X gets some scrutiny - it now runs with no user-to-hardware access on lots of ha... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		JoachimSchipper on Jan 31, 2015 \| parent \| context \| favorite \| on: 2015: The Year of the OpenBSD Desktop X gets some scrutiny - it now runs with no user-to-hardware access on lots of hardware, and with restricted user-to-hardware access on most everything (for more information, look at machdep.allowaperture.) Window managers aren't common sources of vulnerabilities, but there are two in base (an older fvwm, and cwm [EDIT: and twm]). The real problem, of course, is that you probably want a browser. Even with OpenBSD's hardening and secure defaults (-current takes some steps towards not hooking up gstreamer-plugins[-good] to the internet), browsers are plenty scary.

clarry on Jan 31, 2015 [–]

> Window managers aren't common sources of vulnerabilities, but there are two in base (an older fvwm, and cwm).

Don't forget twm.

rikkus on Jan 31, 2015 | [–]

Indeed, don't. I used twm for years and found it perfect for a simple 'some xterms' desktop.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact