Can AppArmor prevent sudo password sniffing through abuse of X Windows System?

Patrick · February 19, 2020, 5:28pm

Quote Strong Linux User Account Isolation

X Windows System

Any graphical application running under X Windows System (X11) can see what any user is typing in any other application for any user. [1] For example, if user user running X11 would run lxsudo -u limited-user some-application that application if compromised could sniff anything that user user is writing. Including but not limited to any sudo password prompts.

See the footnote on that page too.

Can apparmor prevent that?

madaidan · February 19, 2020, 7:42pm

No. There is work on it though but I haven’t seen any progress AppArmorXace · Wiki · AppArmor / apparmor · GitLab

SELinux can do this though (among tons of other things apparmor cannot). Switching to SELinux might be a good idea in the future.

HulaHoop · February 19, 2020, 9:13pm

SELinux is in Debian. Are you familiar with its syntax?

madaidan · February 19, 2020, 9:18pm

No, I’m not familiar with the syntax. SELinux is far more complicated than apparmor and harder to learn. I only have a basic understanding of what can be done with it.

HulaHoop · February 19, 2020, 9:32pm

Here was some interesting news for SELinux in years.

Patrick_mobile · February 20, 2020, 4:38am

Worth asking AppArmor upstream about this or was already discussed?

SELinux: not looking forward to research / debate NSA/SELinux. Best discussed in separate thread. Perhaps even one for technology and one for trustworthiness.

Patrick · February 20, 2020, 6:38am

Another way to potential fix this:
Can we replace xfce window manager as an easy path to switch to wayland?

HulaHoop · February 20, 2020, 1:58pm

No point considering it when we don;t have someone proficient in profile writing. It would be absolutely worthless to us.

madaidan · February 20, 2020, 4:25pm

It was already discussed. See the apparmor wiki link above.