Warning: Gnome file manager (Nautilus) can make remote requests when previewing files
-
I just found this out recently. So this isn't actually Nautilus itself but it's the file previewer (Gnome Sushi) that comes with it. If you select a file and press the spacebar, it will automatically preview the file if it supported. If the file is an audio file, it will automatically fetch album art from the web, and if the file is an HTML file, it can make third-party requests. IMHO this is a huge privacy issue. For example if you were browsing the web using Tor Browser and saved a page to view offline, and then later accidentally opened it using the file previewer, it will make requests through the clearnet, exposing your IP.
This is an open issue and I don't expect it to be fixed anytime soon, so the easiest solution is to simply uninstall Gnome Sushi (on Fedora, it is the
sushipackage).Good thing I use the Flatpak version, I’ll just remove the network permission.
-
While good for privacy, this sounds like an awful UX change for the average person. Some sort of nice toggle to disable it would be good, but removing it all together would probably annoy more people than it benefits.
Woah there! This is GNOME. You don't get choices.
-
I just found this out recently. So this isn't actually Nautilus itself but it's the file previewer (Gnome Sushi) that comes with it. If you select a file and press the spacebar, it will automatically preview the file if it supported. If the file is an audio file, it will automatically fetch album art from the web, and if the file is an HTML file, it can make third-party requests. IMHO this is a huge privacy issue. For example if you were browsing the web using Tor Browser and saved a page to view offline, and then later accidentally opened it using the file previewer, it will make requests through the clearnet, exposing your IP.
This is an open issue and I don't expect it to be fixed anytime soon, so the easiest solution is to simply uninstall Gnome Sushi (on Fedora, it is the
sushipackage).OpenSnitch, do your thing!
-
What's good to the user is what the user wants its device to do. Simple as.
-
Thunar is a much better alternative, in my opinion.
Agreed. I fucking hate Nautilus - especially the way it fucking tries to filter everything instead of jumping me to where I'm typing. It makes navigation so much slower
-
Thanks for the tip! Despite never actually using sushi, I had it installed so now I've uninstalled it to avoid using it by accident.
It’s actually pretty nice in some situations.
One thing that bites me about Loupe / Image Viewer is that it always goes through images in alphabetical order, despite the sort option you have set in nautilus.
Sushi does go through items using the same sort option set in nautilus.
Though it can be finicky with videos, so I don’t use it for that.
-
I just found this out recently. So this isn't actually Nautilus itself but it's the file previewer (Gnome Sushi) that comes with it. If you select a file and press the spacebar, it will automatically preview the file if it supported. If the file is an audio file, it will automatically fetch album art from the web, and if the file is an HTML file, it can make third-party requests. IMHO this is a huge privacy issue. For example if you were browsing the web using Tor Browser and saved a page to view offline, and then later accidentally opened it using the file previewer, it will make requests through the clearnet, exposing your IP.
This is an open issue and I don't expect it to be fixed anytime soon, so the easiest solution is to simply uninstall Gnome Sushi (on Fedora, it is the
sushipackage).Still not worse than the simple act of having to use gnome for longer than it takes to install something, anything else
-
I just found this out recently. So this isn't actually Nautilus itself but it's the file previewer (Gnome Sushi) that comes with it. If you select a file and press the spacebar, it will automatically preview the file if it supported. If the file is an audio file, it will automatically fetch album art from the web, and if the file is an HTML file, it can make third-party requests. IMHO this is a huge privacy issue. For example if you were browsing the web using Tor Browser and saved a page to view offline, and then later accidentally opened it using the file previewer, it will make requests through the clearnet, exposing your IP.
This is an open issue and I don't expect it to be fixed anytime soon, so the easiest solution is to simply uninstall Gnome Sushi (on Fedora, it is the
sushipackage).Use the image viewer used by TAILS
-
I have the sneaking suspicion this was supposed to be sarcastic, but the Internet doesn't carry "tone"... Am I correct?
