Firejail Linux


Firejail is a SUID or SETUID program for establishing a more restrictive environment using Linux namespaces for applications that are not entirely reliable


SUID program to reduce risks in security breaches

August 23, 2021
7 / 10

One of the problems that any user has to face in the field of security is that of applications that run unauthorized processes, being of different nature the damage that this can cause to our equipment. To protect against this in Linux we can use Firejail.

This is a SUID program that restricts and limits the environment of unreliable applications. It is capable of making a process and all those who depend on it have their own private view of the kernel resources that are shared in a general way. In this way, applications that do not have permissions cannot access this information, thus protecting the most sensitive information.

Main features and functions

It can protect any type of process and includes specific security profiles for programs such as Firefox, Chromium, VLC... these are its main features:

  • File system container: local, chroot, overlay files...
  • Four safety filters.
  • Customized security profiles.
  • Resource allocation for Linux control groups.
  • Network support.
  • Statistics and monitoring.
  • Graphical user interface.
Elies Guzmán

With a degree in History, and later, in Documentation, I have over a decade of experience testing and writing about apps: reviews, guides, articles, news, tricks, and more. They have been countless, especially on Android, an operating system...

Shay O’Toole

Shay O’Toole