Encrypting user data on per-app basis?
Bastien Nocera
hadess at hadess.net
Tue Sep 3 08:25:22 UTC 2019
On Mon, 2019-09-02 at 21:47 -0500, Ryan Gonzalez wrote:
> Apps already can't access each others data by default, even with --
> filesystem=home.
Flatpak bind mounts a tmpfs mount on top of ~/.var/app and then mounts
the app's directory in ~/.var/app/<app id>/
See:
https://github.com/flatpak/flatpak/blob/master/common/flatpak-context.c#L2048
This doesn't stop having per-app on-disk encryption from being a good
idea though. The main problem being how, as Alex mentioned.
More information about the Flatpak
mailing list