Some enterprises may indeed find that enabling site isolation is worth the trade-offs (memory usage seems to be the main one on Chrome's implemenation). Our current goal is to make sure enterprise users retain the same feature set with the next ESR and that we deliver a capability that allows easy integration of new policies and third party management tools. We'll be reaching out to enterprise users to collect feedback that should help prioritize our next features, right now it's it's pretty hard to assess how critical stronger security isolation is when compared to customization features we're considering in the medium term like the ability to disable printing.
On Fri, Jan 5, 2018 at 7:09 PM, Gijs Kruitbosch <gijskruitbo...@gmail.com> wrote: > On 04/01/2018 18:06, Tom Ritter wrote: > >> I am curious what Enterprise users are asking for. I'd like to >> think/hope that a primary concern of enterprise is "Security" (or the >> separate topic of Privacy); but I'm not certain it is. >> >> In particular, I am curious if enterprise users would be interested in >> flipping preferences that would provide stronger security isolation at >> the cost of more resources (like process/memory). This is basically >> what Chrome is providing with command-line flags for site isolation. A >> company can decide that domains of their choosing get allocated into >> per-origin processes, at the potential cost of a bunch of additional >> processes. >> > > Yes, in fact this (process-per-site) has specifically already come up on > the enterprise list in the last few days. > > ~ Gijs > > >> -tom >> >> On Thu, Dec 21, 2017 at 10:09 AM, Mike Kaply <mka...@mozilla.com> wrote: >> >>> We currently do not plan to allow arbitrary preferences, but if certain >>> preferences are important, we can add policies for them. >>> >>> We could also add policies that set groups of preferences for specific >>> purposes. >>> >>> Mike >>> >>> On Thu, Dec 21, 2017 at 10:03 AM, Luke Crouch <lcro...@mozilla.com> >>> wrote: >>> >>> On Wednesday, December 20, 2017 at 9:42:50 AM UTC-6, Sylvestre Ledru >>>> wrote: >>>> >>>>> First, as Dave Camp mentioned during the Firefox All Hands, we are >>>>> >>>> started some developments to improve >>>> >>>>> our support for enterprise users. >>>>> More information can be found on the wiki: https://wiki.mozilla.org/ >>>>> >>>> Firefox/EnterprisePolicies >>>> >>>> The first example configuration.json I saw on the page only shows some >>>> custom policy configs - e.g., bookmarks_on_toolbar, allow_popups_from, >>>> etc. >>>> >>>> Will the policy config allow admins to set other/any about:config prefs >>>> to >>>> custom values? >>>> >>>> I'm thinking specifically it would be cool to let Enterprise+InfoSec >>>> admins set some security + privacy about:config prefs to more hardened >>>> defaults. >>>> _______________________________________________ >>>> dev-platform mailing list >>>> dev-platform@lists.mozilla.org >>>> https://lists.mozilla.org/listinfo/dev-platform >>>> >>>> _______________________________________________ >>> dev-platform mailing list >>> dev-platform@lists.mozilla.org >>> https://lists.mozilla.org/listinfo/dev-platform >>> >> > _______________________________________________ > dev-platform mailing list > dev-platform@lists.mozilla.org > https://lists.mozilla.org/listinfo/dev-platform > _______________________________________________ dev-platform mailing list dev-platform@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-platform
