For the latest in jailing untrusted applications away from your display and your data, and all without needing any virtual machine support, here are a few notes from the Sandboxing The Herbert Kilpin talk…
The Firejail manual and tutorial:
- https://firejail.wordpress.com
- https://www.linuxlinks.com/essential-system-tools-firejail-security-sandboxing/
Firewarden script:
For my own use I slightly modified the script to place the temporary home not in /tmp but in ~/tmp and added a mandatory “-no-remote” option for firefox.
The most up to date profiles are at:
These might be necessary if you combine a stable but old distro and significantly newer versions of selected applications (like Nigel’s Antix). However, in that case I’d suggest upgrading Firejail to the latest version as well.
Stay safe!
Leave a Reply
You must be logged in to post a comment.