| ▲ | ibash 4 hours ago |
| > Obsidian plugins have full, unrestricted access to all files in the vault. Unless something has changed, it's worse than that. Plugins have unrestricted access to any file on your machine. When I brought this up in discord a while back they brushed it aside. |
|
| ▲ | HSO 2 hours ago | parent | next [-] |
| What if you run little snitch and block any communications from obsidian to anything? |
| |
| ▲ | elric an hour ago | parent | next [-] | | Or firejail. Or QubesOS using a dedicated VM. There are options, but it would still be nice if Obsidian had a more robust security model. | | |
| ▲ | johnisgood an hour ago | parent [-] | | I have been using firejail for most of these kind of applications, be it Obsidian, Discord, or the browser I am using. I definitely recommend people start using it. | | |
| ▲ | dotancohen 16 minutes ago | parent [-] | | Sell it to us! Why do you use specifically firejail? There are so many options, from so many different security perspectives, that analysis paralysis is a real issue. |
|
| |
| ▲ | formerly_proven an hour ago | parent | prev [-] | | Little snitch can block open(2)? | | |
| ▲ | 4ndrewl 43 minutes ago | parent [-] | | I believe they're saying it can open, it just can't send the data anywhere. Seems a little excessive, but here we are. |
|
|
|
| ▲ | esseph 3 hours ago | parent | prev | next [-] |
| If you're using a flatpak, that's not actually the case. It would have very restricted access to the point where you even would have to explicitly give it access to user /home. |
| |
| ▲ | pipes 3 hours ago | parent [-] | | So if I run their software in a container they can't access my entire filesystem. I don't think that is a security feature. It sounds like if I ever run obsidian I should be using flat seal too. | | |
| ▲ | esseph 2 hours ago | parent [-] | | Er, what? I'm not claiming it's a security feature of Obsidian, I'm saying it's a consequence of running a flatpak - and in this situation it could be advantageous for those interested. |
|
|
|
| ▲ | Tallain 2 hours ago | parent | prev | next [-] |
| Having recently read through a handful of issues on their forums, they seems to brush aside a lot of things. It's a useful tool but the mod / dev team they have working with the community could use some training. |
|
| ▲ | hsbauauvhabzb 4 hours ago | parent | prev [-] |
| To be fair, it’s no worse of a dumpsterfire than any other plug-in ecosystem. |
