Security & Sandboxing of: Distro Repo vs Flatpak vs Snap

So, by using Flatpaks or snaps, you're dependent on the developer to update all dependencies. If he doesn't, your system may stay vulnerable for a long time. But all Apps are sandboxed
Installing Software from your Distro Repo is more practical because it uses the dependecies that are maintained by your distro developers. But are the Apps sandboxed in anyway?

1- Does using Apparmor conider as sandboxing? Because most popular Apps already have Apparmor profiles. What does Sandboxing with Flatpak or Snap mean?
2- Let's say I installed a software from my distro repo (which has an apparmor profile) vs from Flatpak. Which is more secure?

submitted by /u/sicktothebone
[link] [comments]

Read more here:

Content Attribution

This content was originally published by /u/sicktothebone at Linux, GNU/Linux, free software..., and is syndicated here via their RSS feed. You can read the original post over there.

%d bloggers like this: