Install and run Zoom Client inside a sandbox
Ask Ubuntu Asked by Pablo Bianchi on December 20, 2020
With COVID-19 pandemic there was a boom of video conferencing. Although there are good free and open source alternatives like Jitsi (with e2ee coming soon), Zoom became popular. Is not a secret that have some privacy issues (EFF, ProtonMail Blog, The Guardian, The Verge).
For the ones forced to install it, it would be nice to have a friendly way to install it and run it without giving up privacy so easily. Maybe using it inside a sandbox like firejail (there is a zoom profile), selecting file system access.
If installed using snap package: It’s worth noting that even removing "Play and record sound" from Permissions on Ubuntu software it’s still can play and record sound. IMO a serious security bug on snapd/snappy/snap-store. Maybe this wouldn’t happen on Wayland?
Also, audio-record connection (AKA interface) shouldn’t auto-connect, but people behind snap store override this rule on purpose.
One Answer
Zoom is available as a Snap: snap install zoom-client
Snaps are confined to their own filesystem using squashfs loop mounts and AppArmor rules. However, Zoom needs routine access to quite a lot of your hardware (USB ports, audio, screen, camera, network) in order to be useful. Also, the application needs to be detectable by others on the system (so e-mail invitation links work). So complete sandboxing seems a challenge.
Some problems with Zoom (like the ability to bruteforce an access code) are outside the OS' control.
Answered by user535733 on December 20, 2020
Add your own answers!
Related Questions
fping with timestamp logging to file named with date
1 Asked on December 30, 2020 by disco_rogge
Ubuntu 18.04 to 20.04 – Unresolved Problem occured while calculating upgrade
2 Asked on December 30, 2020 by cool-cookie
How to adjust all volume levels
3 Asked on December 30, 2020 by dennis-munk-christensen
Ubuntu 16.04 reboot after shutdown
1 Asked on December 30, 2020 by cuong-t-tran
when building u-boot /bin/bash: arm-none-linux-gnueabi-gcc: command not found
1 Asked on December 29, 2020 by brent
Nvidia Driver Installed on Mac Ubuntu Partition and Restarted Computer Now Stuck on Boot
0 Asked on December 29, 2020 by zach-wadzinski
*-network UNCLAIMED after software update on dell xps 13
1 Asked on December 29, 2020 by mechtoid
XBMC, libGL error: failed to load driver: i915
1 Asked on December 28, 2020 by k6adams
What does twisted.internet.error.ConnectError mean when I connect to a Landscape server?
1 Asked on December 28, 2020 by stack-tracer
Docker-compose throwing error on any invocation
1 Asked on December 28, 2020 by arkostin01
Ubuntu 13.04 mounts iPhone disk spaces and after a while unmounts them
1 Asked on December 28, 2020 by hatredman
Ubuntu 20.4; Samsung Monitor not seen
0 Asked on December 28, 2020 by jwsarge2
Very short high frequency beep that keeps happening
0 Asked on December 28, 2020 by comradejack1917
Installing old Loki games on 12.04 64-bit results in no audio
4 Asked on December 27, 2020 by flabbergastedpickle
How to recover removed bluetooth headset?
0 Asked on December 27, 2020 by dcm
fresh rate discrepancy b/w my monitor’s spec and that from ubuntu display settings
0 Asked on December 26, 2020 by j-e-y
Ask a Question
Get help from others!
Recent Questions
Recent Answers
- Joshua Engel on Why fry rice before boiling?
- Jon Church on Why fry rice before boiling?
- haakon.io on Why fry rice before boiling?
- Peter Machado on Why fry rice before boiling?
- Lex on Does Google Analytics track 404 page responses as valid page views?