So, I’ve been thinking about this: The default behavior for sudo is that no visual pw feedback is shown, so it should be possible for an application with access to wayland display to spawn an invisible window that steals focus and sniffs the password and the user would only notice it after they press enter and nothing happens. I assume this is only really an issue potentially if the compositor leaks window metadata such as the title?
I thought the point was so no one can see how long your password is.
Are you aware of Linux | Madaidan's Insecurities ?
That seems like something possible on X11, not Wayland. Wayland doesn’t allow all windows to capture input.
Yeah (I’m thinking about sandboxed graphical applications)
They cannot capture input from other windows, but new windows can still steal focus without the user noticing
It depends on the compositor, I believe. It’s not quite a given.