[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#777671: RFP: firejail -- SUID sandbox that reduces the risk of security breaches by restricting the running environment of untrusted applications using namespaces



Package: wnpp
Severity: wishlist

* Package name    : firejail
  Version         : 0.9.20
  Upstream Author : netblue30 <netblue30@yahoo.com>
* URL             : https://l3net.wordpress.com/projects/firejail/
* License         : GPL v2
  Programming Lang: C
  Description     : SUID sandbox that reduces the risk of security breaches by
restricting the running environment of untrusted applications using namespaces
and seccomp-bpf
..
SUID security sandbox program that reduces the risk of security breaches by
restricting the running environment of untrusted applications using namespaces
and seccomp-bpf. It allows a process and all its descendants to have their own
private view of the globally shared kernel resources, such as the network
stack, process table, mount table.
..
Can sandbox any type of processes: servers, graphical applications, and even
user login sessions. Written in C with virtually no dependencies, it should
work on any Linux computer with a 3.x kernel version.



There is no other software that do this in the repos that Im aware of


Reply to: