this post was submitted on 06 Oct 2023
931 points (96.0% liked)

linuxmemes

21263 readers
491 users here now

Hint: :q!

Sister communities:

Community rules (click to expand)

1. Follow the site-wide rules

2. Be civil
  • Understand the difference between a joke and an insult.
  • Do not harrass or attack members of the community for any reason.
  • Leave remarks of "peasantry" to the PCMR community. If you dislike an OS/service/application, attack the thing you dislike, not the individuals who use it. Some people may not have a choice.
  • Bigotry will not be tolerated.
  • These rules are somewhat loosened when the subject is a public figure. Still, do not attack their person or incite harrassment.
    • 3. Post Linux-related content
  • Including Unix and BSD.
  • Non-Linux content is acceptable as long as it makes a reference to Linux. For example, the poorly made mockery of sudo in Windows.
  • No porn. Even if you watch it on a Linux machine.
    • 4. No recent reposts
  • Everybody uses Arch btw, can't quit Vim, and wants to interject for a moment. You can stop now.

    • Please report posts and comments that break these rules!

    founded 1 year ago
    MODERATORS
    poopsmith@lemmy.world
    zephyr@lemmy.world
    rtxn@lemmy.world
    931
    i hate that it's very often like this (sh.itjust.works)
    submitted 1 year ago by nekothegamer@sh.itjust.works to c/linuxmemes@lemmy.world
    241 comments fedilink hide all child comments
     
    you are viewing a single comment's thread
    view the rest of the comments
    [–] baseless_discourse@mander.xyz 1 points 1 year ago (1 children)

    How did this come up in discussion?

    Because permission control is what most people expect on phone application, which is another way linux has great default UX that is similar to what happens on phones.

    Finally, I don't think a mispackaged app is supposed to be able to break out of the application sandbox, unless some bug is exploited.

    Unless you are referring to the fact that some app are packaged with overly-permissive default permissions. But most people can change the default permission, and only grant permissions that makes sense.

    [–] uis@lemmy.world 1 points 1 year ago (1 children)

    Finally, I don't think a mispackaged app is supposed to be able to break out of the application sandbox, unless some bug is exploited.

    At least one of mentioned formats(AppImage) is regular executable. There is no need to break out of sandboxing when maintainer didn't put it in sandbox in the first place.

    Anyway, mainline distros have selinux or apparmor profiles. Sanboxing exists outside of three yet another "universal" package formats.

    But most people can change the default permission, and only grant permissions that makes sense.

    You mean people who package or end users?

    [–] baseless_discourse@mander.xyz 1 points 1 year ago (1 children)

    I mean user can manage permissions to override the default, like apps on other platforms.

    [–] uis@lemmy.world 1 points 1 year ago

    Basically how it is and was before mega-binaries.