Ubuntu Snap's Security Is Easily Circumvented Due To X11

Written by Michael Larabel in Linux Security on 21 April 2016 at 10:25 PM EDT. 59 Comments
LINUX SECURITY
Matthew Garrett has taken time away from working on his new SATA power management patches for the Linux kernel to share his thoughts on Ubuntu's Snap packaging format and its security.

While Ubuntu's Snappy is designed to be secure and prevent applications from exploiting other parts of the system, with Ubuntu continuing to use X11/X.Org by default on Ubuntu 16.04, it's actually not too secure.

As any frequent reader of Phoronix knows, X11/X.Org is not secure at all. "Sandboxed" applications on such an environment simply isn't secure. Matthew Garrett took to writing a simple Snap-packaged example to show how under an X environment a "secure" program can steal any other program's input, due to the X11 design.

Garrett acknowledges that Snap packages will be more secure when using Mir rather than X.Org, but the Ubuntu desktop on 16.04 LTS is not using it as a default. Both Wayland and Mir are much more secure than the xorg-server. For these same reasons is also why GNOME's XDG-App initiative for app sandboxing also prefers the Wayland over the X.Org Server for greater security.

Matthew Garrett concluded his latest blog post with, "The Snap format provides a lot of underlying technology that is a great step towards being able to protect systems against untrustworthy third-party applications, and once Ubuntu shifts to using Mir by default it'll be much better than the status quo. But right now the protections it provides are easily circumvented, and it's disingenuous to claim that it currently gives desktop users any real security."
Related News
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week