3. Hardening my Void Install

Hardening my Void Install

Hardening against an interactive determined actor is too much trouble for uncertain reward. Hardening against scripted attackers is doable.

Use wayland because why bother with trying to isolate x11.

And use bubblewrap or minijail to jail all applications that parse input not controlled by you directly (players, browsers, viewers etc)

Evict all network interfaces from the default network namespace, if you end up running something malicious unjailed the odds that it will malfunction (or just not be made to deal with) in the absence of an internet connection are good.

Things that need internet connection should join your physical interface network namespace or better yet make namespaces containing just a VPN interface. Through the jail setup script of course.

Use musl, setup a separate void rootfs which will be referenced in the jail setups so that your host doesn't even have most software installed. You can install stuff with a jailed xbps there.

/r/voidlinux Thread
Previous
Next

Recently removed from /r/voidlinux

Need help on an install issue Been thinking of replacing Artix with Void on my laptop... Gentoo user, migrating to void Why is Void special for you?

More Random Comments

trying to get better, but hitting a wall TIL In 1900, a German mathematician outlined a list of 23 unsolved problems in mathematics that he hoped would be solved in the 20th century. As of 2015, only 10 have been answered. [PSA] For those who have recently ordered from SleepForever [WP] A woman slips into a coma during the birth of her first son, never meeting the child, who dies within hours. The father adopts a child to cope with his pain: you. Your adopted father later dies. You must now break the news to your mother that you’re adopted. [MISC] friendly reminder that DeeJ is a person as not some words on a computer screen. [WP] Your wife's murderer is the police sketch artist. Hey all, quick hello and some questions Craziest thing you've had to handle when high. What do you think of Israel and the way it is currently run? Bs At School We did it reddit! I am looking for [PAID] concept artists to draw some more illustrations for me. TIL In Old English, 'man' was a gender neutral term. Males were known as 'wermen' and females were known as 'wifmen'. What is the creepiest experience that has ever happened to you or somebody else? [serious] [NSFW] Delay in a nested 'for' loop.