TransWikia.com

How to prevent the program from accessing files?

Unix & Linux Asked by Mihail HRS on December 1, 2021

I want to run some proprietary software on my Linux machine, skype for example. But I do not trust this program and I want to block for this program access to some folders in my home dir.

I tried to run skype from a different user using gksu, but it is dose not work for me. I find more straightway to make it work. Is there some mechanism to do this.

Thanks, a lot.

One Answer

Skype does work under a different user but that requires:


Let's start with the fact that any program which runs in your X.org session can access all other windows and mouse/keyboard input at any time no matter how you run it. Which means to be absolutely secure you must run a potentially bad program using a different X.org instance, e.g. Xorg :1 or use Xephyr: https://wiki.archlinux.org/index.php/firejail#Firejail_with_Xephyr

Ways to isolate applications in Linux:

  • firejail
  • A full-fledged VM like kvm, VirtualBox, VMWare Player (free for personal use)
  • Snap/Flatpak/AppImage which all provide various levels of isolation

Probably something more.

Lastly you can run Skype in Google Chrome https://web.skype.com/ and there's no need to install/run any applications.

Answered by Artem S. Tashkinov on December 1, 2021

Add your own answers!

Ask a Question

Get help from others!

© 2024 TransWikia.com. All rights reserved. Sites we Love: PCI Database, UKBizDB, Menu Kuliner, Sharing RPP