How about running untrusted applications?
Posted Apr 24, 2012 11:44 UTC (Tue) by gmatht
In reply to: LFCS 2012: X and Wayland
Parent article: LFCS 2012: X and Wayland
There has been research into secure GUIs which minimize an applications ability to interfere with other applications running on the same screen, with some attempts to retrofit this to UNIX. For example the Plash Powerbox uses preload tricks to transparently replace the GTK file open dialog box with a powerbox that hands back the right to open the file the user has chosen (but none of the users other files which are otherwise inaccessible due to chroot trickery).
Unfortunately X isn't especially well prepared to deal with hostile clients. Potentially a simpler and more modern system could be more secure. It seems to me that if the clients are responsible for drawing their own decorations that would instead make a secure GUI harder. The secure GUIs rely on, for example, windows titles being correct even in the case of a hostile client. This would seem hard to ensure if the API encouraged applications to draw their own decorations.
to post comments)