KDE

5026 readers

49 users here now

KDE is an international technology team creating user-friendly free and open source software for desktop and portable computing. KDE’s software runs on GNU/Linux, BSD and other operating systems, including Windows.

Plasma 6 Bugs

If you encounter a bug, proceed to https://bugs.kde.org, check whether it has been reported.

If it hasn't, report it yourself.

PLEASE THINK CAREFULLY BEFORE POSTING HERE.

Developers do not look for reports on social media, so they will not see it and all it does is clutter up the feed.

founded 1 year ago

MODERATORS

[email protected]

Malicious KDE theme can wipe out all your data (www.reddit.com)

submitted 6 months ago* (last edited 6 months ago) by [email protected] to c/[email protected]

33 comments fedilink hide all child comments

Or is it just buggy?

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 10 points 6 months ago (10 children)

This is why we need sandboxing. Right now the Linux desktop is still lacking in terms of security

[–] [email protected] 3 points 6 months ago (9 children)

@possiblylinux127 @wisha And how would sandboxing a malicious script inside a theme that is supposed to change the look of your desktop work? They installed and ran something that rm'd their home directory. I'm honestly curious how you'd solve this.

[–] [email protected] 9 points 6 months ago (4 children)

A more locked-down theming API could help. For example Firefox themes are always 100% safe to install. That said, Firefox themes are almost useless (they’re more like color schemes lol), and no one wants to lose KDE’s powerful customizability so 🤷🤷

[–] [email protected] 4 points 6 months ago

Perhaps having different categories with different limitations would work well. Using the firefox example, prioritize the use of WebExtensions, but keep XUL/XPCOM with appropriate warnings.

load more comments (3 replies)

load more comments (7 replies)