mirror of
https://github.com/google/sandboxed-api.git
synced 2024-03-22 13:11:30 +08:00
177b969e8c
PiperOrigin-RevId: 238996664 Change-Id: I9646527e2be68ee0b6b371572b7aafe967102e57 Signed-off-by: Christian Blichmann <cblichmann@google.com>
20 lines
639 B
Markdown
20 lines
639 B
Markdown
# Sandbox2
|
|
|
|
Sandbox2 is a C++ security sandbox for Linux which can be used to run untrusted
|
|
programs or portions of programs in confined environments. The idea is that the
|
|
runtime environment is so restricted that security bugs such as buffer overflows
|
|
in the protected region cause no harm.
|
|
|
|
## Who is it for?
|
|
|
|
Sandbox2 is aimed to sandbox C/C++ code or whole binaries in production.
|
|
|
|
See the sandboxing options [overview page](../docs/sandbox-overview.md) to make
|
|
sure this is the type of sandboxing you are looking for.
|
|
|
|
## How does it work?
|
|
|
|
Read our [How it works](docs/howitworks.md) page to learn everything about this
|
|
technology.
|
|
|