this post was submitted on 18 Jan 2025

46 points (100.0% liked)

KDE

118 readers

5 users here now

KDE is an international technology team creating user-friendly free and open source software for desktop and portable computing. KDE’s software runs on GNU/Linux, BSD and other operating systems, including Windows.

Plasma 6 Bugs

If you encounter a bug, proceed to https://bugs.kde.org, check whether it has been reported.

If it hasn't, report it yourself.

PLEASE THINK CAREFULLY BEFORE POSTING HERE.

Developers do not look for reports on social media, so they will not see it and all it does is clutter up the feed.

founded 2 years ago

MODERATORS

carlschwan@lemmy.kde.social

Bro666@lemmy.kde.social

herzenschein@pawb.social

Aniqakhokhar@lemmy.kde.social

This week in Plasma: Getting #Plasma6.3 into shape, more KRunner searches, better scaling and a whole lot more: (cdn.masto.host)

submitted 1 month ago by kde@floss.social to c/kde@lemmy.kde.social

9 comments fedilink hide all child comments

This week in Plasma: Getting #Plasma6.3 into shape, more KRunner searches, better scaling and a whole lot more:

https://blogs.kde.org/2025/01/18/this-week-in-plasma-getting-plasma-6.3-in-great-shape/

@kde@lemmy.kde.social

#desktop #floss #FreeSoftware #OpenSource

top 9 comments

sorted by: hot top controversial new old

[–] Rhababerbarbar@tux.social 4 points 1 month ago* (last edited 1 month ago) (1 children)

@kde@floss.social @kde@lemmy.kde.social

Can you tell us what happens on the "sandbox all the things" goal?

I think this is a pretty crucial step forward, even though #sandbox technologies (most often through user namespaces) are more problematic than I initially thought.

(Basically, user #namespaces open up #privesc dangers to the monolithic #kernel, which is incredible. #Android and #ChromeOS use #LXC, mounts and #SELinux for #sandboxing)

[–] kde@floss.social 5 points 1 month ago (1 children)

@Rhababerbarbar @kde@lemmy.kde.social

"Sandbox all the things" is not currently a KDE goal.

https://kde.org/goals/

[–] Rhababerbarbar@tux.social 1 points 1 month ago* (last edited 1 month ago) (2 children)

@kde@floss.social @kde@lemmy.kde.social

Thx for the info, then it is like that.

Here is the goal proposal

https://phabricator.kde.org/T17370

Tbh, #bubblewrap would need to be fixed drastically to be as secure as the #Android #sandbox. And (I am not sure yet) I think even #Snaps are more secure (on #Ubuntu with #Apparmor patches) than #Flatpak with the current system.

As far as I understood, sandboxing needs to happen in #userspace, with tools like #fuse doing the work while being restricted by #MAC like #SELinux or Apparmor.

[–] kde@floss.social 1 points 1 month ago (1 children)

@Rhababerbarbar @kde@lemmy.kde.social

That is the proposal page. Of all proposals, and there are always quite few, the community votes and selects three to work on for two years. This one was not selected.

[–] Rhababerbarbar@tux.social 1 points 1 month ago

@kde@floss.social @kde@lemmy.kde.social

True, changed the naming ;)

[–] Rhababerbarbar@tux.social 1 points 1 month ago

@kde@floss.social @kde@lemmy.kde.social

For people interested, maybe #crabjail and #crablock can be a solution!

https://codeberg.org/crabjail/crablock

A #sandboxing tool written in #Rust, featuring " bleeding edge #Linux #security features like #Landlock or MDWE_REFUSE_EXEC_GAIN."

[–] bew@floss.social 3 points 1 month ago

@kde @kde@lemmy.kde.social #Nix mentioned ✨

[–] unknown1234_5@kbin.earth 1 points 1 month ago

hope this is in the next update

[–] rejzor@mastodon.social 1 points 1 month ago

@kde@floss.social @kde@lemmy.kde.social KDE used to be my frontend of choice, but I really dislike how inconsistent it is across apps, specifically window frames that look different and have different buttons to manipulate them. GNOME doesn't seem to have that issue or at least isn't as visible.