Hi all,
Following my previous post regarding how linux has no per app file access or permissions (camera / mic) control unless using flatpak or snap, I would like to suggest updating the “Missing Security Feature” or “Permission Control” section in Linux Overview. I think we should be more explicit regarding the issues and supplement with examples. For example, adding in the fact that:
If user ‘standard’ installed the XYZ application, then the application can read everything ‘standard’ has access to. For example, everything under ‘standard’'s home file, say downloads, documents, pictures, videos and even hidden files like .config, etc, var.
One may say that we should always install trusted apps, but there is a very big difference between knowing an application WON’T access files, mics or other applications on my PC vs CAN’T.
In addition, using snaps, flatpaks or firejail isnt a full solution as some applications dont offer flatpaks or snaps, while firejail increases attack surface. Brave and firefox advice users to stick with their offical repository instead of flatpak / snap, and Librewolf also advice aganist using its flatpak version because it “prevents the browser from using its usual sandbox for process isolation.” Source
I understand that Mac and WIndows also allow any installed apps to access files accessbile by the user that lauched it as destop OSs use per user control. However, I just think that with so many money and effort put into Linux (or Mac and Win), maybe it is worth tackling this issue which is basically a very critical security and privacy loophole in my opinion. But i guess it wont be addressed or mentioned at all, just like for whatever reason firefox doesnt implement per site isolatoin on android for years (no offense). I just believe that maybe people, especially those who started off using phones (with good sandbox and per app file access & permission control), should know about this issue.
Thank you for reading.