Query: sandbox
OS: mojave
Section: 7
Format: Original Unix Latex Style Formatted with HTML and a Horizontal Scroll Bar
SANDBOX(7) BSD Miscellaneous Information Manual SANDBOX(7)NAMEsandbox -- overview of the sandbox facilitySYNOPSIS#include <sandbox.h>DESCRIPTIONThe sandbox facility allows applications to voluntarily restrict their access to operating system resources. This safety mechanism is intended to limit potential damage in the event that a vulnerability is exploited. It is not a replacement for other operating system access controls. New processes inherit the sandbox of their parent. Restrictions are generally enforced upon acquisition of operating system resources only. For example, if file system writes are restricted, an application will not be able to open(2) a file for writing. However, if the applica- tion already has a file descriptor opened for writing, it may use that file descriptor regardless of restrictions.SEE ALSOsandbox-exec(1), sandbox_init(3), sandboxd(8) Mac OS X January 29, 2010 Mac OS X
| Related Man Pages |
|---|
| sandbox(5) - centos |
| sandbox_selinux(8) - centos |
| sandbox_init(3) - mojave |
| capsicum(4) - freebsd |
| runkit_sandbox_parent(3) - php |
| Similar Topics in the Unix Linux Community |
|---|
| Sandbox 1.6 (Default branch) |
| Cron Sandbox |
| Sandbox forum for (new) members |
| Sandboxes for developers |
| Sandboxing |