0

And if that is more or less possible, how can it be done? Using firejail is probably part of it but not the full story.

I'd like to install Wine to be able to play Windows games that don't have native GNU/Linux support on my Debian11/KDE machine with Wayland. I don't trust officially released closed-source game code plus just having Wine installed could also introduce some new vulnerabilities (see for example here).

For example, is it possible to create a virtual machine (along with firejail and some specific firejail-profile adjustments) for gaming with no substantial loss of performance? For example, by using VFIO&QEMU / PCI passthrough via OVMF (is there any preconfigured tool ready to be used?). Somehow using docker or a LXC container, chroot, or creating a new user may also be part of this.

Which way would be best (or rather meets this requirement) security- and performance-wise and how to take care of remaining new vulnerabilities?

I'd like to use Lutris (and/or PlayOnLinux).

mYnDstrEAm
  • 4,008
  • 13
  • 49
  • 108
  • You need to evaluate your threat model if you don't feel comfortable running closed-source games, but still do it, and even try to get it to run on another OS. Too broad of a question, will attract opinionated answers ("best for security and performance" isn't specific or measurable). – Panki Aug 19 '22 at 14:25
  • I'm not doing it so far but would probably like to if it was possible to mitigate Wine security issues which this question is about. I don't try to get it run on another OS, I'll stay with Debian. It's measurable / not opinion-based in terms of that it should solve all known newly introduced security vulnerability, maybe I wrote it badly but it's about _any_ way that meets this requirement - I do suspect that currently there's only one or fewer basic ways to achieve that. – mYnDstrEAm Aug 19 '22 at 14:31

0 Answers0