Groups | Search | Server Info | Login | Register
Groups > comp.os.linux.misc > #70504
| From | Richard Kettlewell <invalid@invalid.invalid> |
|---|---|
| Newsgroups | comp.os.linux.misc |
| Subject | Re: Artix Linux and Xlibre |
| Date | 2025-08-06 21:27 +0100 |
| Organization | terraraq NNTP server |
| Message-ID | <wwvv7n08abe.fsf@LkoBDZeT.terraraq.uk> (permalink) |
| References | (10 earlier) <106olee$1r0v9$1@dont-email.me> <mfa462FihkaU3@mid.individual.net> <106v28o$3889m$1@dont-email.me> <20250806092812.00002de9@gmail.com> <1070c1u$3je9b$1@dont-email.me> |
Rich <rich@example.invalid> writes: > They partially have a point. The X11 protocol is from the era of most > isolated systems on local in building networks without general internet > connectivity. Under X, any program can "screen shot" any other window, > and/or listen in to the keystrokes being fed to the window with > keyboard focus. > > Looked at in total isolation, this is a big security issue. Some > nefarious program could be spying on you right now, and you'd never > even know. I know nothing about Wayland’s client isolation, but there is a general point to be made about this claim: > But what they fail to then consider is the simple fact that if you have > a nefarious program running on your personal computer that is being used > by you alone, well, then, just like locking the barn door *after* the > horse has escaped, the game is effectively lost at that point. By that standard the game was lost decades ago and there’s no evidence available yet that it can be won. As a civilization, we’ve not yet figured out how to ensure that the real computers that are actually deployed run only non-malicious applications that contain no vulnerabilities. Specific environments can go a long way towards that goal but in general-purpose computing, the empirical outcome is that it’s just not that simple. One part of the response to this is to seek new ways to isolate pieces of code from one another. Some of the outcomes are application-specific, e.g. OpenSSH privsep; others are system-wide (we’ve talked about a number of isolation features available in Linux quite recently in the systemd discussion). Client isolation in display services sounds like it fits the pattern. This doesn’t mean that there’s no effort put into other strategies; indeed, there’s a lot. There have been multiple lines of attack underway for many years to reduce the level of vulnerabilities in applications: new languages that are less vulnerability-prone than existing ones, improvements to existing toolchains, operating systems and CPUs to frustrate vulnerabilities in the absence of a language change, etc. -- https://www.greenend.org.uk/rjk/
Back to comp.os.linux.misc | Previous | Next — Previous in thread | Next in thread | Find similar
Re: Artix Linux and Xlibre Nuno Silva <nunojsilva@invalid.invalid> - 2025-07-29 22:14 +0100
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-07-29 22:55 +0000
Re: Artix Linux and Xlibre Nuno Silva <nunojsilva@invalid.invalid> - 2025-07-30 09:33 +0100
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-07-30 21:19 +0000
Re: Artix Linux and Xlibre Nuno Silva <nunojsilva@invalid.invalid> - 2025-07-30 23:40 +0100
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-07-30 23:32 +0000
