Post Ax9mISfXd8UwuMEOwa by BrodieOnLinux@mstdn.social
(DIR) More posts by BrodieOnLinux@mstdn.social
(DIR) Post #Ax9kGcOQJ2zeZwDZ4a by BrodieOnLinux@mstdn.social
2025-08-14T09:27:33Z
0 likes, 0 repeats
Whilst portals are a really good step in the right direction, a discussion needs to be had about the growing pop up fatigue they are causing, I'm beginning to see scripts to completely circumvent any security benefits they may provide. As we move more apps into flatpaks, and more resources get permission controlled. this is a problem that needs to be further looked into.
(DIR) Post #Ax9l25H4k8nLlOPki8 by wolf480pl@mstdn.io
2025-08-14T09:36:08Z
0 likes, 0 repeats
@BrodieOnLinux how about a global toggle:Do you care about security?(x) Yes (show permission popups)( ) No (automatically grant all permissioms)
(DIR) Post #Ax9l2tOEPoEDC49Ao4 by jokeyrhyme@aus.social
2025-08-14T09:36:13Z
0 likes, 0 repeats
@BrodieOnLinux yeah, it reminds me of UAC on Windows, or even the GDPR cookie prompts I don't think it's meaningful to make the user choose every time, but I also don't want a centralised "developer knows best" approach either
(DIR) Post #Ax9lM6NMMGCayFtnIe by TheFrenchGhosty@libretooth.gr
2025-08-14T09:39:39Z
0 likes, 0 repeats
@BrodieOnLinux It's a pointless thing.If I'm running software on linux, I trust this software.The only usecase is proprietary software. Which is why red hat is pushing wayland hard.
(DIR) Post #Ax9lnjyTEuipbPR7T6 by BrodieOnLinux@mstdn.social
2025-08-14T09:44:44Z
0 likes, 0 repeats
@jokeyrhyme There's work towards making more of the prompts remember what you selected but right now there's a lot of places where you get bombarded upon each launch
(DIR) Post #Ax9m25N0UHZq0wkldY by jokeyrhyme@aus.social
2025-08-14T09:47:18Z
0 likes, 0 repeats
@BrodieOnLinux honestly, I think I'd be okay with the SELinux approach of downloading a vetted policy pack from RedHat that enables what makes sense for known-good app versions and causes prompts for everything else
(DIR) Post #Ax9mIRPCKPpYzNZppY by zstg@fedia.social
2025-08-14T09:49:42.125Z
0 likes, 0 repeats
@BrodieOnLinux is it that bad though?
(DIR) Post #Ax9mISfXd8UwuMEOwa by BrodieOnLinux@mstdn.social
2025-08-14T09:50:15Z
0 likes, 0 repeats
@zstg UAC isn't that bad either but when you see it 100 times people will start to get tired of it
(DIR) Post #Ax9o7COXzqEx9q2WuW by zstg@fedia.social
2025-08-14T09:50:51.252Z
0 likes, 0 repeats
@BrodieOnLinux ah that's true. But pkexec isn't that frequent on Linux, even on Plasma.
(DIR) Post #Ax9o7DGmkBcps3PqS0 by BrodieOnLinux@mstdn.social
2025-08-14T10:10:38Z
0 likes, 0 repeats
@zstg pkexec true, but I was talking about portal permissions
(DIR) Post #Ax9opW54ANTExC3m40 by skeletonek@mastodon.social
2025-08-14T10:18:39Z
0 likes, 0 repeats
@BrodieOnLinux It should just work like on Android where you have the option to grant the specific permission once, or remember the setting and grant the permission automatically only for this specific app.
(DIR) Post #Ax9x0c0XGmwc9dk5y4 by fenglengshun@mastodon.social
2025-08-14T11:50:17Z
0 likes, 0 repeats
@wolf480pl No, then people will eventually just hide everything.There has to be a way to sort notifications by severity and only surface the ones people really care about.
(DIR) Post #Ax9xNMK7kUPWAhkeG0 by ojonnysilva@fosstodon.org
2025-08-14T11:54:24Z
0 likes, 0 repeats
@BrodieOnLinux Whats more important is the user being able to tell that an app given what its supposed to do has no business requiring certain permissions, otherwise, the pop up might as well ask for anything and the user will just click ok anyway. Linux users tend to care about security and privacy, but most people really don't give a damn.
(DIR) Post #Ax9xZjaz3AdPp6XRWS by wolf480pl@mstdn.io
2025-08-14T11:56:40Z
0 likes, 0 repeats
@fenglengshun I meant it as a first step / improvement on status quo.It makes it so that people who just want to give every flatpak app full access - as if there was no flatpak - can do so, without using hacky scripts.That means only people who care about app sandboxing are getting those permission dialogues (IIRC they're blocking so not really notifications) and you can get better feedback as to what would be useful.
(DIR) Post #Ax9xbhBKzkbuutTgUC by wolf480pl@mstdn.io
2025-08-14T11:57:01Z
0 likes, 0 repeats
@fenglengshun Though I guess there could be more obvious solutions that I'd think of if I was actually using flatpak.
(DIR) Post #AxAtqWivxGiOANy7RA by technobaboo@ordinary.cafe
2025-08-14T22:49:32Z
0 likes, 0 repeats
@wolf480pl @BrodieOnLinux that's just automating permission fatigue...
(DIR) Post #AxAu0vGXYyFbB6e3EG by technobaboo@ordinary.cafe
2025-08-14T22:51:27Z
0 likes, 0 repeats
@BrodieOnLinux hate to say it... other than remembering the last state the only way is to architect the portals to work in specific contexts certain ways to not require a permission dialog... file chooser works great for this
(DIR) Post #AxAwbCyPP6jUQkathw by wolf480pl@mstdn.io
2025-08-14T23:20:26Z
0 likes, 0 repeats
@technobaboo @BrodieOnLinux I meant it as a first step, to acknowledge that not everyone wants to limit applications' access to their computer, and to focus further steps on the ones who do.
(DIR) Post #AxBRMscHOIYportJ2W by muelsyse@social.tchncs.de
2025-08-15T05:05:10Z
0 likes, 0 repeats
@BrodieOnLinux I get that pop-up fatigue is a problem. However, I still think that Android's pop up approach is the best.