Search for:

We aggregate information from all open source repositories to provide the most of useful open source products, from Enterprise product to small libraries across all platforms. Please search and find what you want.

firejail

Posted on by Robin Ding Leave a comment Projects
5.0

Firejail is a SUID program that reduces the risk of security breaches by restricting the running environment of untrusted applications using Linux namespaces and seccomp-bpf. It allows a process and all its descendants to have their own private view of the globally shared kernel resources, such as the network stack, process table, mount table.

Written in C with virtually no dependencies, the software runs on any Linux computer with a 3.x kernel version or newer. The sandbox is lightweight, the overhead is low. There are no complicated configuration files to edit, no socket connections open, no daemons running in the background. All security features are implemented directly in Linux kernel and available on any Linux computer.

Firejail can sandbox any type of processes: servers, graphical applications, and even user login sessions. The software includes security profiles for a large number of Linux programs: Mozilla Firefox, Chromium, VLC, Transmission etc.

You’re probably paying too much for cell phone service. Wirefly compares hundreds of plans to help you save. Enter what you need (minutes, data, texts) into Wirefly’s innovative plan comparison tools and see your savings instantly.

Post Views: 356

Related Projects:

  1. nsnam
  2. StatCVS – Stat Your Repository
  3. WtDesigner
  4. Tích cực hoá QT HT môn Toán
Website http://firejail.wordpress.com/
Tags
Features
  • Linux namespaces
  • Filesystem container: local filesystem, chroot filesystem, overlay filesystem
  • Four security filters: seccomp, protocol, noroot user namespace, Linux capabilities
  • Custom security profiles
  • Resource allocation: Linux control groups and rlimits
  • Networking support
  • Statistics and monitoring
  • Graphical user interface