« earlier | later » Page 1 of 1
tsgates/mbox: A lightweight sandbox tool for non-root users
seccomp-based syscall redirection (it's a bit more than just sandboxing; you could do debug/trace stuff with this technique too).
to linux sandbox seccomp security software syscall ... on 28 February 2016
A worked example of setting up seccomp system call filters.
« earlier | later » Page 1 of 1
tasty by Adam Sampson.