[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: package security auditing and isolation

From: Yuri Khan
Subject: Re: package security auditing and isolation
Date: Thu, 6 Apr 2017 21:57:38 +0700

On Thu, Apr 6, 2017 at 9:15 PM, Ted Zlatanov <address@hidden> wrote:

> 2) establishing isolation levels in the C core. Simply put, not all
> packages need to be able to run shell commands, delete or modify files,
> and so on. When the user installs or updates a package, if the needed
> access levels change, that should be noted and acknowledged.

“This package is requesting the following permissions:

* Monitor all your keystrokes
* Modify buffer contents
* Access the kill ring
* Read and write files”

reply via email to

[Prev in Thread] Current Thread [Next in Thread]