So I have been looking at OpenBSDs pledge and I’ll go out on a limb and say it’s the best “sandbox” I have seen in terms of balancing security and developer usability. There are certainly other declarative capability sandboxes but I don’t think others achieved feng shui
Conversation
Security people always want you to build the most monstrous comprehensive isolation with super granular primatives that no one will ever use except
1
1
8
And then everyone will claim they will build a policy abstraction layer that is “developer friendly” but never will.
1
2
I feel like OpenBSD just saw all that shit coming and build the balanced solution so kudos to them. I will also say I am admirer of seatbelt as well
2
11
Replying to
On Android, the Layer-1 Chromium sandbox is available to every app developer by setting isolatedProcess="true" on a service. It works the same way as a normal service but can't do anything other than IPC via service binding. Incredibly easy to use but hardly anyone else does.