View Single Post
  #8   (View Single Post)  
Old 25th February 2017
backrow backrow is offline
Real Name: Anthony J. Bentley
Shell Scout
 
Join Date: Jul 2009
Location: Albuquerque, NM
Posts: 136
Default

Quote:
Originally Posted by e1-531g View Post
I am using that kind of isolation for web browsers (different user in OpenBSD, combination of different user and low Integrity Level in Windows), but they are exceptions.

If I download video file from Youtube (using youtube-dl) I want to watch them in mpv media player.
If I download code from GitHub (using git), I want to open files via Vim or Geany.
If I download PDF file (using web browser), I want to open it inside Evince.
and so on
But the act of opening a PDF in a PDF viewer is exactly the kind of explicit permission I’m happy with. What I’m arguing against is the ability that youtube-dl, mpv, Git, Vim, Geany, and Evince all have right now: they can read my SSH private keys, my tax documents, my family photos, my emails… and they can access the network, too.
__________________
Many thanks to the forum regulars who put time and effort into helping others solve their problems.
Reply With Quote