jdmichaud/ZZfirejail_howto.md

Last active August 7, 2024 13:53

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/jdmichaud/6d51b3b26269c411aa8f473736048d3c.js"></script>
Save jdmichaud/6d51b3b26269c411aa8f473736048d3c to your computer and use it in GitHub Desktop.

Jail

Raw

Launch a process without networking:

unshare -n --map-user=$(id -u) --map-group=$(id -g) curl www.google.com

Raw

⚠️ Firejail is complex, buggy and behaves in unexpected ways. AVOID !

Launch a program with /some/path as you home folder:

firejail --private=/some/path/ your_program your program arguments

firejail --profile=wine --private=/tmp/wine/ wine <...>