[Pkg-lyx-devel] Hardening LyX with AppArmor
Tommaso Cucinotta
tommaso at lyx.org
Sun Nov 13 14:39:42 UTC 2016
Hi all,
I'd be grateful to get some feedback/comment on this issue:
http://www.lyx.org/trac/ticket/10481
It's about potential misuse of LyX via mal[iciously]formed documents having unintended effects when opened or compiled with LyX.
I worked at a tentative fix using AppArmor, that seems standard on Ubuntu for other desktop apps. AppArmor is applied to a wrapper program shipping with LyX, which is pre-fixed to any external invoked script. This way, we can let external scripts have reduced permissions than LyX itself.
Thanks,
Tommaso
More information about the Pkg-lyx-devel
mailing list