Fedora 12 demonstrates sandbox for desktop applications

2010-01-03 1 min read Linux
<a href="http://blog.amit-agarwal.co.in/category/linux/">Bookmark this category Security-Enhanced Linux (SELinux) specialist and Red Hat developer Dan Walsh has souped up the security mechanisms in Fedora and SELinux by adding a desktop sandbox which he&#8217;s calling “sandbox -X”. Users can run desktop applications of their choice inside his sandbox, which then protects the underlying system from any possible damage. A browser started inside the sandbox is unable to damage the host system. SELinux extends the standard Unix privileges concept to add a role-based privilege model which, in principal, allows a user to forbid a PDF viewer from, for example, sending email. Continue reading