JaspalSuri
commented
4 years ago Hi, since you said that you prefer to not use the app without the sandbox, I've assigned this issue to our desktop and web app dev to look into. Have you tried our Snap?
Closed dbrunker closed 1 year ago
JaspalSuri
commented
4 years ago Hi, since you said that you prefer to not use the app without the sandbox, I've assigned this issue to our desktop and web app dev to look into. Have you tried our Snap?
arielsvg
commented
4 years ago Hey @dbrunker, it looks like this is a recurring issue on debian machines. You might want to look into this => https://github.com/standardnotes/forum/issues/690#issuecomment-531802728
dbrunker
commented
4 years ago Thank you, both. I'm no fool when it comes to computers but I'm also not as sharp as I used to be. What does sandbox do and what happens if I don't use it?
arielsvg
commented
4 years ago This sandbox is a Chromium-specific thing. Chromium is the web engine we use (via Electron) to display the web application in a desktop environment. I'm not knowledgeable enough about it to give you a TL;DR but here's the FAQ on it: https://chromium.googlesource.com/chromium/src/+/master/docs/design/sandbox_faq.md
arielsvg
commented
4 years ago Generally sandboxing is a security feature, to make sure no program accesses resources it wasn't originally designed to work with. I would recommend considering other options before disabling it, like trying the snap packages for example 👍
MarvinMep
commented
4 years ago Same problem here. Same system, same app version, etc. No chromium in my system (except the ones sandboxed in some flatpak apps I guess). Previous versions used to work with no problem. Is this sandboxing really need? Isn't there anyway to disable it? I think I trust you won't mess my system.
arielsvg
commented
4 years ago We try not to trust ourselves but your vote of confidence is appreciated nonetheless 😄 Have you tried this solution? https://github.com/standardnotes/forum/issues/690#issuecomment-531802728 We don't want to disable the sandbox by default, that would be very irresponsible. In general making things less secure should be a conscious choice on the user's part IMO.
Describe the issue [15247:0610/102901.603707:FATAL:setuid_sandbox_host.cc(157)] The SUID sandbox helper binary was found, but is not configured correctly. Rather than run without sandboxing I'm aborting now. You need to make sure that /tmp/.mount_StandaEaSjuy/chrome-sandbox is owned by root and has mode 4755. Trace/breakpoint trap
To Reproduce Steps to reproduce the behavior: dave@debian-7579:~$ mv ~/Downloads/Standard-Notes-3.4.1.AppImage ~/Standard-Notes-3.4.1.AppImage dave@debian-7579:~$ cd ~ dave@debian-7579:~$ chmod a+x Standard-Notes-3.4.1.AppImage dave@debian-7579:~$ ./Standard-Notes-3.4.1.AppImage
Expected behavior Standard Notes starts
Desktop (please complete the following information):
Additional context '/tmp/.mount_StandaEaSjuy/chrome-sandbox': No such file or directory '/tmp/.mount_StandaEaSjuy/': No such file or directory