search

subuser-security / subuser

Run programs on linux with selectively restricted permissions.
http://subuser.org
GNU Lesser General Public License v3.0
889 stars 65 forks source link

Secure Xpra alternative with Cappsule's GUI #297

Closed l0kod closed 7 years ago

l0kod commented 8 years ago

This might interest subuser: https://github.com/cappsule/gui

timthelion commented 8 years ago

Thank you for the suggestion. What would be the advantages of moving away from XPRA? XPRA, despite it's rough spots, is pretty stable software that has been developed over many years. In most cases, for subuser, it just works.

l0kod commented 8 years ago

Xpra wasn't built with security in mind as the Qubes GUI.

timthelion commented 8 years ago

I agree that, xpra's protocol is much more complex and probably more prone to security flaws than Qube's. Does Cappsule's protocol work with containers? It seems designed for use with virtual machines.

On 09/23/16 00:42, Mickaël Salaün wrote:

Xpra wasn't built with security in mind as the Qubes GUI https://www.qubes-os.org/doc/gui/.

— You are receiving this because you commented. Reply to this email directly, view it on GitHub https://github.com/subuser-security/subuser/issues/297#issuecomment-249049422, or mute the thread https://github.com/notifications/unsubscribe-auth/ABU7-B23gnSNyfTPLOfWFO1BG5vI1h8Vks5qswRmgaJpZM4KEVDy.

timthelion commented 7 years ago

Thank you for the suggestion. It is true that Qubes is more secure than subuser, and it is possible that xpra has some bugs, but this isn't really that actionable or that high/priority because capsule is intended for use with VMs and not containers.