All apps are granted camera access by default
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
elementary OS |
Confirmed
|
Wishlist
|
Unassigned |
Bug Description
In the same architectural spirit as:
https:/
https:/
there should be a camera enable/disable switch/button at the top of every app window, which is disabled by default. Or do it like VMWare and have a dropdown menu. Whatever you like. All that matters is that the functionality is easily accessible.
Why? Because the user owns the machine, not the app. Want your security camera app to watch your lobby? No problem, disable its network access so it can't send the images anywhere. Want to play a game on the net? Fine, turn on network access but shut off the camera and microphone so it can't invade your life. You get the idea.
If you implement all 3 of these wishlist items (microphone, network, and camera), you will eliminate almost all the same threats that heavy handed virtual machines eliminate, with much less overhead, latency, and inconvenience. It would make Elementary stand above the crowd of less security-conscious Linux distros, without sacrificing ease-of-use.
I don't think adding a switch in every window makes sense as this would be unenforceable, but we should sandbox access to hardware inputs like the camera and probably centrally manage this from the Security & Privacy settings