<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"><html><head><meta content="text/html;charset=UTF-8" http-equiv="Content-Type"></head><body ><div style='font-size:10pt;font-family:Verdana,Arial,Helvetica,sans-serif;'><div id="message"></div>Martin,<div><br></div><div>The linked firejail tutorial makes sense to me. I haven't checked zoom profile though. On some systems you might experience problems with software installed in /opt and launched from a script. You need to make sure the /opt path is not forbidden in the sandbox.</div><div>Used like this the application will still be able to compromise the audio and graphics stack and act as a keylogger. Won't have direct access to your private keys and other secrets though.</div><div>I think the refusal to work with sound on Firefox is an artificial one. Teams does that as well.<br id="br3"><br id="br3"><div id="signature"><div>--<br></div><div><a href="mailto:vadim@mankevich.co.uk">vadim@mankevich.co.uk</a> PGP key fingerprint<br></div><div>0xC046022A3A91455AF0C9BB2404BF882B1905C772<br></div><div><div>Retrieve from hkps://pgp.mit.edu<br></div><div>or <a href="https://keybase.io/vmankevich">https://keybase.io/vmankevich</a><br></div></div></div><div id="content"><br> ---- On Mon, 08 Feb 2021 14:06:57 +0000 <b> nottingham@mailman.lug.org.uk </b> wrote ----<br><br><blockquote style="border-left: 1px solid rgb(204, 204, 204); padding-left: 6px; margin-left: 5px;"><div>Folks,<br><br>Unfortunately, we can't easily get away from Zoom for virtual conferences.<br><br>My experience of using Firefox for a Zoom meeting is that the Zoom <br>servers refuse to connect any audio. (What of html5 and standards??)<br><br>Hence, there is the untrusted 'app'...<br><br><br>See:<br><br><a href="https://ar.al/2020/06/25/how-to-use-the-zoom-malware-safely-on-linux-if-you-absolutely-have-to/" target="_blank">https://ar.al/2020/06/25/how-to-use-the-zoom-malware-safely-on-linux-if-you-absolutely-have-to/</a><br><br><br>Anyone with experience of Zoom locked in firejail?<br><br>Or does such nefarious-ware require a sacrificial virtual machine for <br>any virtual meeting??<br><br><br>(Hopefully our group security expert can comment? ;-) :-) )<br><br>Cheers,<br>Martin<br><br>-- <br>Nottingham mailing list<br><a href="mailto:Nottingham@mailman.lug.org.uk" target="_blank">Nottingham@mailman.lug.org.uk</a><br><a href="https://mailman.lug.org.uk/mailman/listinfo/nottingham" target="_blank">https://mailman.lug.org.uk/mailman/listinfo/nottingham</a></div></blockquote></div></div></div><br></body></html>