• 1

Re: preventing file reads

Well the idea is sandbox_t domain is not able to create any files. it is only able to read/write open files handed to the sandbox. Trying to prevent unconfined users from reading sandbox files is not the goal. If you want to have confined users then you need to set those up on your system. I have written previously on how to do this.

  • 1
?

Log in