Re: Artix Linux and Xlibre Nuno Silva <nunojsilva@invalid.invalid> - 2025-07-31 10:30 +0100
Re: Artix Linux and Xlibre Rich <rich@example.invalid> - 2025-07-31 17:01 +0000
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-07-31 22:44 +0000
Re: Artix Linux and Xlibre not@telling.you.invalid (Computer Nerd Kev) - 2025-08-02 09:30 +1000
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-08-01 23:50 +0000
Re: Artix Linux and Xlibre Nuno Silva <nunojsilva@invalid.invalid> - 2025-08-02 10:03 +0100
Re: Artix Linux and Xlibre Richard Kettlewell <invalid@invalid.invalid> - 2025-08-02 13:36 +0100
Re: Artix Linux and Xlibre The Natural Philosopher <tnp@invalid.invalid> - 2025-08-02 14:59 +0100
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-08-02 23:59 +0000
Re: Artix Linux and Xlibre Richard Kettlewell <invalid@invalid.invalid> - 2025-08-03 12:13 +0100
Re: Artix Linux and Xlibre The Natural Philosopher <tnp@invalid.invalid> - 2025-08-03 12:58 +0100
Re: Artix Linux and Xlibre Richard Kettlewell <invalid@invalid.invalid> - 2025-08-03 16:34 +0100
Re: Artix Linux and Xlibre The Natural Philosopher <tnp@invalid.invalid> - 2025-08-03 17:08 +0100
Re: Artix Linux and Xlibre rbowman <bowman@montana.com> - 2025-08-03 18:20 +0000
Re: Artix Linux and Xlibre not@telling.you.invalid (Computer Nerd Kev) - 2025-08-04 09:35 +1000
Re: Artix Linux and Xlibre Richard Kettlewell <invalid@invalid.invalid> - 2025-08-04 16:10 +0100
Re: Artix Linux and Xlibre Bobbie Sellers <bliss-sf4ever@dslextreme.com> - 2025-08-03 13:38 -0700
Re: Artix Linux and Xlibre The Natural Philosopher <tnp@invalid.invalid> - 2025-08-03 22:47 +0100
Re: Artix Linux and Xlibre rbowman <bowman@montana.com> - 2025-08-03 21:55 +0000
Re: Artix Linux and Xlibre Nuno Silva <nunojsilva@invalid.invalid> - 2025-08-06 09:03 +0100
Re: Artix Linux and Xlibre John Ames <commodorejohn@gmail.com> - 2025-08-06 09:28 -0700
Re: Artix Linux and Xlibre Rich <rich@example.invalid> - 2025-08-06 19:56 +0000
Re: Artix Linux and Xlibre Richard Kettlewell <invalid@invalid.invalid> - 2025-08-06 21:27 +0100
Re: Artix Linux and Xlibre Nuno Silva <nunojsilva@invalid.invalid> - 2025-08-06 22:46 +0100
Re: Artix Linux and Xlibre Richard Kettlewell <invalid@invalid.invalid> - 2025-08-07 17:46 +0100
Re: Artix Linux and Xlibre John Ames <commodorejohn@gmail.com> - 2025-08-06 13:36 -0700
Re: Artix Linux and Xlibre Stéphane CARPENTIER <sc@fiat-linux.fr> - 2025-08-09 12:56 +0000
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-08-07 03:28 +0000
Re: Artix Linux and Xlibre Stéphane CARPENTIER <sc@fiat-linux.fr> - 2025-08-09 12:48 +0000
Re: Artix Linux and Xlibre John Ames <commodorejohn@gmail.com> - 2025-08-11 11:26 -0700
Re: Artix Linux and Xlibre rbowman <bowman@montana.com> - 2025-08-11 21:06 +0000
Re: Artix Linux and Xlibre John Ames <commodorejohn@gmail.com> - 2025-08-11 15:19 -0700
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-08-11 22:27 +0000
Re: Artix Linux and Xlibre John Ames <commodorejohn@gmail.com> - 2025-08-11 15:54 -0700
Re: Artix Linux and Xlibre rbowman <bowman@montana.com> - 2025-08-12 02:28 +0000
Re: Artix Linux and Xlibre rbowman <bowman@montana.com> - 2025-08-12 02:27 +0000
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-08-11 22:18 +0000
Re: Artix Linux and Xlibre John Ames <commodorejohn@gmail.com> - 2025-08-11 15:49 -0700
