1
Loading...

Confronting Flatkill: The Case Against Flatpaks

Vote
52 52 views
9m Oct 27, 2020
G

Flatpaks are are very useful tool however, they're not perfect and some people have taken it upon themselves to show off the problems that exist with them in this case this author discusses some of the security problems but they make a few very simple mistakes along the way.

Someone sent me a link to one of the missing CVE vulnerabilities: https://nvd.nist.gov/vuln/detail/CVE-2020-12284

=========Support The Channel==========
► Paypal: https://www.paypal.me/BrodieRobertsonVideo
► Amazon USA: https://amzn.to/3d5gykF
► Other Methods: https://cointr.ee/brodierobertson

==========Resources==========
Flatkill 2018: https://flatkill.org/
Flatkill 2020: https://flatkill.org/2020/
Flatpak Permissions: https://docs.flatpak.org/en/latest/sandbox-permissions.html

=========Video Platforms==========
📚 LBRY Podcast: https://open.lbry.com/@TechOverTea:3
🎥 YouTube Podcast: https://www.youtube.com/c/TechOverTea
🎥 LBRY: https://open.lbry.com/@BrodieRobertson#5
📺 BitTube: https://bittube.tv/profile/BrodieRobertson
📺 BitChute: https://www.bitchute.com/channel/agraFPUvUDeK/

==========Social Media==========
🌐 Mastodon: https://mstdn.social/@BrodieOnLinux
🧠 Minds: https://www.minds.com/brodierobertson/
✉️ Telegram: https://t.me/BrodieRobertson

==========My Repos==========
🖥️ GitHub: https://github.com/BrodieRobertson

==========Credits==========
🎨 Channel Art:
All my art has was created by Supercozman
https://twitter.com/Supercozman
https://www.instagram.com/supercozman_draws/

🎵 Ending music
Music from https://filmmusic.io
"Basic Implosion" by Kevin MacLeod (https://incompetech.com)
License: CC BY (http://creativecommons.org/licenses/by/4.0/)

DISCLOSURE: Wherever possible I use referral links, which means if you click one of the links in this video or description and make a purchase we may receive a small commission or other compensation.

I am a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and related sites.

Table of Contents

Timecode Title
0:00 Introduction
0:41 The Sandbox Is A Lie
1:09 Flatpak Permissions
2:43 Misleading Sandbox
2:57 Security Updates
3:47 Ubuntu Is Just As Insecure
4:50 Root Exploits
5:54 Desktop Integration
6:47 Sandbox in 2020
7:13 Developers Are Still Lazy
8:04 Official Runtime Vulnerability
8:38 Bundled Dependencies
9:05 Addressed Local Root Exploits
9:22 Desktop Integration
10:18 My Thoughts
11:03 Addressing Luke
12:03 Outro

About Brodie Robertson

For all general enquiries feel free to contact me through any social media service listed below, If you'd like to longer form something longer form like fan mail or you have a video suggestion, feel free to send me an email.


0 Comments

Markdown is supported.
Life Hacks with Randy Dreammaker – S1 • E4
1 day ago
EEVblog – E1409
4 days ago
Defpom's Mailbag – E857
4 days ago