landdown
Simple Sandboxing for shell scripts.
git clone git://mccd.space/landdown
| Log | Files | Refs | README | LICENSE |
commit d14062520835e65401267796299696ba9f3d942b parent 10e932777e52575a5ae1ff41946ae71448cde4df Author: Marc <marc@coquand.email> Date: Tue, 31 Mar 2026 19:03:22 +0200 README Diffstat:
| M | README.md | | | 6 | +++--- |
1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/README.md b/README.md @@ -47,7 +47,7 @@ Try removing `rwf /tmp/some-file.txt` and the script should fail. Note: the file need to exist in order for landdown to work, run `touch /tmp/some-file.txt` to test. -### Curl +### Network access ```sh #!/usr/bin/env landdown @@ -56,11 +56,11 @@ ro /lib ro /etc/ssl rof /etc/resolv.conf connect 443 -#!/bin/sh +#!/bin/bash curl https://www.google.com ``` -Try removing `ro /etc/ssl`, `rof /etc/resolv.conf`, or `connect 443` and it should fail. +Try removing `ro /etc/ssl`, `rof /etc/resolv.conf`, or `connect 443` and it should fail. Network access needs to be explicitly set. ## Supported rules