crtxcr
/
exile.h
1
0
Fork 0
Κώδικας Ζητήματα 14 Pull Requests 1 Κυκλοφορίες Wiki Δραστηριότητα
Painless Linux sandboxing API
10 Υποβολές 4 Κλάδοι 0 Ετικέτες 436 KiB
C 89.7%
C++ 8%
Shell 1.8%
Makefile 0.5%
Αναζήτηση αρχείου
Albert S. 6f1b27ee51 qssb_init_policy: explicit cast (for C++) 2019-11-15 21:40:56 +01:00
README.md Initial commit 2019-11-09 15:41:54 +01:00
qssb.h qssb_init_policy: explicit cast (for C++) 2019-11-15 21:40:56 +01:00

README.md

qssb (quite simple sandbox)

qssb.h is a simple header only library for easy sandboxing of applications.

It aims to provide an interface to avoid the annoying details that using Seccomp and Linux Namespaces requires.

Features

Systemcall filtering, restricting file system access, dropping privileges, isolating the application from the network, etc.

Requirements

Kernel x.y.z.

Status

No release yet, API is unstable.

Documentation

To be written

Examples

Real world project: cgit sandboxed: https://git.quitesimple.org/cgitsb

Contributing

Contributations are very welcome. Options:

  1. Pull-Request: github.com/quitesimpleorg/qssb
  2. Mail to qssb at quitesimple.org with instructions on where to pull the changes.
  3. Mailing a classic patch.

License

ISC