📑 Table of Contents
Firejail
Written inC
LicenseGPL-2.0 license
Websitefirejail.wordpress.com Edit this on Wikidata
Repository

Firejail is a security sandbox tool designed to enhance the security of applications by isolating them in a sandbox environment. It is a free and open-source software available for Linux-based operating systems. Firejail was created by Antti Kantee and is maintained by a community of developers.[1][2][3]

Features

edit
  • Sandboxing: Firejail allows users to run applications in isolated environments, preventing them from accessing sensitive files and system resources.
  • SELinux Integration: It integrates with SELinux (Security-Enhanced Linux) to provide robust security policies.
  • Resource Limitation: Firejail can limit the resources (CPU, memory, etc.) that a sandboxed application can use.
  • Network Isolation: It can restrict network access for sandboxed applications, enhancing security against network-based attacks.
  • Filesystem Access Control: Firejail provides fine-grained control over which files and directories an application can access.

Usage

edit

Firejail is typically used to run potentially untrusted applications or scripts in a controlled environment. It can be invoked directly from the command line or configured to run specific applications automatically.[4][5]

References

edit
  1. ^ "Firejail - ArchWiki". wiki.archlinux.org. Retrieved 2024-11-08.
  2. ^ "Firejail — Gentoo Wiki". wiki.gentoo.org. Retrieved 2024-11-08.
  3. ^ "Secure Your Applications with Firejail: A Linux Sandbox Tutorial". DEV Community. 2023-05-28. Retrieved 2024-11-08.
  4. ^ "FireJail — краткое и ознакомительное практическое руководство". www.linux.org.ru (in Russian). 2022-11-30. Retrieved 2024-11-08.
  5. ^ Wallen, Jack (2016-06-17). "Lock Up Your Untrusted Applications in Firejail". Linux.com. Retrieved 2024-11-08.
Stub icon

This security software article is a stub. You can help Wikipedia by adding missing information.

Stub icon

This free and open-source software article is a stub. You can help Wikipedia by adding missing information.

📚 Artikel Terkait di Wikipedia

Seccomp

syscall hole". Linux Kernel Mailing List. Retrieved 2013-08-02. "Firejail". Firejail. Retrieved 2016-11-26. Evans, Chris (2012-07-04). "Chrome 20 on Linux

Sandbox (computer security)

namespaces features. Notably used by Systemd, Google Chrome, Firefox and Firejail. Android was one of the first mainstream operating system to implement

Cgroups

Indirectly through other software that uses cgroups, such as Docker, Firejail, LXC, libvirt, systemd, Open Grid Scheduler/Grid Engine, and Google's developmentally

Sailfish OS

open sourced, with the announcement that more parts are to be followed. Firejail (Sailjail) is used for security sandboxing of native applications since

Linux Kodachi

integrates PeerGuardian for hiding IP addresses in P2P networks and uses the Firejail sandbox for securely running applications in an isolated environment.