-
Thunar is a much better alternative, in my opinion.
I always install thunar into my gnome.
-
Thunar is a much better alternative, in my opinion.
When in doubt, avoid anything gnome.
-
I just found this out recently. So this isn't actually Nautilus itself but it's the file previewer (Gnome Sushi) that comes with it. If you select a file and press the spacebar, it will automatically preview the file if it supported. If the file is an audio file, it will automatically fetch album art from the web, and if the file is an HTML file, it can make third-party requests. IMHO this is a huge privacy issue. For example if you were browsing the web using Tor Browser and saved a page to view offline, and then later accidentally opened it using the file previewer, it will make requests through the clearnet, exposing your IP.
This is an open issue and I don't expect it to be fixed anytime soon, so the easiest solution is to simply uninstall Gnome Sushi (on Fedora, it is the
sushipackage).Oh no! Anyways ...
-
I just found this out recently. So this isn't actually Nautilus itself but it's the file previewer (Gnome Sushi) that comes with it. If you select a file and press the spacebar, it will automatically preview the file if it supported. If the file is an audio file, it will automatically fetch album art from the web, and if the file is an HTML file, it can make third-party requests. IMHO this is a huge privacy issue. For example if you were browsing the web using Tor Browser and saved a page to view offline, and then later accidentally opened it using the file previewer, it will make requests through the clearnet, exposing your IP.
This is an open issue and I don't expect it to be fixed anytime soon, so the easiest solution is to simply uninstall Gnome Sushi (on Fedora, it is the
sushipackage).Good to know, even though I'm not a Gnome user. I wonder if it will work with torsocks.
-
I just found this out recently. So this isn't actually Nautilus itself but it's the file previewer (Gnome Sushi) that comes with it. If you select a file and press the spacebar, it will automatically preview the file if it supported. If the file is an audio file, it will automatically fetch album art from the web, and if the file is an HTML file, it can make third-party requests. IMHO this is a huge privacy issue. For example if you were browsing the web using Tor Browser and saved a page to view offline, and then later accidentally opened it using the file previewer, it will make requests through the clearnet, exposing your IP.
This is an open issue and I don't expect it to be fixed anytime soon, so the easiest solution is to simply uninstall Gnome Sushi (on Fedora, it is the
sushipackage).I went and checked out Thunar because of this post, and regardless of the original intention, I have found a file manager I much prefer as a result. Thank you.
-
Woah there! This is GNOME. You don't get choices.
Maybe we will get an extension
-
I just found this out recently. So this isn't actually Nautilus itself but it's the file previewer (Gnome Sushi) that comes with it. If you select a file and press the spacebar, it will automatically preview the file if it supported. If the file is an audio file, it will automatically fetch album art from the web, and if the file is an HTML file, it can make third-party requests. IMHO this is a huge privacy issue. For example if you were browsing the web using Tor Browser and saved a page to view offline, and then later accidentally opened it using the file previewer, it will make requests through the clearnet, exposing your IP.
This is an open issue and I don't expect it to be fixed anytime soon, so the easiest solution is to simply uninstall Gnome Sushi (on Fedora, it is the
sushipackage).People say Qt sucks. But there is literally no better alternative to the KDE environment. Either Dolphin or tons of other apps just have more features and settings compared to GTK ones.
Unsure if they have the same issue
-
Agreed. I fucking hate Nautilus - especially the way it fucking tries to filter everything instead of jumping me to where I'm typing. It makes navigation so much slower
I hate, when programs like Firefox or anything else uses something like Nautilus to pick the file.
I can't even press ctrl+L to change the URL of my filesystem where I want to be. I need a lot of clicky GUI to get to the desination...
-
Thunar is a much better alternative, in my opinion.
Pcmanfm? Nemo? However, if one does not need a GUI I would suggest ranger, nnn or alike.
-
System shared this topic on
