Navigation

The Linux Security Circus: On GUI isolation

Submitted by srlinuxx on Sunday 24th of April 2011 01:50:18 AM Filed under

Linux

Linux

There certainly is one thing that most Linux users don't realize about their Linux systems... this is the lack of GUI-level isolation, and how it essentially nullifies all the desktop security.

So, let me stress this one more time: if you have two GUI applications, e.g. an OpenOffice Word Processor, and a stupid Tetris game, both of which granted access to your screen (your X server), then there is no isolation between those two apps. Even if they run as different user accounts! Even if they are somehow sandboxed by SELinux or whatever! None, zero, null, nil!

The X server architecture, designed long time ago by some happy hippies who just thought all the ~~people~~ apps are good and non-malicious, simply allows any GUI application to control any other one.

»

Latest Stories in Front Page

About Tux Machines

Thursday, 24 Jul 14 - Tux Machines is a community-driven public service/news site.

Tux Machines is proud to be hosted by

Follow the site via RSS/Twitter.

RSS:

Twitter:

Part of Bytes Media

Content (where original) is available under CC-BY-SA, copyrighted by original author/s.

Support Tux Machines

Help Support TM
Wall of Appreciation

Recent comments

Microsoft products on Linux
4 days 3 hours ago
dot org domain
2 weeks 3 days ago
.com is down .org is up
2 weeks 3 days ago
srlinuxx will ALWAYS waddle
2 weeks 5 days ago
On backporting
4 weeks 5 days ago
3.15 has faster Resume
4 weeks 5 days ago
AMD
5 weeks 4 days ago
perhaps one day
5 weeks 4 days ago
Amazing
6 weeks 2 days ago
Congrats :)
6 weeks 3 days ago

Who's online

There are currently 2 users and 138 guests online.

Online users

leethor
Rianne Schestowitz

Favorite Sites

Linux Gizmos

OpenSource.com

Linux Today

LinuxSecurity.com Advisories

Linux.com

Web Upd8

DW Latest Releases

Phoronix

Powered by CentOS 6.5 (GNU/Linux), Varnish, and Drupal