3
1
I using Sandboxie on my Windows machines. I would like something similar for my Ubuntu boxes.
Any recommendations for getting something similar?
I do remember seeing something about using chroot and some special filesystem type to create an similar sandbox functionality, but now I can't find the page.
pcapademic
Posted 2009-07-20T12:06:31.933
Reputation: 3 283
2
I found an article similar to what I had seen before:
Create a Linux user sandbox with chroot and unionfs
Now I just need to figure out
pcapademic
Posted 2009-07-20T12:06:31.933
Reputation: 3 283
1
You can try two things:
Pawka
Posted 2009-07-20T12:06:31.933
Reputation: 561
0
I just stumbled on a fairly recent project called Arkose, which is like a simplified Sandboxie. As well as cli, there is a gui and a plugin for Nautilus. And a PPA if you use Ubuntu. I tried it out and it seems okay, Chrome wouldn't work in it for me but Firefox and Opera did.
mvario
Posted 2009-07-20T12:06:31.933
Reputation: 251
0
I think that you were thinking about something like DebootstrapChroot
The experience is going to be much more manual than your windows experience.
Sam Saffron
Posted 2009-07-20T12:06:31.933
Reputation: 973
0
Chroot jail Here's a good page on it
bobby
Posted 2009-07-20T12:06:31.933
Reputation: 399
A chroot jail is only part of the solution. I do remember that much, but chroot doesn't provide all the needed functionality. – pcapademic – 2009-07-20T22:14:51.447
0
You could always just use your live CD!
Peter Turner
Posted 2009-07-20T12:06:31.933
Reputation: 1 341
0
Don't know Sandboxie in detail - but on Unix that is rather the default. Regular users cannot change the system or write outside their home file space, temp files are deleted when they log out.
It sounds like on unix you just want to simply create a 'test' user to do this.
For more complex uses like allowing programs to run as root (not as common on Unix) while still be restricted you can use a 'chroot jail'.
Martin Beckett
Posted 2009-07-20T12:06:31.933
Reputation: 6 073
Unix users keep saying that "you can't write outside your home space, so the system is safe" but a program could still erase everything in my /home ! I can reinstall the system, I can't replace my files ... – Manu – 2009-08-03T21:08:54.927
You generally build and install new software as a 'test' user – Martin Beckett – 2009-08-04T20:23:48.180
1The thing about Sandboxie I like the most is that I can install a new application, test and see how it interacts with my other applications and settings, and then I can just erase the sandbox if I want. – pcapademic – 2009-07-21T20:12:19.733
If the app can be installed as a regular user then it is normally just under the home directory. If it needs to be installed system wide (by root) then you can use a chroot jail. You can generally get chroot todo anything you want but it sometimes takes a bit of work - the default is to not allow anything for security reasons.
Another alternative is to use the ubuntu package manager to wind back after an install. – Martin Beckett – 2009-07-21T22:54:57.687
What happens if you try to install an new application as "guest"? – pcapademic – 2009-07-21T19:26:25.753
sudo is disabled for guest session, so you will not able to use apt tools. But if there is no need use global system resources (no need root permissions), I think user can install such software (actualy I'm not sure). – Pawka – 2009-07-22T05:38:03.287