this post was submitted on 06 Jul 2024
283 points (94.6% liked)

Privacy

31876 readers
567 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 21 points 4 months ago (3 children)

The real problem is that the security model for apps on mobile is much better than that for apps on desktop. Desktop apps should all have private storage that no other non-root app can access. And while we're at it, they should have to ask permission before activating the mic or camera.

[–] [email protected] 11 points 4 months ago* (last edited 4 months ago) (2 children)

macOS has nailed it*, even though it’s still not as good as iOS or Android, but leagues and bounds better than Windows and especially Linux.

ETC: *sandboxing/permission system

[–] [email protected] 4 points 4 months ago (1 children)

What's wrong with the Flatpak permissions system on Linux?

[–] [email protected] 2 points 4 months ago

It’s a joke. Apps have defined permissions already allowed on install and some of them have too many things set to allow like home or host access. Also, changing any permission requires restarting the app. It’s heading in the right direction, but it has a looooong way to go to catch up with macOS, let alone Android and iOS.

[–] [email protected] 2 points 4 months ago (1 children)

What does Windows do? Genuine question, I've not used it since the 7 days. Regarding Linux, that's true for stuff installed through regular package managers and whatnot, but Flatpak is pushing a more sandboxed and permission oriented system, akin to Android.

[–] [email protected] 2 points 4 months ago

You have granular control over universal windows apps (ie windows 8+ apps) and one global lock over all desktop apps (non uwp), and one global lock over everything. It's pretty solid considering how little control Microsoft has and it's wonderful fetish for compatibility.

Tldr basically same as Linux, except app distribution in Linux was bad enough for so long that more stuff is in the new restricted format while windows still has tons of things which will never go away and aren't in the sandbox. I think not finding a way to sandbox all desktop apps was a mistake.

[–] [email protected] 3 points 4 months ago

Firejail and bwrap. Flatpaks. There are already ways to do this, but I only know of one distro that separates apps by default like Android does (separate user per app), which is the brand new "EasyOS".

[–] [email protected] 3 points 4 months ago

They do sort of with Flatpak