Comment by dontlaugh 3 months ago It parses formats and does TLS, I’m assuming it’d be quite bad. I don’t think you can mix and match. 6 comments dontlaugh Reply jitl 3 months ago stuff that talks to "the internet" and runs as "root" seems like a good thing to build with filc. loeg 3 months ago It probably uses OS sandboxing primitives already. kragen 3 months ago In normal operation, apt has to be able to upgrade the kernel, the bootloader, and libc, so it can't usefully be sandboxed except for testing or chroots. 2 replies →
jitl 3 months ago stuff that talks to "the internet" and runs as "root" seems like a good thing to build with filc. loeg 3 months ago It probably uses OS sandboxing primitives already. kragen 3 months ago In normal operation, apt has to be able to upgrade the kernel, the bootloader, and libc, so it can't usefully be sandboxed except for testing or chroots. 2 replies →
loeg 3 months ago It probably uses OS sandboxing primitives already. kragen 3 months ago In normal operation, apt has to be able to upgrade the kernel, the bootloader, and libc, so it can't usefully be sandboxed except for testing or chroots. 2 replies →
kragen 3 months ago In normal operation, apt has to be able to upgrade the kernel, the bootloader, and libc, so it can't usefully be sandboxed except for testing or chroots. 2 replies →
stuff that talks to "the internet" and runs as "root" seems like a good thing to build with filc.
It probably uses OS sandboxing primitives already.
In normal operation, apt has to be able to upgrade the kernel, the bootloader, and libc, so it can't usefully be sandboxed except for testing or chroots.
2 replies →