-
Notifications
You must be signed in to change notification settings - Fork 561
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Enhancement. we need secure memory zone for started apps #4185
Comments
For what is it good? Can you explain more details what you think. How should it look like (
Will still take some time until users get this. |
I thought, when secret memory reserved somewhere by firejail sandbox,other sandbox process cannot access in nemory each other. .... |
And then we LD_PRELOAD a The sandbox protects the system from bad actions inside the sandbox. There is no protection for the sandbox. |
As long as nobody can say how we can use this, I close here. |
https://www.phoronix.com/scan.php?page=news_item&px=memfd_secret-Secret-Linux-RAM
New syscall is available for new kernel.
The text was updated successfully, but these errors were encountered: