wok view firejail/description.txt @ rev 25104

Up klavaro (1.2.2)
author Pascal Bellard <pascal.bellard@slitaz.org>
date Wed Jun 22 08:45:04 2022 +0000 (2022-06-22)
parents
children
line source
1 Firejail is a SUID program that reduces the risk of security breaches
2 by restricting the running environment of untrusted applications using
3 Linux namespaces and seccomp-bpf.
4 It allows a process and all its descendants to have their own private
5 view of the globally shared kernel resources, such as the network stack,
6 process table, mount table.
8 Written in C with virtually no dependencies, the software runs on any
9 Linux computer with a 3.x kernel version or newer.
10 The sandbox is lightweight, the overhead is low.
11 There are no complicated configuration files to edit, no socket
12 connections open, no daemons running in the background.
13 All security features are implemented directly in Linux kernel and
14 available on any Linux computer.