https://bugs.kde.org/show_bug.cgi?id=501030
fanzhuyi...@gmail.com changed:
What |Removed |Added
----------------------------------------------------------------------------
Resolution|DUPLICATE |INTENTIONAL
--- Comment #6 from fanzhuyi...@gmail.com ---
(In reply to Fushan Wen from comment #5)
> The clipboard history can also be accessed through AT-SPI and the D-Bus
> interface, so if users really care about their privacy, they should disable
> the clipboard widget.
As discussed on matrix, access via AT-SPI can be restricted to only when the
widget is active.
As for the D-Bus interface, searching through the code, it seems that
getClipboardHistoryMenu, getClipboardContents, and getClipboardHistoryItem are
only used in the appiumtests. Thus, it is questionable whether these D-Bus
methods exposing the entire clipboard history should be enabled for the
ordinary user.
In addition, the existence of alternate security vulnerabilities doesn't
justify the introducing more security vulnerabilities.
> *** This bug has been marked as a duplicate of bug 488485 ***
IMO the referenced bug is about having the clipboard history available in the
widget, and not about having the clipboard history unconditionally available on
disk, which should be separately discussed and evaluated.
--
You are receiving this mail because:
You are watching all bug changes.
