Request For Candidates: Application Review Board
martin.pitt at ubuntu.com
Thu Aug 26 14:53:10 BST 2010
Scott Kitterman [2010-08-26 8:58 -0400]:
> I think that not using maintainer scripts, installing to /opt, running as the
> user are good steps to support the traditional *nix security paradigm of
> protecting the systems/root, but for this to lead to a truly lightweight
> system, we will need to kick it up a level and also protect user level data
> from such applications unless they are authorized to have access to it.
This sounds a lot like the guest session to me. Perhaps we can recycle
its AppArmor confinement for this?
Martin Pitt | http://www.piware.de
Ubuntu Developer (www.ubuntu.com) | Debian Developer (www.debian.org)
More information about the ubuntu-devel