Sandbox using SELinux etc.

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

I am studying SELinux.

I want to write a sandbox binary which would (essentially) disallow a  
program started from it to open new files (and possibly restrict its access  
to network).

Should I implement it not only for SELinux but also for AppArmor and Tomoyo?

Victor Porton -

Site Timeline