Is it possible to run chromium in a SELinux sandbox?
GSO
gsowww at yahoo.co.uk
Mon Jun 20 07:46:41 UTC 2011
I've posted over on chromium-discuss
https://groups.google.com/a/chromium.org/group/chromium-discuss/browse_thread/thread/14a0fd7069d5a9de#-
no reply so far though
The main wiki page on the subject seems to be here...
https://code.google.com/p/chromium/wiki/LinuxSandboxing There seem to be
various sandbox compiling options, might one of these be an option!
Chromium seems to work OK in the sandbox with the --no-sandbox chromium
option, though with the obvious caveats...
https://groups.google.com/group/google-chrome-help-troubleshooting/browse_thread/thread/1f07597381e63a02
On 19 June 2011 17:53, Dominick Grift <domg472 at gmail.com> wrote:
>
>
> On Sun, 2011-06-19 at 13:57 +0100, GSO wrote:
> > The default build using the google repos results in chromium grinding to
> a
> > halt with a black window when run in a sandbox. Is it technically
> possible
> > to run chrome in a sandbox, would building from source fix this at all?
>
> I do not think it will work since both sandbox an chrome use namespace
> and chrome cant run if sandbox already runs in a namespace (or something
> along those lines is my understanding if this issue)
>
> > --
> > selinux mailing list
> > selinux at lists.fedoraproject.org
> > https://admin.fedoraproject.org/mailman/listinfo/selinux
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.fedoraproject.org/pipermail/selinux/attachments/20110620/e767d0e9/attachment.html
More information about the selinux
mailing list