Which Sandboxing application is more secure?

Everything about X, Gnome, KDE, ... and everything running on it

Re: Which Sandboxing application is more secure?

Postby hack3rcon » 2020-10-19 10:09

Head_on_a_Stick wrote:
bester69 wrote:snaps or flatpaks seems the easy and secure way to go

Please read the article to which I linked in my last post — the "sandboxing" offered by flatpak is utter rubbish: almost all applications allow complete access to the files in your home directory so https://xkcd.com/1200/ applies. Snaps are even worse because Comical's Snap Store isn't vetted at all: https://www.omgubuntu.co.uk/2018/05/ubuntu-snap-malware

hack3rcon wrote:You can use SELinux as a sandboxing too

SELinux can be used to restrict permissions but that's not the same as a sandbox.

That seems to use Seccomp BPF for isolation so it works in the same way as firejail.

hack3rcon wrote:I want to run Telegram in a Sandboxing program

If you're paranoid use a VM but Telegram is available as a (reproducible) Debian package so firejail is probably good enough (IMO).

Is Mbox lighter than firejail and offer same features?
Posts: 473
Joined: 2015-02-16 09:54


Return to Desktop & Multimedia

Who is online

Users browsing this forum: No registered users and 13 guests