Hacker News: l0kod

New comment by l0kod in "Island: Linux sandboxing tool powered by Landlock"

l0kod — Fri, 05 Dec 2025 12:01:40 +0000

Island makes Landlock practical for everyday workflows by acting as a high-level wrapper and policy manager. Developed alongside the kernel feature and its Rust libraries, it bridges the gap between raw security mechanisms and user activity.

Island: Linux sandboxing tool powered by Landlock

l0kod — Fri, 05 Dec 2025 12:01:40 +0000

Article URL: https://github.com/landlock-lsm/island

Comments URL: https://news.ycombinator.com/item?id=46160134

Points: 3

# Comments: 1

New comment by l0kod in "Landrun: Sandbox any Linux process using Landlock, no root or containers"

l0kod — Tue, 25 Mar 2025 17:26:49 +0000

Landlock supports scoped abstract UNIX socket: https://docs.kernel.org/userspace-api/landlock.html#ipc-scop...

Landlock doesn't use namespaces, they are orthogonal.

New comment by l0kod in "Landrun: Sandbox any Linux process using Landlock, no root or containers"

l0kod — Tue, 25 Mar 2025 17:08:27 +0000

Seccomp is not an access control system, but Landlock is. Seccomp limits the kernel attack surface and Landlock enforces an access control. They are complementary.

With Landlock, the access control is at the right layer, and the semantic is guaranteed to be the same even if the kernel gets new syscalls. Landlock is the closest thing to Pledge/Unveil we can get with the Linux constraints (and it is gaining new features).

New comment by l0kod in "Landrun: Sandbox any Linux process using Landlock, no root or containers"

l0kod — Sun, 23 Mar 2025 00:00:51 +0000

For instance, with Pledge, the "dns" promise is implemented with hardcoded path in the kernel. Linux is complex because it is versatile and flexible. Controlling access to such features requires some complexity and the kernel might not be enough.

About interfaces, another example is that Unveil is configured with path names but Landlock uses file descriptors instead (more flexible).

Also, these OpenBSD primitives only apply to the current executed binary, there is no nested sandboxes because the goal is not to create this kind of secure environment but mainly to secure a trusted binary.

New comment by l0kod in "Landrun: Sandbox any Linux process using Landlock, no root or containers"

l0kod — Sat, 22 Mar 2025 21:44:45 +0000

BSD systems ship a kernel and user space, which simplifies a lot of things. Linux is more flexible but it comes at a cost. Adding new security features can also be challenging for other reasons. Anyway, Landlock is one of these new security primitives, and it is gaining new features over time.

The Landlock interface must not change the underlying semantic of what is allowed or denied, otherwise it could break apps build for an older or a newer kernel. However, these apps should still use all the available security features. This is challenging.

Landlock provides a way to define fine-grained security policies. I would not say the kernel interface is complex (rather flexible), but what really matter are the user space library interfaces and how they can safely abstract complexity.

New comment by l0kod in "Landrun: Sandbox any Linux process using Landlock, no root or containers"

l0kod — Sat, 22 Mar 2025 21:22:16 +0000

Namespaces (used by containers) are very powerful but they are also a door to a large attack surface: https://lwn.net/Articles/673597/

Landlock is (only) an access control system, but it's designed to let any process use it, including potentially untrusted ones, which makes it suitable for any apps. It's close and complementary to seccomp.

New comment by l0kod in "Landrun: Sandbox any Linux process using Landlock, no root or containers"

l0kod — Sat, 22 Mar 2025 20:06:05 +0000

It takes time to develop theses features, but Landlock is gaining new network filtering features. We are working in a way to control socket creation according to their protocols, and also a way to filter UDP (which makes sense to developers and users).

From the point of view of an app developer, it might not make sense to filters peers but services (ports) instead, and filtering peers without their names would not be ideal (the kernel doesn't know about DNS, only IPs). Anyway, this feature might come one day if someone want to work on it, but we follow well-tested incremental development.

Netfiler is a privileged network feature that allows to do almost anything with the network, which makes it unsuitable for (app/unprivileged) sandboxing.

New comment by l0kod in "Landrun: Sandbox any Linux process using Landlock, no root or containers"

l0kod — Sat, 22 Mar 2025 19:50:15 +0000

We are working on a JSON/TOML format for Landlock, with the related library, and bindings for several languages: https://github.com/landlock-lsm/landlockconfig

We are working to make it part of the OCI runtime specification too.

Using existing configuration format would not work because Landlock has its own unique properties: unprivileged, nested sandboxes, dedicated Linux syscalls, and a good compatibility story with opt-in and incremental features.

New comment by l0kod in "NsJail: A light-weight process isolation tool for Linux"

l0kod — Fri, 07 Feb 2025 10:20:17 +0000

Namespace are very useful to build virtual environments, but I think it's important to keep in mind that they are not designed for sandboxing and don't provide security guarantees (e.g. mount point propagation), nor fine-grained access rights, nor security events (e.g. logs)... which might be OK according to use cases. Also, namespaces increase the attack surface of the kernel (e.g. vulnerabilities that can be reached through user namespaces). That being said, even if Landlock can control the most important filesystem access rights, not all of them are supported yet. New kernel releases bring new Landlock features (e.g. IPC, network control). It takes some time to build a new and safe access control system but we'll get there!

New comment by l0kod in "Show HN: Porting OpenBSD Pledge() to Linux"

l0kod — Mon, 25 Jul 2022 17:40:17 +0000

There is an ongoing work to support network access-control: https://lore.kernel.org/all/20220621082313.3330667-1-konstan...