Bug#848630: RFP: cappsule -- hypervisor which virtualizes any software on-the-fly into lightweight VMs

[Antoine Beaupré <anarcat@debian.org>]

Package: wnpp
Severity: wishlist

* Package name    : cappsule
  Version         : 1.0?
  Upstream Author : Quarkslab
* URL             : https://cappsule.github.io/
* License         : GPL-2(+?)
  Programming Lang: C
  Description     : hypervisor which virtualizes any software on-the-fly into lightweight VMs

Cappsule is a new kind of hypervisor developed by Quarkslab. Its goal
is to virtualize any software on the fly (e.g. web browser, office
suite, media player) into lightweight VMs called cappsules. Attacks
are confined inside cappsules and therefore don’t have any impact on
the host OS. Applications don’t need to be repackaged, and their usage
remain the same for the end user: it’s completely
transparent. Moreover, the OS doesn’t need to be reinstalled nor
modified.

Basically, it protects computers against remote software attacks and
makes the assumption that the hardware isn’t backdoored. If this
assumption doesn’t fulfil your expectation or if you’re concerned
about physical attacks, Qubes OS might be a better choice.

--

I am not sure I would package this myself just yet, but it could be
interesting to see where this goes. I am worried about such reviews
from a usability perspective:

https://distrowatch.com/weekly.php?issue=20161219#cappsule

There are .deb packages here:

https://cappsule.github.io/download/

.... but they seem to have serious issues, according to the review..

Source code is on the usual github silo.