Locked in eBPF: Meet Jailer, the Next-Gen Process Jailing System for Linux Security
Jailer is an eBPF-based process jailing system that provides mandatory access control (MAC) for Linux. It tracks processes using BPF task_storage maps and enforces role-based policies on file access, network operations, and process execution....
