You might also be interested in Plash, which also creates
restricted environments for running programs in. Like
jailkit, you can specify what files a process can access, but
you don't need to copy the files, so it's more lightweight
and flexible. You can grant a process read-only or
read-write access to specific directories, mapped at any
point in the file namespace.
Comments for Jailkit
Software with a similar purpose: Plash
You might also be interested in Plash, which also creates
restricted environments for running programs in. Like
jailkit, you can specify what files a process can access, but
you don't need to copy the files, so it's more lightweight
and flexible. You can grant a process read-only or
read-write access to specific directories, mapped at any
point in the file namespace.
freshmeat.net/projects...