GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE

  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

Conversation

Notices

  1. Embed this notice
    feld (feld@friedcheese.us)'s status on Tuesday, 04-Mar-2025 14:20:58 JST feld feld
    in reply to
    • varx/tech
    @varx Yeah you could, and I just remembered I didn't write a blog post to document how I improved security of a docker container with this. That's a worthwhile thing to do if you can
    In conversation about 10 months ago from friedcheese.us permalink
    • Embed this notice
      varx/tech (varx@infosec.exchange)'s status on Tuesday, 04-Mar-2025 14:20:59 JST varx/tech varx/tech

      I've seen #AppArmor used primarily to *harden* the security of an existing program. Is it also reasonable to use it to *sandbox* known-malicious code? Or are other methods required?

      (I assume you also want ulimit or similar on the side, but that's to prevent resource consumption attacks rather than sandbox escapes.)

      #Linux #sandboxing

      In conversation about 10 months ago permalink

Feeds

  • Activity Streams
  • RSS 2.0
  • Atom
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.