Linux.com: Add an Extra Layer of Security with Systrace

"Niels Provos' Systrace is a utility that monitors and controls what an application can access on a system by creating and enforcing access policies for system calls. For the Linux crowd, it's something like the US National Security Agency's SE Linux, but it's more flexible and, if used properly, it can improve a system's overall security by 'sandboxing' untrusted applications and users.

"Systrace is included by default in NetBSD and OpenBSD, and the project lists ports for Mac OS X, FreeBSD, and Linux on its home page--though the Mac OS X port is not being maintained at the moment..."

Complete Story

Related Story:
Debian Weekly News - December 17th, 2002(Dec 22, 2002)