Rendered at 06:46:14 GMT+0000 (Coordinated Universal Time) with Cloudflare Workers.
mid-kid 7 hours ago [-]
For an article written late last year I hoped for a little more awareness of how massive a security hole granting full, unfiltered access to the X11 server is. Granted, any sandboxing is better than none, but firefox is one of the few apps that already sandboxes itself really well, and with a blog title like that it might be good to touch upon things like nested X servers such as Xephyr.
BobbyTables2 1 hours ago [-]
Yeah, sadly Firefox and Chrome want almost full privileges so that they can sandbox themselves.
X itself always bothers me. Xeyes is cute until one considers the practical implications…
ElijahLynn 2 hours ago [-]
Is X11 going to be like IE6. Still around in another 10 years after it was intended to be deprecated across all major distros (2025/2026).
porridgeraisin 13 minutes ago [-]
It's gonna be like ipv4. Still around in a thousand years.
toenail 1 hours ago [-]
Is wayland going to be aroud in another 10 years, or it it the new pulseaudio?
shevy-java 1 hours ago [-]
I don't think it is "just around" - it is actively maintained still:
In the end Red Hat failed to kill off X11. Let's see what happens next. The
GTK devs already rejected patches for maintaining the toolkit further for the
xorg platform, following their "GTK5 will no longer support x11" agenda. Would be kind of great to have a universal GUI toolkit that would
work rather than have toolkits controlled de-facto by private companies who just willy-nilly throw out support for this or that platform at their own selfish discretion. Though,
someone else now helps maintain gtk2, though most of the patches are in regards to
fixing bugs, ensuring that it can be compiled and so forth. https://git.devuan.org/Daemonratte/gtk2-ng
kstrauser 1 hours ago [-]
Real question: is X11Libre widely used by anyone but its maintainers?
PowerElectronix 20 minutes ago [-]
Several distros have gone XLibre as their default display manager. I installed Artix on a bc-250 just last week and XLibre was the default there.
waynecochran 2 hours ago [-]
I wish I lived in a world were you didn't have to sign contracts, lock your doors, or have X11 security. It is so fun to run xmeltdown a new user's display.
ChocolateGod 5 hours ago [-]
Correct me if I'm wrong, but passing through the X socket gives a giant sandbox escape as any application can control/see any other application, including a root terminal in a GUI app.
Chu4eeno 4 hours ago [-]
No, X11 supports pretty detailed per-application access control, similar to selinux (XACE).
The author of the phoenix x server has blogged about it, iirc.
ChocolateGod 4 hours ago [-]
> XACE
Which is configured by default on what distros?
lotharcable 3 hours ago [-]
Nowhere (and everywhere).
It is my understanding that XACE doesn't actually provide any security features itself. It just provides the "hooks" to implement security extensions. Like LSM feature in Linux kernel. You have to install a additional X11 extension to do something useful with it.
So the most common X11 security extension is going to be xcsecurity which enables the SECURITY extension. It allows a course permission model were applications can be designated as "Trusted" or "Untrusted". That is going to show up in many Linux distributions.
However all applications default to "trusted" because if they are untrusted they tend to cause lots of other annoying problems and crashes a lot of apps, apparently.
In practice the only place it shows up is if you are using "ssh -X". That uses the security extension by default. Which is why there is also a "ssh -Y" that disables it for applications that it breaks.
This sort of thing is why to fix X11 security you have to give up backwards compatibility and create a new X version.
Oh, wait, that is what the X developers did with Wayland.
shevy-java 1 hours ago [-]
> that is what the X developers did with Wayland
This is rather incomplete. For instance, gtk devs already threw out tons of old code in GTK4. Wayland also has fewer features than xorg; and there are also fewer choices available. I noticed this with regards to WMs/DEs. I am not even going to issues wayland has with regards to certain video graphics - that's another not mentioned issue here.
You are trying to pick individual cherries.
> This sort of thing is why to fix X11 security you have to give up backwards compatibility and create a new X version.
Let's have a look in a little while. I myself hope for better and more transparent information at all times. Probably others want better security overall. Would it not be somewhat interesting if wayland were to be abandoned eventually due to having too few useful features compared to xserver?
fluffybucktsnek 25 minutes ago [-]
> Wayland also has fewer features than xorg; and there are also fewer choices available
Because Wayland is a strictly a window management protocol focused on policy over mechanism.
> I am not even going to issues wayland has with regards to certain video graphics - that's another not mentioned issue here.
We also aren't going to mention issues Xorg or XLibre have with some graphics setups, because that's neither here nor there. This is a thread about security.
> I don't think so: <XLibre github repo link>
Didn't XLibre break some applications when launched?
> Would it not be somewhat interesting if wayland were to be abandoned eventually due to having too few useful features compared to xserver?
It would be interesting to see Wayland abandoned for a better protocol/set of protocols, xserver is neither a protocol nor really better.
froh 2 hours ago [-]
except Wayland dropped the baby with the bathtub?
for example standardized window management, left as an exercise to the GUI lib and the compositor? and woop woop X11 GUI apps need to be rewritten to support window management on WSL (Wayland based) and the network reconnect on hybernate also broke.
But at least Games are faster, aren't they...
sedatk 2 hours ago [-]
Putting apps in a container sounds like a great idea until you need to access your files.
2 hours ago [-]
LtWorf 7 hours ago [-]
Or one could just use firejail, which comes with a number of pre made profiles for common applications.
nosioptar 6 hours ago [-]
The sandbox command works well on systems using SELinux.
