The Linux Security Circus: On GUI isolation

Posted by tuxchick on Apr 24, 2011 3:13 PM EDT
The Invisible Things Lab's blog; By Joanna Rutkowska
Mail this story
Print this story

So, let me stress this one more time: if you have two GUI applications, e.g. an OpenOffice Word Processor, and a stupid Tetris game, both of which granted access to your screen (your X server), then there is no isolation between those two apps. Even if they run as different user accounts! Even if they are somehow sandboxed by SELinux or whatever! None, zero, null, nil!

Full Story

» Read more about: Story Type: News Story, Security; Groups: Linux

« Return to the newswire homepage

Subject Topic Starter Replies Views Last Post
I wonder what is being done about this tracyanne 40 2,001 May 4, 2011 11:27 AM

You cannot post until you login.