- Are you using Flatpaks?
- Are you trusting Flathub?
- Do you bother about the sandboxing and security?
Yes, I’m using flatpaks.
Yes, I’m trusting flathub. LOL about people repackaging applications. Wait until they find out the Linux distro they use is a collection of software repackaged by 3rd parties. 😂
Userland hasn’t had any concept of security, so it’s nice people are trying to fix it.
I'm mostly using Flatpaks on Tumbleweed, I only use the package manager if I can't find a Flatpak version. Reason for that is that with Flatpak I can precisely know what I manually installed, as Tumbleweed lacks a proper easy way of getting a list of user installed packages
Okey, let me start the discussion.
What's the point of sandboxing or permissions on environment for one user?
It means you can run apps without trusting their developer will full access to your computer and your files.
Just like on mobile, you only allow apps to access what you know they need. Nothing more.
Okey, so why we run apps without trusing developers in the first place? Or why do we even need the trust?
(It's not that I think sandboxing is not useful sometimes, I just want to see if we get somewhere)
Think about service providers (government, banking, messaging, streaming, gaming). To participate in life we might depend on some of their services but don't fully trust these parties. Flatpak is not secure/sandboxed enough to run untrusted apps. Meanwhile on Android the situation looks much better.
