RFE: provide option to use libvirt-sanbox on Linux systems
Reported by
khym.cha...@gmail.com,
Jan 20 2017
|
||
Issue descriptionUserAgent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36 Steps to reproduce the problem: On Linux systems there should be a command line option (or separate startup script) which will use libvirt-sandbox (if available) to add an extra layer of sandboxing to Chrome. At the very least it should hide things like $HOME/.ssh, $HOME/.gnupg, etc. At best it should hide all of $HOME and then punch through holes to let Chrome function, with the holes being read-only where possible. What is the expected behavior? What went wrong? N/A Did this work before? No Chrome version: 55.0.2883.87 Channel: stable OS Version: Fedora 25 Flash Version: Shockwave Flash 24.0 r0 See these pages: * http://sandbox.libvirt.org/ * http://honk.sigxcpu.org/con/More_sandboxing.html
,
Jun 20 2018
Over to the sandbox team to evaluate feature request. |
||
►
Sign in to add a comment |
||
Comment 1 by kkaluri@chromium.org
, Jan 23 2017Labels: M-58
Status: Untriaged (was: Unconfirmed)