Vault of Knowledge - A place where I take notes

T

Toggle Directory Tree Pane

Toggle Table of Contents Pane

x

Money

Image Colour Appearance Models

Printers

Sound Engineering

Metaphysics

Combustion

Astronautical Engineering

Underwater Construction

Abstractions of Electronics Engineering

Marine Engineering

Strength to Weight Ratio

Mechanical Manufacturing

VPS Security

Generative Modelling Language

Flutter Tools

Chrome Extensions

AR Frameworks

NumPy
SciPy

RAID

Smartphones

Paradoxes

Spintronics

Dynamic Range

Standards Organizations

Placeholder Note

Placeholder Note

India Pakistan Current Affairs

Russo-Ukraine Conflict

Why Conservative Arguments are Loaded

Index of Studying Social Problems

Trying to Understand Family Trees

Placeholder Note

Knitting and Crocheting

Do Martial Arts Like Tai Chi Work

Sailing

Scuba Diving

Audiophile Stuff

Timeline of Geological History

Using Jira

For Visual Content

Home / 🗃️ unorganized / general notes / Alternatives sandboxes to plain chroot

Alternatives sandboxes to plain chroot

Alternatives sandboxes to plain chroot
Bubblewrap (bwrap)
Faketree
Concepts

Bubblewrap (bwrap)

Has security sandboxing features, and is used by Flatpak. Better than chroot.

TODO: How to use

Faketree

Saw a medium article related to use in EDA.

Concepts

unshare
- Used to set namespaces and make them unavailable to main system
Kernel namespaces
- Types (from 5.6)
  - Mount (mnt)
  - Process ID (pid)
  - Inter-Process Communications (ipc)
  - UNIX Time Sharing (UTS)
  - User ID (user)
  - Control Groups (cgroup)
  - Time
Generic Sandboxes
- Flatpak
  - Uses bwrap, etc.
  - Has runtimes
  - Flatseal can manage permissions
- AppImages
  - Uses FUSE

Backlinks

how to do a chroot

Left-click: follow link, Right-click: select node, Scroll: zoom

x