Y
Hacker News
new
|
ask
|
show
|
jobs
by
mike-cardwell
3323 days ago
Same way you isolate any program on Linux. SELinux, AppArmor, or running as a dedicated user.
[edit] I suppose there are containers nowadays too.
1 comments
pmlnr
3323 days ago
containers still need apparmor/selinux to be secure; a container is just a packaging method without those.
link