LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Sponsored link

Vyatta – Linux & Open Source Alternative to Cisco – Advanced Routing, Firewall, VPN, QoS..
Free Download ->

Recent Features

Plugging into GCC

LWN.net Weekly Edition for October 2, 2008

Ubuntu debuts its Upstream Report

openSUSE and the distribution of proprietary software

LPC: What's happening with webcams

Printable page
Weekly edition Kernel Security Distributions Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ

security sweep before 1.0?

security sweep before 1.0?

Posted Apr 16, 2008 19:43 UTC (Wed) by superstoned (subscriber, #33164)
In reply to: security sweep before 1.0? by JoeBuck
Parent article: The making of Wine (Network World) 

Yep. Until now, I've always thought Wine to be too incomplete (yet) to be 
able to run most spyware/addware/etc properly - but those times might be 
gone soon...

(Log in to post comments)

security sweep before 1.0?

Posted Apr 16, 2008 21:39 UTC (Wed) by bronson (subscriber, #4806) [Link] 

Wouldn't running everything in its own bottle largely fix this?

I suppose some thought would have to be put into privs...  don't want it to be like
client-side Java:
- "this application is requesting access to ./alck.foo^.  Grant / Deny?" 
- "This application would like to open a socket to http://secure.example.com:9248  Grant /
Deny?"
It was even worse than Vista!

Would Wine be able to do something like this?  Or is sandboxing / bottling just too difficult
to be worth the dev time?

security sweep before 1.0?

Posted Apr 17, 2008 2:43 UTC (Thu) by JoeBuck (subscriber, #2330) [Link]

If the program in bottle can access the net, it send spam or join a botnet.

Copyright © 2008, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds