In both cases, you get isolation of the applications, yes. In the case of snaps, you can also isolate your system services from each other, limiting the effectiveness of attack chaining since an issue in cups (for example) won’t leave an attacker able to (for example) access your GPU.
They also decouple the application releases from your distro if you don’t use a rolling release distribution.
In both cases, you get isolation of the applications, yes. In the case of snaps, you can also isolate your system services from each other, limiting the effectiveness of attack chaining since an issue in cups (for example) won’t leave an attacker able to (for example) access your GPU.
They also decouple the application releases from your distro if you don’t use a rolling release distribution.
it’s either you’re too paranoid about the attacks, or i’m too careless