Everybody knows that allowing different applications unlimited access to each other’s data is not exactly optimal from a security point of view. While servers have enjoyed containers to isolate applications from each other, we lack a good solution for the desktop. Or do we?
There is, obviously, flatpak. Unfortunately, flatpak present itself as a “Linux application sandboxing and distribution framework”. This will not do. I already have a distribution. I’m pretty happy with it.
Seems like you have to compile. I use it only for Steam (on Arch) for now (with a symlink to .local/share/Steam for some modloaders). Though, somehow no Qt app runs on my notebook, but setup via cli was fine too.
I use bubblejail.
What’s bubble jail?
https://lmddgtfy.net/?q=bubblejail
tl;dr wrapper for bubblewrap (with GUI)
And presets.
It certainly looks like what I’d use if I had a use for it. Do you know if it’s compatible with Debian-based distros or only arch?
Seems like you have to compile. I use it only for Steam (on Arch) for now (with a symlink to .local/share/Steam for some modloaders). Though, somehow no Qt app runs on my notebook, but setup via cli was fine too.