Firejail is a SUID program that reduces the risk of security breaches by restricting the running environment of untrusted applications using Linux namespaces and seccomp-bpf . It allows a process and all its descendants to have their own private view of the globally shared kernel resources, such as the network stack, process table, mount table. . It includes ,many sandbox profile such as for Mozilla Firefox, , Chromium, VLC, Transmission etc. This package uses latest master, or at least trying to update it on weekly bases.

This is a companion discussion topic for the original entry at