1·
3 months agoFirefox is even more insecure as a Flatpak than Chromium. At least with Chromium using zypak it can use some Flatpak sandboxing (which is still inferior to base)
N.E.P.T.R
I’m the Never Ending Pie Throwing Robot, aka NEPTR.
Linux enthusiast, programmer, and privacy advocate. I’m nearly done with an IT Security degree.
TL;DR I am a nerd.
- 0 Posts
- 4 Comments
Joined 1 year ago
Cake day: November 20th, 2024
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
While I agree it would be nice, Flatpak weakens the Chromium sandbox by stopping proper per site isolation. Chromium in Flatpak relies on the zypak server in place of proper strict isolation.
It is source available, not open source.
While I do find GOS drama a bit annoying, they aren’t wrong about the lacking security of many AOSP forks. iode and /e/OS have a history late patches for security vulnerabilities in both the OS (https://web.archive.org/web/20241231003546/https://divestos.org/pages/patch_history) and for the forked apps they bundle with it. Each Android monthly and Chromium patches usually contains dozens High Risk CVEs, so taking a month or 2 is unacceptable. Neither are good for privacy or security.
See a comparison between some Android ROMs here, especially noting the update speed section: https://eylenburg.github.io/android_comparison.htm