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-08-11 23:27 +0000
Re: Artix Linux and Xlibre John Ames <commodorejohn@gmail.com> - 2025-08-12 08:37 -0700
Re: Artix Linux and Xlibre rbowman <bowman@montana.com> - 2025-08-12 20:15 +0000
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-08-12 23:29 +0000
Re: Artix Linux and Xlibre John Ames <commodorejohn@gmail.com> - 2025-08-13 09:05 -0700
Re: Artix Linux and Xlibre Richard Kettlewell <invalid@invalid.invalid> - 2025-08-13 19:13 +0100
Re: Artix Linux and Xlibre Marc Haber <mh+usenetspam1118@zugschl.us> - 2025-08-13 21:32 +0200
Re: Artix Linux and Xlibre Richard Kettlewell <invalid@invalid.invalid> - 2025-08-13 21:29 +0100
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-08-14 00:49 +0000
Re: Artix Linux and Xlibre rbowman <bowman@montana.com> - 2025-08-14 01:12 +0000
Re: Artix Linux and Xlibre Nuno Silva <nunojsilva@invalid.invalid> - 2025-08-14 00:16 +0100
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-08-14 00:46 +0000
Re: Artix Linux and Xlibre Stéphane CARPENTIER <sc@fiat-linux.fr> - 2025-08-09 12:46 +0000
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-08-04 00:21 +0000
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-08-04 00:20 +0000
Re: Artix Linux and Xlibre rbowman <bowman@montana.com> - 2025-08-04 04:24 +0000
Re: Artix Linux and Xlibre Nuno Silva <nunojsilva@invalid.invalid> - 2025-08-06 09:05 +0100
Re: Artix Linux and Xlibre rbowman <bowman@montana.com> - 2025-08-06 20:24 +0000
Re: Artix Linux and Xlibre Richard Kettlewell <invalid@invalid.invalid> - 2025-08-04 16:23 +0100
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-08-05 05:54 +0000
Re: Artix Linux and Xlibre Richard Kettlewell <invalid@invalid.invalid> - 2025-08-05 08:35 +0100
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-08-05 07:48 +0000
Wayland (was: Re: Artix Linux and Xlibre) vallor <vallor@cultnix.org> - 2025-08-06 02:28 +0000
Re: Wayland (was: Re: Artix Linux and Xlibre) Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-08-06 04:22 +0000
Re: Wayland Nuno Silva <nunojsilva@invalid.invalid> - 2025-08-06 09:10 +0100
Re: Wayland Rich <rich@example.invalid> - 2025-08-06 14:42 +0000
Re: Artix Linux and Xlibre The Natural Philosopher <tnp@invalid.invalid> - 2025-08-05 11:04 +0100
Re: Artix Linux and Xlibre rbowman <bowman@montana.com> - 2025-08-05 20:02 +0000
Re: Artix Linux and Xlibre John Ames <commodorejohn@gmail.com> - 2025-08-05 08:29 -0700
Re: Artix Linux and Xlibre Rich <rich@example.invalid> - 2025-08-05 18:19 +0000
Re: Artix Linux and Xlibre The Natural Philosopher <tnp@invalid.invalid> - 2025-08-05 19:59 +0100
Re: Artix Linux and Xlibre John Ames <commodorejohn@gmail.com> - 2025-08-05 12:02 -0700
Re: Artix Linux and Xlibre The Natural Philosopher <tnp@invalid.invalid> - 2025-08-05 20:10 +0100
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-08-06 04:24 +0000
Re: Artix Linux and Xlibre Bobbie Sellers <bliss-sf4ever@dslextreme.com> - 2025-08-05 21:46 -0700
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-08-06 06:33 +0000
Re: Artix Linux and Xlibre not@telling.you.invalid (Computer Nerd Kev) - 2025-08-06 09:13 +1000
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-08-06 04:23 +0000
Re: Artix Linux and Xlibre Nuno Silva <nunojsilva@invalid.invalid> - 2025-08-06 09:18 +0100
