Login

u/yoyo-blue-70

How to sandbox `pip install` ?
▲ 0 r/learnpython

How to sandbox `pip install` ?

Hi,

I have enjoyed writing a bit of python a long time ago but not got into the ecosystem.

A few years ago I have forbid myself to install python and pip on my laptop because of the security implications of full access to my /home.

Now I am missing out on a lot of good tools and often look for a solution but never found a solid answer:

-venv: I could never fully understand if it is a solid isolation mechanism

- distrobox: no, this is not a sandboxing/security solution https://github.com/89luca89/distrobox/issues/28

- docker: a bit the same problem, it make everything complicated, especially if you need to really secure it

- bubblewrap: maybe I couldn't find any good post on how to manage sandboxed python environment with it

- raw chroot: maybe

- there are a lot of repos on github / projects which pretend to do that, but with very few stars and I do / should not trust them.

To be clear I am not looking to develop anything in python, just installing an app.

Thank you for you help !

u/yoyo-blue-70 — 2 days ago
▲ 14 r/zfs

Hi,

I finally did something next level stupid.

I have a zroot/home and wanted to create a new separated file system for another user but I did a doas zfs create zroot/home/bob (bob being my current own user) and my /home/bob was under zroot/home so it got nuked...

I do have a 3 weeks old snapshot of zroot/home and sync with syncthing a lot of my work but just found out I just happen to have a lot of Out of sync issues on my other syncthing node.

I was looking for a way to eventually get me out of this situation but there doesn't seem to be a straightforward way.

Any help would be greatly appreciated 🙏

reddit.com
u/yoyo-blue-70 — 17 days ago