http://bugs.winehq.org/show_bug.cgi?id=19182
--- Comment #50 from Artem S. Tashkinov t.artem@mailcity.com 2012-08-01 12:28:53 CDT --- (In reply to comment #47)
Well I am not a coder, but maybe I should try. May I ask why are such patches vetoed ? They ruin wine for everybody?
There's a certain policy (code style, code cleanness, adherence to Wine development principles, etc.), there's a certain vision and there's certain person (Alexander) who has his own understanding of where Wine's going. Some patches happen to be in opposition with the mentioned things.
Wine is pushing integration too hard - for example mountig home dir is quite a security risk. Why is that?
Like it's already been mentioned any Windows application can access anything your Unix user account can. To make things worse, Wine allows Windows applications to run Unix commands (so, if you have passwordless 'sudo su -' then a Windows application can potentially do pretty much anything with your computer).
Wine has never been meant to be a sandbox. If you care about security, you must check all your windows applications with the antivirus software, and ideally you should run them under a separate user account/sandbox/virtual machine.