Re: Artix Linux and Xlibre John Ames <commodorejohn@gmail.com> - 2025-08-06 09:01 -0700
Re: Artix Linux and Xlibre Rich <rich@example.invalid> - 2025-08-06 22:11 +0000
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-08-07 03:25 +0000
Re: Artix Linux and Xlibre John Ames <commodorejohn@gmail.com> - 2025-08-07 14:14 -0700
Re: Artix Linux and Xlibre Richard Kettlewell <invalid@invalid.invalid> - 2025-08-07 23:14 +0100
Re: Artix Linux and Xlibre John Ames <commodorejohn@gmail.com> - 2025-08-07 15:56 -0700
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-08-08 04:18 +0000
Re: Artix Linux and Xlibre vallor <vallor@cultnix.org> - 2025-08-08 06:00 +0000
Re: Artix Linux and Xlibre John Ames <commodorejohn@gmail.com> - 2025-08-08 08:49 -0700
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-08-08 21:25 +0000
Re: Artix Linux and Xlibre John Ames <commodorejohn@gmail.com> - 2025-08-08 15:38 -0700
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-08-09 00:05 +0000
Re: Artix Linux and Xlibre John Ames <commodorejohn@gmail.com> - 2025-08-11 10:24 -0700
Re: Artix Linux and Xlibre The Natural Philosopher <tnp@invalid.invalid> - 2025-08-09 10:58 +0100
Re: Artix Linux and Xlibre Charlie Gibbs <cgibbs@kltpzyxm.invalid> - 2025-08-09 17:10 +0000
Re: Artix Linux and Xlibre rbowman <bowman@montana.com> - 2025-08-09 22:33 +0000
Re: Artix Linux and Xlibre rbowman <bowman@montana.com> - 2025-08-09 22:26 +0000
Re: Artix Linux and Xlibre The Natural Philosopher <tnp@invalid.invalid> - 2025-08-10 10:15 +0100
Re: Artix Linux and Xlibre Chris Ahlstrom <OFeem1987@teleworm.us> - 2025-08-10 09:03 -0400
Re: Artix Linux and Xlibre The Natural Philosopher <tnp@invalid.invalid> - 2025-08-10 14:24 +0100
Re: Artix Linux and Xlibre Bobbie Sellers <bliss-sf4ever@dslextreme.com> - 2025-08-10 07:29 -0700
Re: Artix Linux and Xlibre rbowman <bowman@montana.com> - 2025-08-10 20:06 +0000
Re: Artix Linux and Xlibre The Natural Philosopher <tnp@invalid.invalid> - 2025-08-11 11:56 +0100
Re: Artix Linux and Xlibre rbowman <bowman@montana.com> - 2025-08-11 21:12 +0000
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-08-11 01:00 +0000
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-08-09 22:39 +0000
Re: Artix Linux and Xlibre Richard Kettlewell <invalid@invalid.invalid> - 2025-08-08 08:42 +0100
Re: Artix Linux and Xlibre Rich <rich@example.invalid> - 2025-08-08 16:02 +0000
Re: Artix Linux and Xlibre not@telling.you.invalid (Computer Nerd Kev) - 2025-08-08 09:00 +1000
Re: Artix Linux and Xlibre Stéphane CARPENTIER <sc@fiat-linux.fr> - 2025-08-09 13:05 +0000
Re: Artix Linux and Xlibre Nuno Silva <nunojsilva@invalid.invalid> - 2025-08-06 09:15 +0100
Re: Artix Linux and Xlibre Rich <rich@example.invalid> - 2025-08-06 14:46 +0000
Re: Artix Linux and Xlibre John Ames <commodorejohn@gmail.com> - 2025-08-05 08:26 -0700
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-08-03 00:06 +0000
Re: Artix Linux and Xlibre The Natural Philosopher <tnp@invalid.invalid> - 2025-07-30 11:42 +0100
Re: Artix Linux and Xlibre rbowman <bowman@montana.com> - 2025-07-30 19:39 +0000
Re: Artix Linux and Xlibre The Natural Philosopher <tnp@invalid.invalid> - 2025-07-31 01:06 +0100
Re: Artix Linux and Xlibre Lawrence D'Oliveiro <ldo@nz.invalid> - 2025-07-30 21:23 +0000
csiph-web