Sandbox the Unsafe Browser

Originally created by Tails on #5422 (Redmine)

When a container-based solution becomes a viable, secure solution for creating isolated jails, the chroot approach used by the unsafe browser will be easily adaptable to that for added security by isolation.

Alternatively, AppArmor confinement should be considered.

Edited Jul 23, 2022 by intrigeri

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information