snippetbashTip
firejail — Securely sandboxes processes to containers using built-in Linux capabilities. More information: <htt
Viewed 0 times
commandclisecurelyusingfirejailsandboxesprocessescontainers
linux
Problem
How to use the
firejail command: Securely sandboxes processes to containers using built-in Linux capabilities. More information: <https://manned.org/firejail>.Solution
firejail — Securely sandboxes processes to containers using built-in Linux capabilities. More information: <https://manned.org/firejail>.Integrate firejail with your desktop environment:
sudo firecfgOpen a restricted Mozilla Firefox:
firejail {{firefox}}Start a restricted Apache server on a known interface and address:
firejail --net={{eth0}} --ip={{192.168.1.244}} {{/etc/init.d/apache2}} {{start}}List running sandboxes:
firejail --listList network activity from running sandboxes:
firejail --netstatsShutdown a running sandbox:
firejail --shutdown={{7777}}Run a restricted Firefox session to browse the internet:
firejail --seccomp --private --private-dev --private-tmp --protocol=inet firefox --new-instance --no-remote --safe-mode --private-windowUse custom hosts file (overriding
/etc/hosts file):firejail --hosts-file={{~/myhosts}} {{curl http://mysite.arpa}}Code Snippets
Integrate firejail with your desktop environment
sudo firecfgOpen a restricted Mozilla Firefox
firejail {{firefox}}Start a restricted Apache server on a known interface and address
firejail --net={{eth0}} --ip={{192.168.1.244}} {{/etc/init.d/apache2}} {{start}}List running sandboxes
firejail --listList network activity from running sandboxes
firejail --netstatsContext
tldr-pages: linux/firejail
Revisions (0)
No revisions yet.