[RFC PATCH 5/9] Define user structure for events and responses.
Tingmao Wang
m at maowtm.org
Mon Mar 10 00:39:04 UTC 2025
On 3/6/25 03:05, Tingmao Wang wrote:
[...]
> This is also motivated by the potential UX I'm thinking of. For example,
> if a newly installed application tries to create ~/.app-name, it will be
> much more reassuring and convenient to the user if we can show something
> like
>
> [program] wants to mkdir ~/.app-name. Allow this and future
> access to the new directory?
>
> rather than just "[program] wants to mkdir under ~". (The "Allow this
> and future access to the new directory" bit is made possible by the
> supervisor knowing the name of the file/directory being created, and can
> remember them / write them out to a persistent profile etc)
Another significant motivation, which I forgot to mention, is to
auto-grant access to newly created files/sockets etc under things like
/tmp, $XDG_RUNTIME_DIR, or ~/Downloads.
> [...]
More information about the Linux-security-module-archive
mailing list