As in title. Or should I keep it? And is it even possible? Xwayland and xorg-server have as a dependency xorg-server-common.
Doesn’t make any difference from security point of view if I have xorg installed or not if I am on wayland session? Can some attacker edit some files to make some apps run as xorg within wayland session in order to get what I type?
Is there a way to list apps that use xwayland instead of wayland? If there are only some less relevant I could consider getting rid of xwayland completely. But does it make any sense?
Not particular apps but DE, even on wayland session? In what way? I see sddm is given as a dependency, so not only apps. But I believe this is transition period and eventually all DE components will be purely wayland. Is that correct?
This transition period started years ago and will last another decade at least.
Everything is possible, but that doesn’t mean it is likely.
Some “attacker” could do anything - they can use whatever means.
It is not dependent on whether these binaries exist on your system or not.
a quote from somewhere on the internet that came to mind when reading this:
Just because you’re paranoid doesn’t mean they aren’t after you.
“Misquotation is a longstanding internet tradition”
Albert Einstein
Back on track - to the title query;
No you cannot/shouldn’t remove xorg-server.
At least not on KDE, not right now.
Its maybe possible - for example if you configure your SDDM to use wayland backend and do not rely on any xorg-xwayland applications. But currently that may be unlikely.
If any of this is not familiar to you then the answer is all the more obvious - no, not yet.
