landdown

Simple Sandboxing for shell scripts.

git clone git://mccd.space/landdown

commit c8c282134428430f30455a27ff791399dc9fb382
parent 655125d7871e6ea69bdd091732e019a99855edfe
Author: Marc <marc@coquand.email>
Date:   Thu,  2 Apr 2026 21:40:59 +0200

README

Diffstat:

MREADME.md | 4++--


1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/README.md b/README.md
@@ -1,6 +1,6 @@
 # Landdown - Simple shell script sandbox
 
-Landdown is a easy-to-use utility for Linux that allows you to sandbox shell scripts using [Landlock](https://landlock.io). Just like Landlock, Landdown "aims to protect you against the security impacts of bugs or unexpected/malicious behavior". To use, prepend your script with a landdown shebang and a ruleset. For example:
+Landdown is an easy-to-use utility for Linux that allows you to sandbox shell scripts with [Landlock](https://landlock.io). Just like Landlock, Landdown "aims to protect you against the security impacts of bugs or unexpected/malicious behavior". To use, prepend your script with the landdown shebang and a ruleset, and then write your shell script like you would normally. For example:
 
 ```sh
 #!/usr/bin/env landdown
@@ -54,7 +54,7 @@ ro /bin
 ro /lib
 rwf /tmp/some-file.txt
 #!/bin/sh
-echo Edit > /tmp/some-file.txt
+echo "Edit" > /tmp/some-file.txt
 ```
 
 Try removing `rwf /tmp/some-file.txt` and the script should fail.