Skip to content
Better HN
Top
Best
Ask
Show
New
Jobs
Search
⌘K
0 points
aussieguy1234
5mo ago
0 comments
Save
Share
If you're on Linux, you can run AI agents in Firejail to limit access to certain folders/files.
0 comments
5 comments · 2 top-level
top
newest
oldest
nezhar
5mo ago
· 3 in thread
Looks interesting. How does this compare to a container?
subsection1h
5mo ago
Containers aren't a sandbox:
https://news.ycombinator.com/item?id=46405993
aussieguy1234
OP
5mo ago
It uses Linux kernel namespaces instead of chroot (containers are just fancy Liunx chroot)
samlinnfer
5mo ago
Ackually, “containers” on linux are usually implemented using linux namespaces instead of chroot.
ichiichisan
5mo ago
Does it allow access to GPUs and all system resources? That is unfortunately a limitation a lot of these sandboxes often have and you need to run a container or vm to get that.
j
/
k
navigate · click thread line to collapse
