Today there are a small number of projects sandboxing browsers and other desktop applications using seccomp/namespaces technology. By 2014 when Firejail project was started, Chromium browser was already running on 50% of Linux desktops. Shiny new technology, the sandbox flew under the radar gaining market share. It was released in 2012, replacing their existing SELinux sandbox. The first seccomp/namespaces sandbox was built by Google for Chromium browser. ![]() ![]() Firejail is an easy to use sandbox that reduces the risk of security breaches by restricting the running environment of untrusted applications using seccomp-bpf and Linux namespaces.
0 Comments
Leave a Reply. |