On Saturday, 23 April 2016 at 11:29:29 UTC, NX wrote:
I will just leave it here:
This is FUD.
There are no security risks with snappy packages that there
aren't with any other existing Linux packaging systems.
Snappy actually improves things in various ways compared to most
packaging formats, while not addressing the longstanding and
universal issues with X11 that affect just about all Linux
The solution of those issues lies either in setting up X11 to
appropriately isolate applications (which AIUI is possible but
not very nice to do), or using an alternative display server that
addresses those security concerns (Mir or Wayland).
Ubuntu and Canonical have been completely up-front about the
limitations of snappy's security guarantees when used on an X11
system (well before Matthew Garrett wrote his article), so it's
difficult to see these stories as anything other than a malicious
attempt to undermine a competitor.