On Thu, 2016-06-09 at 05:29 +0900, Mark Shuttleworth wrote:
> On 09/06/16 04:51, Jamie Strandboge wrote:
> >
> > Once man is in the os snap, this would be comfortable for users indeed.
> >
> > I do think it worth noting that this would allow untrusted input (the man
> > page)
> > to be fed into an unconfined process ('/usr/bin/man' from the user's shell)
> Why not require "snap install man" ?
> This is indeed possible and better since man then runs under confinement. We take Gustavo's idea of creating a man page directory that snapd puts the man pages in, then we add a 'man-pages' interface to allow reading that directory. The 'man' snap 'plugs: [ man-pages ]'. What is also nice about this approach is that we can have man-page-only snaps such as those that were stripped out of the os snap, manpages, manpages-dev, translated man pages, man pages for snappy itself, etc. -- Jamie Strandboge | http://www.canonical.com
signature.asc
Description: This is a digitally signed message part
-- Snapcraft mailing list [email protected] Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/snapcraft
