BuckleUp is a GUI for interfacing with the sandbox-exec command in Mac OS X (introduced in 10.5 Leopard). The command can be used to launch a program and limiting it's capabilities to those that are specified in the sandbox config (entitlements).
The sandbox feature in Mac OS X is referred to as "Seatbelt" (seatbelt.kext) by Apple, therefore the name BuckleUp.
All information about the structure of the seatbelt config strings/files is taken from the awesome Apple Sandbox Guide v1.0 from fG! You can get the PDF explaining all the bits and bolts here: http://reverse.put.as/2011/09/14/apple-sandbox-guide-v1-0/ Thanks for making such a guide and sharing it with us!
More to follow...
Copyright 2011 Martin Planer
Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at
Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.