One of the problems that any user has to face in the field of security is that of applications that run unauthorized processes, being of different nature the damage that this can cause to our equipment. To protect against this in Linux we can use Firejail.
This is a SUID program that restricts and limits the environment of unreliable applications. It is capable of making a process and all those who depend on it have their own private view of the kernel resources that are shared in a general way. In this way, applications that do not have permissions cannot access this information, thus protecting the most sensitive information.
Main features and functions
It can protect any type of process and includes specific security profiles for programs such as Firefox, Chromium, VLC... these are its main features:
- File system container: local, chroot, overlay files...
- Four safety filters.
- Customized security profiles.
- Resource allocation for Linux control groups.
- Network support.
- Statistics and monitoring.
- Graphical user interface.