> Removing support for dead formats is generally a very good idea, particularly ... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

photonbeam 7 months ago | parent | context | favorite | on: Chrome Removing Theora Support

> Removing support for dead formats is generally a very good idea, particularly in a web browser, because it reduces the attack surface;

This seems unfortunate, surely they could sufficiently sandbox the decoder

ReactiveJelly 7 months ago [–]

They do, but it's defense in depth

account42 7 months ago | [–]

Yet websites can run arbitrary JS?

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact