If the apps work together, they typically belong to the same security domain / t...

charcircuit · 2025-04-11T23:37:59 1744414679

Even if things are on the same trust level that doesn't mean that if one gets compromised I don't care that it affects the 2nd.

fsflover · 2025-04-12T08:13:20 1744445600

So just run them in different VMs?

Apart from that, any hardening in Fedora can be utilized inside a Fedora VM on Qubes. Qubes doesn't force you to use VMs with no isolation inside.

charcircuit · 2025-04-12T11:28:29 1744457309

But then the files can't be shared.

fsflover · 2025-04-12T12:55:24 1744462524

Qubes has such functionality.

AshamedCaptain · 2025-04-12T10:20:54 1744453254

And you just deduced why sandboxing as it is implemented today is really pointless for the desktop .

fsflover · 2025-04-12T12:58:05 1744462685

I'm using Qubes as my daily driver on my desktop, so no.

AshamedCaptain · 2025-04-12T14:51:17 1744469477

What do you get from it? Specially considering that from above "programs that work together go in the same context"..

fsflover · 2025-04-13T20:30:14 1744576214

Two official examples of how one could benefit from Qubes:

and