The Linux Security Circus: On GUI isolation
Submitted by srlinuxx on Sunday 24th of April 2011 01:50:18 AM
Filed under
There certainly is one thing that most Linux users don't realize about their Linux systems... this is the lack of GUI-level isolation, and how it essentially nullifies all the desktop security.
So, let me stress this one more time: if you have two GUI applications, e.g. an OpenOffice Word Processor, and a stupid Tetris game, both of which granted access to your screen (your X server), then there is no isolation between those two apps. Even if they run as different user accounts! Even if they are somehow sandboxed by SELinux or whatever! None, zero, null, nil!
The X server architecture, designed long time ago by some happy hippies who just thought all the people apps are good and non-malicious, simply allows any GUI application to control any other one.
»
-
- Login or register to post comments
Printer-friendly version
PDF version
More in Tux Machines
- Highlights
- Front Page
- Latest Headlines
- Archive
- Recent comments
- All-Time Popular Stories
- Hot Topics
- New Members
Ubuntu MATE 15.04 Vivid Vervet Beta 1 Released, Ubuntu MATE Is Now Official Flavor
Ubuntu 15.04 Vivid Vervet MATE Beta 1 released today with other flavors of Ubuntu like KDE, Xfce, LXDE and GNOME desktop environment. Although, as usual Ubuntu unity has not taken part in Beta release. And first time Ubuntu MATE is an official releaed.
Read at LinuxAndUbuntu |
Content (where original) is available under CC-BY-SA, copyrighted by original author/s.
Recent comments
1 week 3 days ago
1 week 4 days ago
1 week 4 days ago
1 week 4 days ago
1 week 5 days ago
1 week 6 days ago
2 weeks 3 days ago
3 weeks 5 days ago
3 weeks 6 days ago
4 weeks 23 hours ago