From owner-freebsd-questions@FreeBSD.ORG  Thu Jan 23 11:42:15 2014
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 9DC126A2
 for <freebsd-questions@freebsd.org>; Thu, 23 Jan 2014 11:42:15 +0000 (UTC)
Received: from mail-pa0-x232.google.com (mail-pa0-x232.google.com
 [IPv6:2607:f8b0:400e:c03::232])
 (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits))
 (No client certificate requested)
 by mx1.freebsd.org (Postfix) with ESMTPS id 74C3013E4
 for <freebsd-questions@freebsd.org>; Thu, 23 Jan 2014 11:42:15 +0000 (UTC)
Received: by mail-pa0-f50.google.com with SMTP id kp14so1745821pab.23
 for <freebsd-questions@freebsd.org>; Thu, 23 Jan 2014 03:42:15 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
 h=mime-version:in-reply-to:references:date:message-id:subject:from:to
 :cc:content-type;
 bh=XGyJmDgGsHCocSnknngnNGXysBChZz9P9H7zPv8k0ro=;
 b=iMQnzwwUOwB94RWJX2MxzSlDcICijvrUMPJYvBkBA4ErIscwYwyea8fDmHwfeGAVWk
 2Ie3LYB/s9ynfj+0BP2mttymRQnD9uFcg/dDwCU/93y2YHd/Q/iMCljPVRj64VmkWWRn
 NozMuRo3B/4+/DKb6Bh/fJEwrqrFPCT4brtQprxTBmW3QBt5s+pD3jypYa4OLPJAXJrE
 DI7JOjMaSt5no61deomGi0OrQgqGW1WmBwkCm6+Ki1LuvfNO9bCVvNsh3EpiSx2DWN8b
 tQ4DPYSe0AHTSw/Uxs9ad8yYNtlm1BNxHvLZ2VFIKHQq5rM9gqxvuyJwHXsqvTcE2Zyz
 7NQg==
MIME-Version: 1.0
X-Received: by 10.68.189.5 with SMTP id ge5mr7619120pbc.42.1390477335150; Thu,
 23 Jan 2014 03:42:15 -0800 (PST)
Received: by 10.68.155.38 with HTTP; Thu, 23 Jan 2014 03:42:15 -0800 (PST)
In-Reply-To: <loom.20140123T122237-344@post.gmane.org>
References: <loom.20140123T122237-344@post.gmane.org>
Date: Thu, 23 Jan 2014 06:42:15 -0500
Message-ID: <CAGBxaX=2MR1-foukoQEc7KVcZxq2ZZR4Py3zhp8cZ1My=W3U2A@mail.gmail.com>
Subject: Re: OT: browser security
From: Aryeh Friedman <aryeh.friedman@gmail.com>
To: jb <jb.1234abcd@gmail.com>
Content-Type: text/plain; charset=ISO-8859-1
X-Content-Filtered-By: Mailman/MimeDel 2.1.17
Cc: FreeBSD Mailing List <freebsd-questions@freebsd.org>
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions/>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 23 Jan 2014 11:42:15 -0000

If you have your running FreeBSD 10 and feeling a little adventurous (i.e.
using brand new features in 10 and ports that are not even yet committed to
the port tree officially) then you might want to create a VM (virtual
machine) on which to run the browser on and then use xhost on the host
machine and you use the DISPLAY variable on the instance to make sure any
weird things that it might do are done to a toss away VM.... unless your a
devote of -virtualization@ you're likely better off using a front-end such
as petitecloud or vmrun.sh (the second is for experts though).   For more
details see the proposed Handbook revisions on virtualization at
http://www.petitecloud.org/handbook.jsp... an other approach but a little
complex to set up and manage is run it as a jail

-- 
Aryeh M. Friedman, Lead Developer, http://www.PetiteCloud.org