undefined | Better HN

0 pointsOJFord4y ago0 comments

> But I don't want my OS to ask me "do you want to allow htop to access the list of your processes" — à la Windows Vista — every time I want to run htop to see my user processes.

Why would it be every time? Say yes once to htop, no to Zoom. Sort of like Android/iOS permissions.

Or just require root. No way I'd give it to Zoom, htop maybe.

0 comments

3 comments · 1 top-level

acatton4y ago· 2 in thread

The issue is that the model on Linux is different. As opposed to walled gardens, the assumption is that applications are cooperative, therefore there is no need for such "authorization systems".

The security model on Linux is based on blacklist, with solutions like firejail.

Also, what's the points of these nags? Most people will just say "OK" anyway because they want to access the features they were promised.

forgotpwd164y ago

The issue is that this model heralds from the 60s when such problems weren't even considered.

acatton4y ago

That is a way to see it.

I see it differently, for me the main issue is the fact that people run random software that were not even vetted.

If you dnf/apt install everything from the official repos of your distro, you wont have any misbehaving apps. And that model still holds.

And as I explained, other security models don't work either. People will just whitelist the app, or click "Accept" anyway, because they want the feature now! What's the point of nagging with a modal window "your random app, that you installed from a random website on the internet, which means you really want to use this specific app, is behaving in a shady manner, are you okay with this?"

2 more replies

j / k navigate · click thread line to collapse