Introduction to Landlock: Linux Security API for Application Resource Control
Landlock is a Linux security API that allows applications to explicitly declare which system resources they need access to, creating a security contract with the kernel. Similar to OpenBSD's unveil() and pledge(), it enables programs to restrict themselves to only necessary files and resources, providing defense-in-depth against potential compromises. The ar