Hard for me to take that one seriously.. For example they call out byte swapping for endianness as the type of cruft holding back X11. Such a trivial thing to be concerned enough to put in the readme... (I guess Phoenix is also putting this..) Seems like mostly authored by Claude too.
shevy-java 1 hours ago [-]
> Seems like mostly authored by Claude too.
This is a problem in many projects now. xserver and mruby for instance also succumbed to claude. It seems claude is the ultimate virus. It leaks into almost every project now. So I am not sure it can be used as differentiating criterium here merely for being claude AI slop. I've noticed a lot of documentation is now totally useless though; claude slop is just unreadable to me. It's like a person who is not able to think, wrote the documentation. I did not have this issue back when real humans wrote documentation, even though high quality documentation was always rare anyway. But, for instance, Jeremy Evans in his projects tends to write high-quality documentation in general, and I can understand it fine, whereas if you look at matz spinel, I have no idea what the AI slop in the README is really trying to convey. Or on ffmpeg, a german dev used AI slop to try to create some proposal, and someone else pointed out that this is pointless and impossible to read and understand, yet the original guy did not understand why real people don't want to be AI slop spammed. It's very strange.
lotharcable 3 hours ago [-]
XWayland is actively developed.
XFree86, which is the "standalone DDX" you see on X11 desktops, is being actively maintained.
X itself always bothers me. Xeyes is cute until one considers the practical implications…
https://github.com/X11Libre/xserver
In the end Red Hat failed to kill off X11. Let's see what happens next. The GTK devs already rejected patches for maintaining the toolkit further for the xorg platform, following their "GTK5 will no longer support x11" agenda. Would be kind of great to have a universal GUI toolkit that would work rather than have toolkits controlled de-facto by private companies who just willy-nilly throw out support for this or that platform at their own selfish discretion. Though, someone else now helps maintain gtk2, though most of the patches are in regards to fixing bugs, ensuring that it can be compiled and so forth. https://git.devuan.org/Daemonratte/gtk2-ng
The author of the phoenix x server has blogged about it, iirc.
Which is configured by default on what distros?
It is my understanding that XACE doesn't actually provide any security features itself. It just provides the "hooks" to implement security extensions. Like LSM feature in Linux kernel. You have to install a additional X11 extension to do something useful with it.
So the most common X11 security extension is going to be xcsecurity which enables the SECURITY extension. It allows a course permission model were applications can be designated as "Trusted" or "Untrusted". That is going to show up in many Linux distributions.
However all applications default to "trusted" because if they are untrusted they tend to cause lots of other annoying problems and crashes a lot of apps, apparently.
In practice the only place it shows up is if you are using "ssh -X". That uses the security extension by default. Which is why there is also a "ssh -Y" that disables it for applications that it breaks.
This sort of thing is why to fix X11 security you have to give up backwards compatibility and create a new X version.
Oh, wait, that is what the X developers did with Wayland.
This is rather incomplete. For instance, gtk devs already threw out tons of old code in GTK4. Wayland also has fewer features than xorg; and there are also fewer choices available. I noticed this with regards to WMs/DEs. I am not even going to issues wayland has with regards to certain video graphics - that's another not mentioned issue here.
You are trying to pick individual cherries.
> This sort of thing is why to fix X11 security you have to give up backwards compatibility and create a new X version.
I don't think so: https://github.com/X11Libre/xserver
Let's have a look in a little while. I myself hope for better and more transparent information at all times. Probably others want better security overall. Would it not be somewhat interesting if wayland were to be abandoned eventually due to having too few useful features compared to xserver?
Because Wayland is a strictly a window management protocol focused on policy over mechanism.
> I am not even going to issues wayland has with regards to certain video graphics - that's another not mentioned issue here.
We also aren't going to mention issues Xorg or XLibre have with some graphics setups, because that's neither here nor there. This is a thread about security.
> I don't think so: <XLibre github repo link>
Didn't XLibre break some applications when launched?
> Would it not be somewhat interesting if wayland were to be abandoned eventually due to having too few useful features compared to xserver?
It would be interesting to see Wayland abandoned for a better protocol/set of protocols, xserver is neither a protocol nor really better.
for example standardized window management, left as an exercise to the GUI lib and the compositor? and woop woop X11 GUI apps need to be rewritten to support window management on WSL (Wayland based) and the network reconnect on hybernate also broke.
But at least Games are faster, aren't they...
https://docs.redhat.com/en/documentation/red_hat_enterprise_...
I have little experience with lxc but I guess waypipe could be an option too.
https://github.com/X11Libre/xserver/blob/master/doc/Xnamespa...
edit: phoenix was the name: https://github.com/external-mirrors/phoenix#phoenix
This is a problem in many projects now. xserver and mruby for instance also succumbed to claude. It seems claude is the ultimate virus. It leaks into almost every project now. So I am not sure it can be used as differentiating criterium here merely for being claude AI slop. I've noticed a lot of documentation is now totally useless though; claude slop is just unreadable to me. It's like a person who is not able to think, wrote the documentation. I did not have this issue back when real humans wrote documentation, even though high quality documentation was always rare anyway. But, for instance, Jeremy Evans in his projects tends to write high-quality documentation in general, and I can understand it fine, whereas if you look at matz spinel, I have no idea what the AI slop in the README is really trying to convey. Or on ffmpeg, a german dev used AI slop to try to create some proposal, and someone else pointed out that this is pointless and impossible to read and understand, yet the original guy did not understand why real people don't want to be AI slop spammed. It's very strange.
XFree86, which is the "standalone DDX" you see on X11 desktops, is being actively maintained.