Ghost Trap is a hardend distribution of the GPL Ghostscript PDL interpreter secured and sandboxed using Google Chrome sandbox technology. It's used to securely convert PostScript and PDF files from untrusted sources into images.
The -dSAFER option as documented here ( http://www.ghostscript.com/doc/current/Use.htm ) is not enabled by default. Even though we're in a sandbox it would be a good idea to change this seeing security is our focus. The best option would be to do this in the sandbox code (gstrapped.cpp) by appending it to nargv if it's not explicitly set.
codedance
commented
11 years ago
The -dSAFER option as documented here ( http://www.ghostscript.com/doc/current/Use.htm ) is not enabled by default. Even though we're in a sandbox it would be a good idea to change this seeing security is our focus. The best option would be to do this in the sandbox code (gstrapped.cpp) by appending it to nargv if it's not explicitly set.