Open attachments through portal in Thunderbird
Right now, Thunderbird AppArmor profile allows it to run any program in /usr/bin/
(through sanitized_helper
). The rationale for that is the ability for users to open attachments. See #11964 (closed) for historical data.
We want to open attachments using a portal. When we can do this, we could forbid Thunderbird to allow arbitrary executable files, which will improve the hardening a lot.
Edited by boyska