<div dir="ltr">we need to understand the parties here<div><br></div><div>* the app developer</div><div>* flatpak</div><div>* the user (you)</div><div><br></div><div>you as a user gets an app that runs inside a sandbox with controlled access to selected facilities (directories, hardware, portals, ..etc.)</div><div>when you install the app, you see those permissions (you should be familiar with this if you use a smart phone)</div><div><br></div><div>it's your machine and your choice as a user</div><div>sometimes you might override that limit an app because you does not trust the app</div><div>or sometimes you expand permissions </div><div><br></div><div>for example</div><div>here I want to use a filemanager to only manage my documents "-nofilesystem=host --filesystem=/home/alsadi/Documents"</div><div><br></div><div><a href="https://twitter.com/muayyadalsadi/status/870986338111299584">https://twitter.com/muayyadalsadi/status/870986338111299584</a><br></div><div><br></div><div>since I did the override, I'm aware of it and I won't put a sensitive file there.</div><div><br></div><div>I don't want to start a holy war but snap portability and sandboxing is a joke.</div><div>1. people was able to impersonate many famous apps and inject bitcoin mining tools (because snap is not a desktop session, it can install daemons)</div><div>2. if it's on snap does not mean it work everywhere (there are cases for snaps that works for ubuntu but not mint, despite being a derivative)</div><div>3. snap can load custom kernel modules! hello!</div><div><br></div><div><br></div><div><br></div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Fri, Feb 28, 2020 at 10:33 PM Winnie Poon <<a href="mailto:winniepoon_home@hotmail.com">winniepoon_home@hotmail.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"> <div dir="ltr"> <div style="font-family:Calibri,Helvetica,sans-serif;font-size:12pt;color:rgb(0,0,0)"> Hi all,</div> <div style="font-family:Calibri,Helvetica,sans-serif;font-size:12pt;color:rgb(0,0,0)"> <br> </div> <div style="font-family:Calibri,Helvetica,sans-serif;font-size:12pt;color:rgb(0,0,0)"> i must be missing something so please help to clear my confusion.</div> <div style="font-family:Calibri,Helvetica,sans-serif;font-size:12pt;color:rgb(0,0,0)"> <br> </div> <div style="font-family:Calibri,Helvetica,sans-serif;font-size:12pt;color:rgb(0,0,0)"> What's the point of packaging an app as flatpak app with restricted permissions, when users can easily open up any permissions by doing :<br> <br> flatpak run --filesystem=host ....<br> <br> or use override to permanently override an app's permissions.</div> <div style="font-family:Calibri,Helvetica,sans-serif;font-size:12pt;color:rgb(0,0,0)"> <br> </div> <div style="font-family:Calibri,Helvetica,sans-serif;font-size:12pt;color:rgb(0,0,0)"> So we package an app in a nice bubble wrap, give it to user and user can remove the whole bubble wrap? or can the user?</div> <div style="font-family:Calibri,Helvetica,sans-serif;font-size:12pt;color:rgb(0,0,0)"> <br> </div> <div style="font-family:Calibri,Helvetica,sans-serif;font-size:12pt;color:rgb(0,0,0)"> For snap, seems like they have something called a "developer mode", does flatpak has something like that so a "regular" user cannot easily override the permissions?<br> </div> <div style="font-family:Calibri,Helvetica,sans-serif;font-size:12pt;color:rgb(0,0,0)"> <pre>--------------------------<br>Developer mode<br>Sometimes it is helpful when developing a snap to not have to worry about the security sandbox in order to <br>focus on developing the snap. To support this, snappy allows installing the snap in developer mode <br>which puts the security policy in complain mode (where violations against security policy are logged, <br>but permitted). <br>For example:<span></span>sudo snap install --devmode <snap></pre> -------------------------------------------<br> </div> <div style="font-family:Calibri,Helvetica,sans-serif;font-size:12pt;color:rgb(0,0,0)"> <br> </div> <div style="font-family:Calibri,Helvetica,sans-serif;font-size:12pt;color:rgb(0,0,0)"> Thanks for your time again!</div> <div style="font-family:Calibri,Helvetica,sans-serif;font-size:12pt;color:rgb(0,0,0)"> <br> </div> <div style="font-family:Calibri,Helvetica,sans-serif;font-size:12pt;color:rgb(0,0,0)"> Regards,</div> <div style="font-family:Calibri,Helvetica,sans-serif;font-size:12pt;color:rgb(0,0,0)"> Winnie<br> </div> </div> _______________________________________________<br> Flatpak mailing list<br> <a href="mailto:Flatpak@lists.freedesktop.org" target="_blank">Flatpak@lists.freedesktop.org</a><br> <a href="https://lists.freedesktop.org/mailman/listinfo/flatpak" rel="noreferrer" target="_blank">https://lists.freedesktop.org/mailman/listinfo/flatpak</a><br> </blockquote></div>