this post was submitted on 26 Jan 2024
134 points (94.1% liked)
Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
54500 readers
379 users here now
⚓ Dedicated to the discussion of digital piracy, including ethical problems and legal advancements.
Rules • Full Version
1. Posts must be related to the discussion of digital piracy
2. Don't request invites, trade, sell, or self-promote
3. Don't request or link to specific pirated titles, including DMs
4. Don't submit low-quality posts, be entitled, or harass others
Loot, Pillage, & Plunder
📜 c/Piracy Wiki (Community Edition):
💰 Please help cover server costs.
Ko-fi | Liberapay |
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
If youre running it under your current user, theoretically anything your user can do (which usually means all your personal files)
I'm not too sure bottle's default security cause I use flatseal so aggressively, but even allowing access to a directory where your games are stored could be a security issue (just for simple malicious things like filling up your drive)
That would be poorly configured permissions. There's very little reason you should let any game run under a users own permissions, especially if you got it from a less than reputable source. Proper permissions would give it only enough access to run, nothing more.
I dont think the workflow is yet streamlined enough to assume a regular user would create a per game-user, that being said I just checked bottle's default permissions and its not horrible, no filesystem access other than the app's.
That being said it still is gonna be vulnerable to x11 keyloggers like most linux software is rn