by default. In a nutshell, the kernel monitors whether Firefox is doing stuff  browser is supposed to do, or if it is doing something else.

I have noticed my browser has a bad tendency to invoke syscalls it is not supposed to invoke when accesing my main banking site, trying to do tty stuff and the like. The OS defense trigges automatically when that happens, asumes the application has gone rogue, and kills the offending process.

It is great because the bank cannot play naughty games in my sistem. It is bad because their site is effectively broken. At the end of the day I use a sandboxed banking app for it in my smartphone.


--
gopher://gopher.richardfalken.com/1/richardfalken
--- SBBSecho 3.20-Linux
 * Origin: Palantir * palantirbbs.ddns.net * Pensacola, FL * (954:895/63)

.