|
|
|
|
|
|
by TheDong
2817 days ago
|
|
|
"sandbox" is an ill defined term, but what flatpak provides fits it perfectly well. A sandbox is an environment where capabilities can be restricted in a set of ways. The javascript sandbox lets you manipulate the website and make network requests, but not access arbitrary files. The flatpak sandbox is configured per-app and can prevent all fs access, all file io (with seccomp), all networking, etc. The article is simply pointing out that most popular applications do not use the sandbox features well. That doesn't mean flatpak does not have the sandbox they claim to, merely that it does not mesh well with many popular apps currently. I still see nothing that merits the word "lie". |
|
|