firejail

easy to use SUID sandbox program

TLDR

Integrate firejail with your desktop environment

$ sudo firecfg
copy


Open a restricted Mozilla Firefox
$ firejail [firefox]
copy


Start a restricted Apache server on a known interface and address
$ firejail --net=[eth0] --ip=[192.168.1.244] [/etc/init.d/apache2] [start]
copy


List running sandboxes
$ firejail --list
copy


List network activity from running sandboxes
$ firejail --netstats
copy


Shutdown a running sandbox
$ firejail --shutdown=[7777]
copy

Copied to clipboard