Lines Matching full:sandbox
1 .TH SANDBOX "8" "May 2010" "sandbox" "User Commands"
3 sandbox \- Run cmd under an SELinux sandbox
5 .B sandbox
9 .B sandbox
16 application within a tightly confined SELinux domain. The default sandbox domain only allows applications the ability to read and write stdin, stdout and any other file descriptors handed to it. It is not allowed to open any other files. The \-M option will mount an alternate homedir and tmpdir to be used by the sandbox.
19 .I policycoreutils-sandbox
21 .B sandbox \-X
22 allows you to run X applications within a sandbox. These applications will start up their own X Server and create a temporary home directory and /tmp. The default SELinux policy does not allow any capabilities or network access. It also prevents all access to the users other processes and files. Files specified on the command that are in the home directory or /tmp will be copied into the sandbox directories.
34 Copy this file into the appropriate temporary sandbox directory. Command can be repeated.
38 appropriate temporary sandbox directories.
41 Specify the MLS/MCS Security Level to run the sandbox with. Defaults to random.
44 Create a Sandbox with temporary files for $HOME and /tmp.
50 Use alternate sandbox type, defaults to sandbox_t or sandbox_x_t for \-X.
73 Specifies the windowsize when creating an X based Sandbox. The default windowsize is 1000x700.
77 .B sandbox \-X.
81 Create an X based Sandbox for gui apps, temporary files for
85 Set the DPI value for the sandbox X Server. Defaults to the current X Sever DPI.
88 Use control groups to control this copy of sandbox. Specify parameters in /etc/sysconfig/sandbox. Max memory usage and cpu usage are to be specified in percent. You can specify which CPUs to use by numbering them 0,1,2... etc.
91 sandbox. By default applications executed within the sandbox will not
