|Albert S. 23f697bcc9||1 day ago|
|README.md||1 day ago|
|qssb.h||1 day ago|
qssb.h is a simple header only library that provides an interface to sandbox applications on Linux. Using Seccomp and Linux Namespaces for that purpose requires some knowledge of annoying details which this library aims to abstract away as much as possible.
No release yet, API is unstable.
Kernel >=3.17 sys/capabilities.h header. Depending on your system, libcap might be needed for this.
You can thank a Debian-specific patch for that. In the future, the library may check against that. Execute echo 1 > /proc/sys/kernel/unprivileged_userns_clone to disable that patch for now.
To be written
Contributions are very welcome. Options: