Linked by Thom Holwerda on Wed 6th Feb 2013 12:29 UTC, submitted by Anonymous
Gnome "Some GNOME developers are planning to implement an app format that allows developers to provide their Linux programs in distribution-independent files that can be installed as easily as smartphone apps. A sandbox model is supposed to isolate the apps from each other, and from the rest of the system, in a way that goes further than the isolation in current Linux distributions. Various developers worked to conceptualise such "Linux apps" at the GNOME Developer Experience Hackfest, which was held in the run-up to FOSDEM 2013 in Brussels. At the hackfest, the GNOME developers also declared JavaScript as the de-facto standard for GNOME programming." Right, because they haven't alienated enough of their users.
Thread beginning with comment 551652
To read all comments associated with this story, please click here.
Thumbs up!
by netpython on Wed 6th Feb 2013 15:05 UTC
Member since:

Sandboxing is also one of the reasons i prefer Google-chrome-beta besides Mozilla-Firefox for web-browsing.Especially with a Grsecurity hardened-kernel that imposes further restrictions with regard to chroot-jails (sandboxen),preferrably in addition to Apparmor enforced policies.What's overkill? The longer you are productive without having to worry about whatever site to enter or not with what options enabled is a plus.

Reply Score: 3

RE: Thumbs up!
by snowbender on Wed 6th Feb 2013 20:15 in reply to "Thumbs up!"
snowbender Member since:

What you say, is right, no doubt about that.

On the other hand, I think people are making systems way too complex for added security, while just using a bit of common sense when using a computer would already go a very long way.

Any decent OS already provides separation between users and separation between processes. That is one of the core jobs of your OS. Nowadays, people are tempted to run every service on that OS in a separate VM inside another OS. And the other thing is the sandboxing. Of course, if you run something in a sandbox, then that application cannot access your homedir, and you have to explicitly give it permission. What do you think John Doe does when he gets a popup "app x needs access to your homedir"? In my experience a lot of people will click on *anything* if they get the "promise" that they can download something for free.

So, is it safer? Yes... but in my opinion, it's also a bit of overkill. With some common sense, you would already go a long way.

Reply Parent Score: 2