Is running a standalone browser in Ubuntu still limited user?
(XFCE environment)
Code:
xubuntu@xubuntu:/$ ps aux | grep -i pale My goal is to run a standalone browser as a limited user in a live session, & the only way I am sure of that is by copying the app to ram. |
What do you mean by "limited"?
As far as I know, you get no additional browser capability by running a browser as root, but you open your OS to increased vulnerability. |
Quote:
I am not trying to run as root but understand the current state. Is a standalone browser running as root or not? I am running, as user xubuntu, a standalone browser that is not in the system but an external partition. How can I verify it is running as a limited user? |
Quote:
Quote:
Code:
whoami |
It’s running as the user that launched it. Why would you think otherwise?
|
There’s only one way to get executables to *not* run as the user that launched them. I assume this wasn’t done with palemoon.
https://en.m.wikipedia.org/wiki/Setuid You, on the other hand, don’t have to assume. You can check with “ls -l”. |
1 Attachment(s)
Quote:
How can a limited user app access any partition or folder? I am in a non-Ubuntu distro running this browser as a limited user & when I try to save this webpage out of its restricted area it is automatically deleted. Attachment 42677 |
*Nix systems are designed to keep you confined to your home directory without special privileges. This is a good thing, not a bad one. You are free to create directories most anywhere and use them as you please. The permissions system is quite granular. Ultimately though it's best to keep things in /home/"$USER" wherever possible.
With the Code:
xubuntu |
Quote:
I just started getting used to restricted access elsewhere. Quote:
|
Quote:
We have let's say regular users and root, nothing else. We have groups. Every file/dir has its own permissions to rule who (which user/group) is allowed to read/write it. Also there is a restricted shell, which means a limited environment. We have also containers to encapsulate things and/or hide things. Copying an app into RAM does not mean any kind of restriction or limitation. Running a live section means a different approach again. But first of all would be nice to know exactly what do you want to solve? |
Quote:
Code:
sudo firefox Code:
firefox |
Quote:
Quote:
|
Quote:
Quote:
Copying/relocate a file (executable) to anywhere does not solve or modify anything. It has no any impact on the execution. |
Quote:
You can put a standalone portable in a system folder, but they can also be most other locations. When you put a browser out of the system, it will commonly not run with restricted permissions, logically, when it will run as root. This is not rule but common practice. Try it! I am new to running browsers in Ubuntu, so I need to learn how restricted they are running as a limited user. |
Quote:
|
All times are GMT -5. The time now is 08:13 PM. |