View Single Post
  #8   (View Single Post)  
Old 25th February 2017
backrow backrow is offline
Real Name: Anthony J. Bentley
Shell Scout
Join Date: Jul 2009
Location: Albuquerque, NM
Posts: 136

Originally Posted by e1-531g View Post
I am using that kind of isolation for web browsers (different user in OpenBSD, combination of different user and low Integrity Level in Windows), but they are exceptions.

If I download video file from Youtube (using youtube-dl) I want to watch them in mpv media player.
If I download code from GitHub (using git), I want to open files via Vim or Geany.
If I download PDF file (using web browser), I want to open it inside Evince.
and so on
But the act of opening a PDF in a PDF viewer is exactly the kind of explicit permission I’m happy with. What I’m arguing against is the ability that youtube-dl, mpv, Git, Vim, Geany, and Evince all have right now: they can read my SSH private keys, my tax documents, my family photos, my emails… and they can access the network, too.
Many thanks to the forum regulars who put time and effort into helping others solve their problems.
Reply With Quote