← Back to context Comment by dontlaugh 6 days ago It parses formats and does TLS, I’m assuming it’d be quite bad. I don’t think you can mix and match. 6 comments dontlaugh Reply jitl 6 days ago stuff that talks to "the internet" and runs as "root" seems like a good thing to build with filc. loeg 6 days ago It probably uses OS sandboxing primitives already. kragen 6 days ago In normal operation, apt has to be able to upgrade the kernel, the bootloader, and libc, so it can't usefully be sandboxed except for testing or chroots. 2 replies →
jitl 6 days ago stuff that talks to "the internet" and runs as "root" seems like a good thing to build with filc. loeg 6 days ago It probably uses OS sandboxing primitives already. kragen 6 days ago In normal operation, apt has to be able to upgrade the kernel, the bootloader, and libc, so it can't usefully be sandboxed except for testing or chroots. 2 replies →
loeg 6 days ago It probably uses OS sandboxing primitives already. kragen 6 days ago In normal operation, apt has to be able to upgrade the kernel, the bootloader, and libc, so it can't usefully be sandboxed except for testing or chroots. 2 replies →
kragen 6 days ago In normal operation, apt has to be able to upgrade the kernel, the bootloader, and libc, so it can't usefully be sandboxed except for testing or chroots. 2 replies →
stuff that talks to "the internet" and runs as "root" seems like a good thing to build with filc.
It probably uses OS sandboxing primitives already.
In normal operation, apt has to be able to upgrade the kernel, the bootloader, and libc, so it can't usefully be sandboxed except for testing or chroots.
2 replies →