Arbitrary code execution breaking sandboxes in KDE Plasma

30 points by ecksdee


david_chisnall

I really wish the Capsicum for Linux effort hadn't been killed by NIH. It's a far better model for sandboxing desktop applications (launcher grants them a set of initial capabilities [file descriptors] based on their metadata and they can't access anything else, powerboxes provide capabilities for opening and saving other things) than the pile of things that are used in Linux to try to achieve the same thing.