alexanoid
Reputation: 25770
jvm sandbox for java application
Is it possible to implement some kind of JVM sandbox for running application ? I'd like to restrict access of this application for example to files IO, network, etc.
Is any way to control these resources access for running app inside of JVM in this sandbox ?
Upvotes: 2
Views: 2588
Answers (3)
the8472
Reputation: 43042
In addition to the JVM's security manager you can also use OS-specific security mechanisms. The simplest is running the JVM under a separate user.
More advanced isolation techniques exist on various platforms. For example linux has seccomp-bpf, namespaces, selinux, capabilities and various other things. Firejail and systemd-nspawn make use of them.
Upvotes: 2
Related Questions
- Create java sandbox based on security policies
- How do I create a Java sandbox?
- Is it possible to sandbox just a Runnable
- Sandboxed scripting language for the JVM?
- How to sandbox java using Graalvm
- How to build a sandbox environment
- Java sandbox for running multiple JVM platform languages
- Sandbox a java applet
- Sandbox JVM to secure server from untrusted sources
- Multiple Sandboxes in the same JavaVM