Most simple and fast lightweight container with Fedora systemd
If you need to have a quick bash shell in sandbox with not network as well, then the most simple command I could find so far is:
sudo virt-sandbox -c lxc:/// /bin/bash
For this you will need to have libvirt-sandbox installed which you can do with the following command:
sudo yum install libvirt-sandbox
Fedora 12 demonstrates sandbox for desktop applications
<a href="http://blog.amit-agarwal.co.in/category/linux/">Bookmark this category
Security-Enhanced Linux (SELinux) specialist and Red Hat developer Dan Walsh has souped up the security mechanisms in Fedora and SELinux by adding a desktop sandbox which he’s calling “sandbox -X”. Users can run desktop applications of their choice inside his sandbox, which then protects the underlying system from any possible damage.
A browser started inside the sandbox is unable to damage the host system.
SELinux extends the standard Unix privileges concept to add a role-based privilege model which, in principal, allows a user to forbid a PDF viewer from, for example, sending email. Currently, however, SELinux is mainly used to wall off server services.
<a HREF="http://www.h-online.com/security/Fedora-12-demonstrates-sandbox-for-desktop-applications–/news/114298">read more <table CELLSPACING="0" CELLPADDING="0" WIDTH="100%">