Rianne SchestowitzThe Linux Security Circus: On GUI isolation
Submitted by srlinuxx on Sun, 24/04/2011 - 1:50am
Filed under
There certainly is one thing that most Linux users don't realize about their Linux systems... this is the lack of GUI-level isolation, and how it essentially nullifies all the desktop security.
So, let me stress this one more time: if you have two GUI applications, e.g. an OpenOffice Word Processor, and a stupid Tetris game, both of which granted access to your screen (your X server), then there is no isolation between those two apps. Even if they run as different user accounts! Even if they are somehow sandboxed by SELinux or whatever! None, zero, null, nil!
The X server architecture, designed long time ago by some happy hippies who just thought all the people apps are good and non-malicious, simply allows any GUI application to control any other one.
Latest Stories in Front Page
- Mark Shuttleworth calls Ubuntu Touch apps better than Windows
- What Operating Systems Do You Use?
- Ubuntu’s Mir display server may not be default on desktop until 2016
- Zorin OS 8 Makes Learning Linfastic
- NASA’s R2 bot to receive legs via SpaceX
- TARBALLS DUE: GNOME 3.11.92 release candidate + HARD CODE FREEZE
- Peppermint 4 - Turns a netbook into a Chromebook
- Valve fires another shot in its war against Windows gaming dominance
- KDE Ships Second Beta of Applications and Platform 4.13
- GoG dropping a teeny hint about Linux support
- Red Hat's Fedora 21 brimming with security, crypto upgrades
- Which FOSS libraries are the most common on Android platform
- Today in Techrights
- Android-based robot aims for Rubik’s Cube record
- Eurocom Begins Offering Linux High Performance Laptops
- Leftovers: Screenshots
- ODF vs. OOXML: War of the Words
- Red Hat kicks out sponsor, then relents
- Shuttleworth On Google Go, Unity 8, Ubuntu Phone, Etc
- Mozilla and Epic Preview Advanced Web Gaming
Content (where original) is available under CC-BY-SA, copyrighted by original author/s.
Recent comments
18 hours 45 min ago
1 day 1 hour ago
1 day 19 hours ago
2 days 5 hours ago
2 days 9 hours ago
2 days 11 hours ago
2 days 12 hours ago
2 days 19 hours ago
2 days 19 hours ago
3 days 5 hours ago