Technology

84857 readers

3389 users here now

This is a most excellent place for technology news and articles.

Our Rules

Follow the lemmy.world rules.
Only tech related news or articles.
Be excellent to each other!
Mod approved content bots can post up to 10 articles per day.
Threads asking for personal tech support may be deleted.
Politics threads may be removed.
No memes allowed as posts, OK to post as comments.
Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
Check for duplicates before posting, duplicates may be removed
Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago

MODERATORS

L3s@lemmy.world

enu@lemmy.world

technopagan@lemmy.world

L4s@lemmy.world

L3s@hackingne.ws

336

Valve removes free horror game from Steam after players discover it contains malware that steals your data (www.pcguide.com)

submitted 1 day ago by themachinestops@lemmy.dbzer0.com to c/technology@lemmy.world

54 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] scholar@lemmy.world 86 points 1 day ago (2 children)

Every program ideally should be in a sandbox and if it wants permission to access something it should have to ask for it.

[–] defaultusername@lemmy.dbzer0.com 36 points 1 day ago (2 children)

Kind of like Android or iOS.

Flatpak tries to accomplish this on Desktop, and it works, but isn't as comprehensive as something like Android or iOS.

On the extreme side, there is QubesOS, which runs every app in a dedicated virtual machine, including the networking stack.

[–] BradleyUffner@lemmy.world 2 points 9 hours ago (1 children)

I've never seen a flatpak prompt me for permissions. If it needs something it didn't have it just silently fails for me and I have to guess what permission it needed manually using flatseal. Is that normal or am I setup wrong?

[–] defaultusername@lemmy.dbzer0.com 1 points 8 hours ago

That's normal.

[–] LodeMike@lemmy.today 6 points 1 day ago (2 children)

Flatpak also doesn't ask for permissions. If an app requires a new one does it just add it upon update?

[–] defaultusername@lemmy.dbzer0.com 1 points 1 day ago

I believe so.

[–] hirihit640@sh.itjust.works 1 points 1 day ago* (last edited 1 day ago) (1 children)

I think either Bazaar or GNOME software center does tell you if an app asks for more permissions, I forgot which one though

[–] LodeMike@lemmy.today 1 points 1 day ago

GNOME Software. That's not what I'm concerned about though.

[–] justlemmyin@lemmy.world 1 points 1 day ago (1 children)

Is that what proton does on Linux?

[–] elvith@feddit.org 12 points 1 day ago (1 children)

No, that's just to make Windows programs/games run on Linux. But you can e.g. use the Flatpack version of Steam to Sandbox Steam and its games (https://docs.flatpak.org/en/latest/sandbox-permissions.html)

[–] gandalf_der_12te@discuss.tchncs.de 1 points 1 day ago (1 children)

thanks, i didn't know that! i'll keep it in mind.

[–] elvith@feddit.org 3 points 17 hours ago

Only downside: Initially the creator of a Flatpack defines how it is sandboxed. For Steam it's rather permissive. It's not like on mobile where you get asked for permission for everything potentially dangerous/privacy invading, but rather like the earlier days on mobile where you install a Flatpack and implicitly allow all permissions it wants.

An update might change the permissions or introduce new ones. You can use tools like Flatseal to change the permissions of installed Flatpack apps, but keep in mind that those changes will probably be gone after the next update and can introduce problems.

In the end, sandboxing something like Steam is hard, as you not only need to think about Steam's permissions, but also any game you might run from it...