The Linux Kernel/Security

New features

Landlock

Landlock allows to sandbox applications.


👁 example: samples/landlock/sandboxer.c src


📚 References:

Landlock: unprivileged access control doc
Landlock doc

Randomize kernel stack offset

linux/randomize_kstack.h inc
add_random_kstack_offset id
Category:Book:The Linux Kernel#Security%20
Category:Book:The Linux Kernel