Isolated browser sessions / sandboxed browser sessions

Hey there,

googling has not really turned up something usefull, so I dare to ask here:

What is my intent?
For work I need to operate with different Microsoft Teams Organizations. Switching between the organizations is an absolute nightmare. At some point the stored information in cookies is so messed up, that only incognito sessions or deleting the cookie history helps.
So I’m looking for a solution to create sandboxed instances of a browser for relevant WebApps, which I can launch on demand but without the enormous overhead of dedicated VMS.

I know about Qubes OS and their principle of isolating certain applications.
Is there a lean way to do what I want justas in Qubes like appvm or so?

Best,

Have you looked up containers and toolbox

You basically create small cobtainer enviroment and run everything there

My distilled expert opinion here is to not use containers, as they strip you of a lot of SELinux protections. Use such separate limited user accounts and launch the browser wrapped in Xephyr from those user accounts, and that might be a good solution, and it literally gives you a containerization that you actually need without actually using containerization.

Consider using:

  • Separate browser profiles
  • Progressive Web Apps
1 Like

Firefox can be started with the Profile Manager window:

firefox --ProfileManager