Resource isolation tools

Tools

ChrootX

application security

jchroot (chroot with additional isolation)

Recent versions of the Linux kernel allow using different namespaces to isolate resources. The first process in each namespace will be PID 1 and the main parent of newly spawned processes. This type of isolation allows for separation of resources. Jchroot can use this to define all kind of specifics for this process. Think of resources like the hostname, the mount points, or any users that are available.

Missing a favorite tool in this list? Share a tool suggestion and we will review it.