Enhance Linux sandbox security features with Landlock, seccomp, and eBPF monitoring
This commit is contained in:
JY Tan
@@ -11,7 +11,7 @@ Fence is a sandboxing tool that restricts network and filesystem access for arbi
|
||||
|
||||
- [Concepts](concepts.md) - Mental model: OS sandbox + local proxies + config
|
||||
- [Troubleshooting](troubleshooting.md) - Common failure modes and fixes
|
||||
- [Using Fence with AI Agents](agents.md) - Defense-in-depth and policy standardization
|
||||
- [Using Fence with AI agents](agents.md) - Defense-in-depth and policy standardization
|
||||
- [Recipes](recipes/README.md) - Common workflows (npm/pip/git/CI)
|
||||
- [Config Templates](templates/) - Copy/paste templates you can start from
|
||||
|
||||
@@ -20,7 +20,8 @@ Fence is a sandboxing tool that restricts network and filesystem access for arbi
|
||||
- [README](../README.md) - CLI + library usage
|
||||
- [Configuration](./configuration.md) - How to configure Fence
|
||||
- [Architecture](../ARCHITECTURE.md) - How fence works under the hood
|
||||
- [Security Model](security-model.md) - Threat model, guarantees, and limitations
|
||||
- [Security model](security-model.md) - Threat model, guarantees, and limitations
|
||||
- [Linux security features](linux-security-features.md) - Landlock, seccomp, eBPF details and fallback behavior
|
||||
|
||||
## Examples
|
||||
|
||||
|
||||
Reference in New Issue
Block a user