A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rlimits and seccomp-bpf syscall filters, leveraging the Kafel BPF language for enhanced security.
-
Updated
Feb 14, 2024 - C++
A lightweight process isolation tool that utilizes Linux namespaces, cgroups, rlimits and seccomp-bpf syscall filters, leveraging the Kafel BPF language for enhanced security.
Jail-shell is a linux security tool mainly using chroot, namespaces technologies, limiting users to perform specific commands, and access sepcific directories.
Judging daemon for programming contests
Works with Linux namespaces througth glibc with pure python
Control plane for system processes
StemJail: Dynamic Role Compartmentalization
an Erlang library for interacting with Unix processes
A lightweight process isolation tool, requiring absolutely no privileges to run
Process isolation for Linux using namespaces, resource limits and seccomp.
A GNU/Linux specific toolkit for making and managing jails which are OS level virtualization containers. Implemented using shell scripts with chroot, linux namespaces, pivot_root and embedded into busybox.
Understand how linux containers works with practical examples
Example programs and articles to study Linux namespaces
Python library to control Linux kernel namespaces
haskell library to work with linux namespaces
Generate runlets from containerized Unix processes
Easy Application Sandboxing
A minimal rootless container runtime on Linux
Add a description, image, and links to the linux-namespaces topic page so that developers can more easily learn about it.
To associate your repository with the linux-namespaces topic, visit your repo's landing page and select "manage topics."