https://bugs.winehq.org/show_bug.cgi?id=50797
Bug ID: 50797 Summary: Please sandbox all Wine applications on launch Product: Wine Version: unspecified Hardware: x86-64 OS: Linux Status: UNCONFIRMED Severity: normal Priority: P2 Component: wineserver Assignee: wine-bugs@winehq.org Reporter: luke.hutch@gmail.com Distribution: ---
I had a Windows virus, running in WINE, wipe a large chunk of one of my Linux hard drives before I realized it and stopped the damage. Windows antivirus software is too complex to run in WINE, so all Windows applications run in WINE may damage a user's home directory. This leads to a very uneasy feeling whenever I launch any Windows application in WINE on Linux.
There are now many ways to sandbox Linux applications, via a series of fairly new Linux kernel features, and also due to some libraries and systems built on top of these new isolation mechanisms. Please see my request here in the RedHat bug tracker:
https://bugzilla.redhat.com/show_bug.cgi?id=1179507
It would actually be much better to fix this upstream in Wine than have just one vendor (RedHat) fix this in their distribution.