GNOME Continues Working On systemd-homed Integration, Better Web Browser

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts
  • phoronix
    Administrator
    • Jan 2007
    • 67377

    GNOME Continues Working On systemd-homed Integration, Better Web Browser

    Phoronix: GNOME Continues Working On systemd-homed Integration, Better Web Browser

    This Week in GNOME is out with its latest issue that details the latest improvements being made thanks to their Sovereign Tech Fund (STF) funding along with other development efforts squeezing into next month's GNOME 47 desktop release...

    Phoronix, Linux Hardware Reviews, Linux hardware benchmarks, Linux server benchmarks, Linux benchmarking, Desktop Linux, Linux performance, Open Source graphics, Linux How To, Ubuntu benchmarks, Ubuntu hardware, Phoronix Test Suite
  • hf_139
    Senior Member
    • May 2023
    • 339

    #2
    GNOME is written in an insecure language.
    The consequences we witnessed last year, when we learned that GNOME had a one-click RCE exploit for over a decade.
    RUST would have avoided this.

    All corporate environments can not use GNOME anymore, they will have to switch to COSMIC as soon as possible. Security vulnerabilities are no joke.

    Comment

    • hf_139
      Senior Member
      • May 2023
      • 339

      #3
      Additionally we have to consider that GNOMEs UI philosophy by itself is insecure.

      CSD is a security vulnerability, because any application can just redraw the titlebar to its liking and trick the User to click on something he doesn't actually want to click. Similar to those pop-ups on the internet with 20 different X buttons.

      Thanks to wayland, we are now more aware of such vulnerabilities.
      Wayland denies global hotkeys because they are insecure. By the same logic we have to abandon CSD because it is insecure.
      CSD is outdated and deprecated. It was cool for a few years, but we now have to accept the fact that it was a mistake.

      Comment

      • ahrs
        Senior Member
        • Apr 2021
        • 586

        #4
        Do we have Systemd-homed working right where it locks your encrypted drive when the screen locker is invoked yet?

        I remember that was a big feature when Systemd homed was first announced but, to quote the Arch Wiki:
        Originally posted by Arch Wiki
        The suspend option can be used with pam_systemd_home.so entries in the files in /etc/pam.d/ to enable forget key on suspend. No session manager at the moment supports this feature. Furthermore, TTY sessions do not support the reauthentication mechanism. So, when session managers start supporting this feature, the suspend option should only be enabled for them.

        Comment

        • ahrs
          Senior Member
          • Apr 2021
          • 586

          #5
          Originally posted by hf_139 View Post
          All corporate environments can not use GNOME anymore, they will have to switch to COSMIC as soon as possible. Security vulnerabilities are no joke.
          Nobody's switching to an Alpha. 10 more years maybe?

          Comment

          • hf_139
            Senior Member
            • May 2023
            • 339

            #6
            Originally posted by ahrs View Post

            Nobody's switching to an Alpha. 10 more years maybe?
            We had 17 years of GNOME without thumbnails in the file picker.
            I think the transition to COSMIC will be faster than you expect.
            Even the US government recommends RUST now, so corporations really have no choice.

            Private users don't use GNOME anyway.

            Comment

            • mb_q
              Senior Member
              • May 2017
              • 231

              #7
              oo7, seriously? Apparently they humanistic stances do not cover people trying to find their project with web search services...

              Comment

              • user1
                Senior Member
                • Sep 2019
                • 1109

                #8
                Originally posted by hf_139 View Post
                CSD is a security vulnerability, because any application can just redraw the titlebar to its liking and trick the User to click on something he doesn't actually want to click. Similar to those pop-ups on the internet with 20 different X buttons.
                Sir, what substance did you take this morning? Genuinely curious, I wanna try it myself.

                Comment

                • user1
                  Senior Member
                  • Sep 2019
                  • 1109

                  #9
                  Originally posted by hf_139 View Post
                  GNOME is written in an insecure language.
                  The consequences we witnessed last year, when we learned that GNOME had a one-click RCE exploit for over a decade.
                  RUST would have avoided this.

                  All corporate environments can not use GNOME anymore, they will have to switch to COSMIC as soon as possible. Security vulnerabilities are no joke.
                  By your logic, KDE is even less secure than Gnome, because KDE still doesn't use Rust at all, while Gnome at least already has some apps written in Rust, like Amberol, Loupe, Papers and probably some more.

                  Comment

                  • spyke
                    Junior Member
                    • Dec 2018
                    • 30

                    #10
                    Originally posted by hf_139 View Post
                    GNOME is written in an insecure language.
                    The consequences we witnessed last year, when we learned that GNOME had a one-click RCE exploit for over a decade.
                    RUST would have avoided this.

                    All corporate environments can not use GNOME anymore, they will have to switch to COSMIC as soon as possible. Security vulnerabilities are no joke.


                    I use GNOME and I am really looking forward to COSMIC. Not exactly because it is safer, but because the pace of development is 10x+ of GNOME. To me it may become GNOME 2.0 -- a rewrite using the knowledge from the past 2 decades and modern technologies embracing code re-use instead of header files from 50 years ago. Which also makes it mode accessible for newer generations to contribute.

                    Comment

                    Working...
                    X