Kicksecure ™

Download

On Computer USB Installation Intel / AMD64 ARM64 Raspberry Pi PPC64 Windows (VM) Mac Linux (VM) VirtualBox (VM) Qubes (VM) KVM (VM) Debian morph to Kicksecure More options Source Code

About

Overview Features Why Open Source? Project Activities Contributors Mission & Vision

Docs

Documentation FAQ Troubleshooting

Community

Forums Forum Best Practices Contribute

Support

Self Support First Policy Search Engines, Docs and AI Support (Limited) Reporting Bugs Contact (Restricted)

Tools Upload file Special pages Recent changes Print Version Page meta What links here Related changes Page information

Page Read Edit History Move Protection Unwatch Watch Delete Purge

User Preferences Watchlist Contributions Logout Create account Login

Donate

Thumbnails are small preview images shown for files (for example, photos, PDFs, or videos) in the file manager. In Kicksecure, thumbnails are disabled by default in its default file manager to reduce the risk from malicious files.

Thumbnail is a small preview image of a file (such as a picture, video, or document). Thumbnails make it easier to recognize and organize files in a folder.

To show thumbnails, the system must open and decode (parse) each file to create a preview. If a file is malicious or specially crafted, it can sometimes exploit bugs in the thumbnailing software or related libraries. In the worst case, this can lead to the attacker running code on your system (remote code execution), for example by chaining multiple steps such as: exploit decoder → gain user privileges → exploit local privilege escalation/sandbox escape. ^[1]

To mitigate these types of attack, the thumbnail feature is disabled by default in Kicksecure in its default file manager.

Thumbnails are not the only feature that processes files automatically. File indexing services (used for search), such as Tracker-Miner, can also parse files in the background and may be vulnerable in similar ways. For reference, see 1-Click RCE on GNOME (CVE-2023-43641) in file indexing service. At the time of writing there is no file indexing service by default in Kicksecure.

See also Untrusted Input and Attack Surface.

catfish (file searching tool) is installed by default in Kicksecure.

There does not appear to be a way to configure Catfish to disable thumbnails regardless of the view mode you choose in the hamburger menu. The "large" view is the thumbnail view, and according to the code, selecting the "large" view will enable thumbnails immediately and keep them enabled by default for subsequent starts of Catfish, until you set it back to "compact list" view.

"Compact list" view appears to be the default view, and thumbnail generation seems to be disabled in this view, so explicitly disabling thumbnails may not be necessary.

Forum discussion: Install Catfish file searching tool (Xfce DE) by default

If you want to enable thumbnails again, follow these steps:

• Click on File Manager → Edit → Preferences

• Click on Thumbnail → Tick Show thumbnails of files

Forum discussion: Thumbnails not working in new whonix lxqt

deep scan ready Documentation File indexing Previous page: deep scan ready Index page: Documentation Next page: File indexing

Kicksecure A secure by default operating system with the latest security research in place.

Dark mode

Follow us on social media

Supported by Power Up Privacy

Kicksecure is proudly supported until 2026 by Power Up Privacy, a privacy advocacy group that seeks to supercharge privacy projects with resources so they can complete their mission of making our world a better place. (Strictly subject to our sponsorship policy.)

At Kicksecure we value freedom and trust, supporting Open Source and Freedom Software

By using this website, you acknowledge you have read, understood, and agree to be bound by these agreements: Terms of Service, Privacy Policy, Cookie Policy, E-Sign Consent, DMCA, Imprint 2012- 2026 ENCRYPTED SUPPORT LLC

Your support makes
all the difference!

We believe security software like Kicksecure needs to remain Open Source and independent. Would you help sustain and grow the project? Learn more about our 14 year success story and maybe DONATE!