On Thu, Nov 3, 2016 at 7:38 AM, pixel fairy <[email protected]> wrote: > ... i was thinking of installing xdotool into dom0 and writing a new > script to the same end.
I believe it would be preferable to put xdotool in the AppVM and invoke it via qrexec rather than allowing AppVMs to trigger the generation of events directly in dom0 (which is inherently more trusted). Even if one uses --window in dom0 to (hopefully) restrict the handling of said events to only the intended window, untrusted event handling in dom0 in general is an attack surface which can be avoided, and IMO should be. -- You received this message because you are subscribed to the Google Groups "qubes-devel" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-devel/CABQWM_Ar1A4CmOgpCM825SMUratC_2Z1mY-NWoK-0HKys0k-Ww%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
