The Flaws of Flatpak
youtu.be
Flatpak sucks, but it's not entirely hopeless...Website: http://trafotin.comDonate:✨ Patreon: https://patreon.com/trafotin💰 Liberapay: https://liberapay.org...
  • Are you using Flatpaks?
  • Are you trusting Flathub?
  • Do you bother about the sandboxing and security?
  • TheEntity@kbin.social
    0·
    1 year ago

    I expect the Flatpak sandbox to protect my ~/ from getting cluttered by applications, not to protect me from any actually malicious software. The post’s premise seems misguided.

    • Kata1yst@kbin.social
      0·
      1 year ago

      YES. I don’t understand this delusion people keep perpetuating. Flatpak has a MILD form of container sandboxing. For a real security sandbox we have Firejails or Bubble wrap.

      Flatpak is, at it’s core, a software development and distribution packaging format. NOT a security implementation.

        • hornedfiend@sopuli.xyz
          0·
          1 year ago

          I always check my flatpak settings post install before running the app and adjust permissions according to need. I mean it does offer more security to me since it’s user installed, I can granularly update permissions and control more or less where and what is can touch.

          Alternatives to this are SELinux,AppArmour and firejails which are slightly more inconvenient to use.

          To me that is mostly secure,or secure enough.

          Well and then there’s some immutable distros which might help overall.

          Edit: paragraphs