I've been using Linux for about 2-3 years and currently run Linux Mint, but I'm thinking of switching to something else. My main question is how to run proprietary programs, like Unity Hub and VSCode, in containers while allowing them to have necessary system access. I want to make sure they can only access the files and data I permit.
I often download random projects and files that I can't verify, so I need a secure way to test them. I'm aware there are open-source alternatives, but I need to use these proprietary apps for work. If I could avoid them, I would! I'd also appreciate a solution that streamlines the process, allowing me to launch these apps with one command or a desktop icon. I'm still getting used to the terminology, so apologies if I'm mixing things up.
5 Answers
Don't forget about AppArmor! It's a great tool for managing permissions on applications, and it might fit your needs.
You could consider using virtual machines (VMs) for this purpose. They provide good isolation but can be resource-intensive.
If you want to avoid VMs, you might check out SELinux Sandboxes. They let you set rules to control which files your apps can read or write, though you’d need a RHEL/Fedora setup to use it effectively.
For securely testing suspect software, virtual machines and isolated networks are your best bet. You could even consider dedicated hardware for some cases if you suspect malware.
Creating a limited user account can help you run untrusted software more safely. Alternatively, Docker could be another option if you're comfortable with it.
That's a good point! I'll look into setting up a limited user account.