Hardening browser

[whistlez-ml]

Hi,
in the following message:
https://marc.info/?l=openbsd-misc&m=158110613210895&w=2
Theo discourages to use unveil instead of chroot.
I asked if he suggests the same for the browser but he asked that chroot
is onlye for *root*.
Then what should I do to hardening the most exposed piece of code that
we use everyday ?
Now I'm using unveil+chrome...
Thank you.