Hello, On Wed, Jul 06 2022, Dan Čermák wrote:
Stefan Seyfried
writes: On 06.07.22 12:11, Dan Čermák wrote:
You don't, but from a security standpoint, you really do want to run your browser as isolated from the rest of your system as possible.
I did not yet look into that crazy new stuff, but is this flatpak thing also doing it like android with an own userid for every program? I'd like to see something like that (with the browser unable to steal my gpg key).
That is the idea, if the flatpak has no permissions to read & write your home directory and has no access to the GNUPG sockets, then it cannot interact with GPG at all.
How difficult is it to enable that when it is desirable (and have it survive updates)? Specifically, in order to integrate the pass password manager[1] to Firefox, I use a browser plug-in[2] and a "host" script[3] which invokes pass to get the passwords, which internally runs GPG which needs to use the normal gpg-agent which needs access to my (password protected) keys. I've been thinking of putting FF into some firejail or something before, but was always afraid that the above scheme just would not work. And while isolating browser is good idea security-wise, passing each and every password through clipboard every single time it is used - which is the only alternative I can think of - looks less so. I expect similar problem with enabling plug-ins like GhostText[4]. Thanks for any insights, Martin [1] https://www.passwordstore.org/ [2] https://github.com/passff/passff [3] https://github.com/passff/passff-host [4] https://addons.mozilla.org/en-US/firefox/addon/ghosttext/