Navigation

Language Selection

Search

The Linux Security Circus: On GUI isolation

Submitted by srlinuxx on Sunday 24th of April 2011 01:50:18 AM Filed under

Linux

There certainly is one thing that most Linux users don't realize about their Linux systems... this is the lack of GUI-level isolation, and how it essentially nullifies all the desktop security.

So, let me stress this one more time: if you have two GUI applications, e.g. an OpenOffice Word Processor, and a stupid Tetris game, both of which granted access to your screen (your X server), then there is no isolation between those two apps. Even if they run as different user accounts! Even if they are somehow sandboxed by SELinux or whatever! None, zero, null, nil!

The X server architecture, designed long time ago by some happy hippies who just thought all the ~~people~~ apps are good and non-malicious, simply allows any GUI application to control any other one.

rest here

More in Tux Machines

Debian-Based Robolinux 8.6 Adds Over 275 Important Security and Software Updates

The developer of the Debian-based Robolinux computer operating system announced the release of the sixth maintenance update to the Robolinux 8 LTS "Raptor" series of his GNU/Linux distribution.

Linux Kernel 4.8 Lands October 2 as Linus Torvalds Outs Last Release Candidate

It's still Sunday in U.S. so Linus Torvalds has just published his weekly announcement to inform us all about the availability of the eighth and last RC (Release Candidate) development snapshot of the upcoming Linux 4.8 kernel.

Desktop virtualisation kit-calculator goes open source

The tool has gone through a number of iterations over the years, extending its capabilities to assess the infrastructure requirements of ever-more virtual desktops along the way while also keeping up with changes to VMware's Horizon and Citrix's XenDesktop. But Leibovici says he's now sufficiently busy that “Unfortunately I find myself without time to maintain the VDI calculator, therefore I decided that the best outcome would be to open-source the app and let the community drive maintenance and innovation.” Hence its publication under an Apache 2.0 licence here on GitHub.

LXQt 0.11.0 Desktop Environment Arrives After Almost One Year of Development

After being in development for the past eleven months, the next major release of the lightweight, Qt-based LXQt desktop environment has been officially released and it's available for download.

Latest News

digiKam 5.2.0 Linux RAW Image Editor Introduces a New Red Eyes Tool, Bug Fixes

The digiKam developers were proud to announce the release of the second maintenance update to the digiKam 5 latest stable series of the free and open source RAW image editor for GNU/Linux operating systems.

wattOS 10 Microwatt Edition Comes with Less of Everything, Based on Ubuntu 16.04

After releasing the LXDE edition of wattOS 10 at the beginning of the month, developer Ronald Ropp now announced the availability of the Microwatt Edition, which includes less of everything when compared to its bigger brother.

How to throw a tarball over the wall

It costs a lot of money to open source a mature piece of commercial software, even if all you are doing is "throwing a tarball over the wall." That's why companies abandoning software they no longer care about so rarely make it open source, and those abandoning open source projects rarely move them to new homes that benefit others. If all you have thought about is the eventual outcome, you may be surprised how expensive it is to get there.

Syndication & Social Media

Follow the site via RSS/Twitter.

Full RSS:

RSS feeds for particular topics are also available

Twitter:

Content (where original) is available under CC-BY-SA, copyrighted by original author/s.

Tux Machines is proud to be hosted by

Support Tux Machines

Help Support TM
Wall of Appreciation

Linux Gizmos

Linux Today

LinuxSecurity.com Advisories

More on Tux Machines: About ● Gallery ● Forum ● Blogs ● Search ● News ● RSS Feed

Part of Bytes Media ● Sister sites below.

Linux.com

Web Upd8

DW Latest Releases

Phoronix

Content available under CC-BY-SA