Hacker News new | ask | show | jobs
by bayindirh 1879 days ago
Doesn't SELinux provide some of that?

Tightly enclose all running software with a beyond-root, kernel-level authority/sandbox, so even vulnerabilities only we know can't harm us if they're discovered?