Techly NewsGet the app

Get the latest tech news

'Landrun': Lightweight Linux Sandboxing With Landlock, No Root Required


Over on Reddit's "selfhosted" subreddit for alternatives to popular services, long-time Slashdot reader Zoup described a pain point: - Landlock is a Linux Security Module (LSM) that lets unprivileged processes restrict themselves. - It's been in the kernel since 5.13, but the API is awkward to u...

Over on Reddit's "selfhosted" subreddit for alternatives to popular services, long-time Slashdot reader Zoup described a pain point:- Landlock is a Linux Security Module (LSM) that lets unprivileged processes restrict themselves. - It always annoyed the hell out of me to run random binaries from the internet without any real control over what they can access. So they've rolled their own solution, according to Thursday's submission to Slashdot: I just released Landrun, a Go-based CLI tool that wraps Linux Landlock (5.13+) to sandbox any process without root, containers, or seccomp.

Get the Android app

Or read this on Slashdot

Read more on:

Photo of root

root

Photo of landlock

landlock

Related news:

News photo

Landrun: Sandbox any Linux process using Landlock, no root or containers

News photo

Exploits for unpatched Parallels Desktop flaw give root on Macs

News photo

Root-inspired additive printing for fabricating robust conformal electronics

« Identifying a defective RAM IC on laptops with soldered memory
Hyundai to buy 'thousands' of Boston Dynamics robots »