= Landlock
{disambiguate=Linux kernel}
https://docs.kernel.org/userspace-api/landlock.html
* generic jail:
* https://unix.stackexchange.com/questions/6433/how-to-jail-a-process-without-being-root/805147#805147
* https://stackoverflow.com/questions/4249063/run-an-untrusted-c-program-in-a-sandbox-in-linux-that-prevents-it-from-opening-f/79915566#79915566
* prevent disk write:
* https://superuser.com/questions/594322/how-to-prevent-application-from-writing-to-disk/1936162#1936162
* https://unix.stackexchange.com/questions/64642/how-to-prevent-a-process-from-writing-files/805142#805142
* prevent single directory write:
* https://unix.stackexchange.com/questions/223006/restrict-a-process-to-accessing-only-a-specific-directory/805145#805145
* https://askubuntu.com/questions/618160/server-run-a-program-allowing-it-to-write-only-on-a-specific-directory/1565143#1565143
Back to article page
