套件:firejail(0.9.72-2) [debports]
sandbox to restrict the application environment
Firejail is a SUID security sandbox program that reduces the risk of security breaches by restricting the running environment of untrusted applications using Linux namespaces and seccomp-bpf. It allows a process and all its descendants to have their own private view of the globally shared kernel resources, such as the network stack, process table, mount table.
其他與 firejail 有關的套件
|
|
|
|
-
- dep: libapparmor1 (>= 2.10.95)
- changehat AppArmor library
-
- dep: libc6 (>= 2.34)
- GNU C 函式庫:共用函式庫
同時作為一個虛擬套件由這些套件填實: libc6-udeb
-
- dep: libselinux1 (>= 3.1~)
- SELinux runtime shared libraries
-
- rec: firejail-profiles
- profiles for the firejail application sandbox
-
- rec: iproute2
- networking and traffic control tools
-
- rec: iptables
- administration tools for packet filtering and NAT
-
- rec: xauth
- X authentication utility
-
- rec: xdg-dbus-proxy
- filtering D-Bus proxy
-
- rec: xpra
- tool to detach/reattach running X programs
- 或者 xserver-xephyr
- nested X server
- 或者 xvfb
- Virtual Framebuffer 'fake' X server