IverCoder@lemm.ee to Linux@lemmy.mlEnglish · 1 year agoIf only more Linux programs followed sandboxing best practices...i.imgur.comexternal-linkmessage-square96fedilinkarrow-up1580arrow-down133
arrow-up1547arrow-down1external-linkIf only more Linux programs followed sandboxing best practices...i.imgur.comIverCoder@lemm.ee to Linux@lemmy.mlEnglish · 1 year agomessage-square96fedilink
minus-squareMonkderZweite@feddit.chlinkfedilinkarrow-up9arrow-down14·edit-21 year agodeleted by creator
minus-squareSuperIce@lemmy.worldlinkfedilinkEnglisharrow-up11·1 year agoEven if I trust the app, it may have security bugs. Still better to have it sandboxed.
minus-squareFedora@lemmy.haigner.melinkfedilinkarrow-up3·1 year agoSoftware supply chain attacks exist, you know?
minus-squareIverCoder@lemm.eeOPlinkfedilinkEnglisharrow-up3·edit-21 year agoWell, no matter how I trust my photo editing app, it has no business accessing my thesis documents. Proper filesystem sandboxing does security properly.
minus-squaremdurell@lemmy.worldlinkfedilinkarrow-up1·1 year agoI would argue this is only for apps you CAN trust. Bad actors gonna act badly.
deleted by creator
Even if I trust the app, it may have security bugs. Still better to have it sandboxed.
Software supply chain attacks exist, you know?
Well, no matter how I trust my photo editing app, it has no business accessing my thesis documents. Proper filesystem sandboxing does security properly.
I would argue this is only for apps you CAN trust. Bad actors gonna act badly.