Articles & Reviews
News Archive
Forums
Premium
Contact
Categories

Computers Display Drivers Graphics Cards Linux Gaming Memory Motherboards Processors Software Storage Operating Systems Peripherals

The First Fully-Sandboxed Linux Desktop App Is...

Written by Michael Larabel in GNOME on 17 February 2015 at 08:53 AM EST. 10 Comments

GNOME

The GNOME-aligned open-source crew working on sandboxing Linux applications has made progress and they do have their first application sandboxed.

GNOME has been working on sandboxing Linux applications using Wayland (for better security over X11), KDBUS for IPC, SELinux, cgroups, etc. A goal has been to have a preliminary test version of the sandboxing technology ready for GNOME 3.16.

Alexander Larsson has written a blog post this morning about the first fully sandboxed Linux desktop app. This first desktop app is... the open-source Neverball. Neverball is the ball-rolling puzzle game. This title was chosen first for sandboxing for being a simple application and the game having very little interaction with the rest of the system.

The sandbox is independent of the host distribution, has no access to system/user files aside from the runtime and application itself, has no hardware access besides DRI for OpenGL rendering, has no network access, cannot access other system processes, only obtains input via Wayland, can only supply audio to PulseAudio, etc.

Read more via Larsson's blog post and check out his sandbox demo video above.

10 Comments

Related News

GNOME Mutter 46.1 Brings Explicit Sync, Better NVIDIA Hybrid GPU Acceleration

GNOME Working To Make Key Rack A Viable Password Manager, Better Printing For Flatpaks

GTK4 Continues Improving Graphics Offload & DMA-BUF Integration

GNOME Mutter Lands NVIDIA Hybrid GPU Copy Acceleration

GNOME Improving Integration With systemd-homed, Mockups For An OS Installer

GNOME's Mutter Lands DRM Sync Obj v1 Support For Explicit Sync On Wayland

About The Author

Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week

Rust-Written LAVD Kernel Scheduler Shows Promising Results For Linux Gaming

Former Nouveau Lead Developer Joins NVIDIA, Continues Working On Open-Source Driver

Fedora Linux 40 Cleared For Release Next Week

AMD: "Additional Parts Of The Radeon Stack To Be Open Sourced Throughout The Year"

Fedora Linux 40 Available For Download As A Wonderful Upgrade

Mozilla Finally Begins Offering Firefox ARM64 Linux Binaries

openSUSE Factory Achieves Bit-By-Bit Reproducible Builds

Linux 6.10 Preps A Kernel Panic Screen - Sort Of A "Blue Screen of Death"