XDC2012: Graphics stack security

Posted Sep 27, 2012 22:18 UTC (Thu) by nix (subscriber, #2304)
In reply to: XDC2012: Graphics stack security by dgm
Parent article: XDC2012: Graphics stack security

Maybe, but Martin is right that security has to be on by default, not off, at least for the most extreme stuff like keystroke monitoring or overpainting. I want selfspy to connect to the RECORD extension and record my keystrokes, but if anything else tries to do it I damn well want to refuse it. Right now, I can't.

XDC2012: Graphics stack security

Posted Sep 28, 2012 10:08 UTC (Fri) by dgm (subscriber, #49227) [Link] (1 responses)

> Right now, I can't.

And that's the point of my argument. Security has to be _possible_, but not _mandated_. With X11, right now, it's not possible. That is another way in which Wayland is an improvement over what we have right now.

That doesn't mean, though, that many more steps in that direction are equally as good. We should be careful to not overshoot.

XDC2012: Graphics stack security

Posted Oct 1, 2012 4:11 UTC (Mon) by raven667 (subscriber, #5198) [Link]

> Security has to be _possible_, but not _mandated_.

That is a very situational judgement on a technology by technology and setting by setting basis. There are often ways to organize things more securely without being a burden for the user.