Explore Linux sandboxing techniques without writing code in this 49-minute conference talk by Ignat Korchagin from Cloudflare. Delve into the problem of process isolation, understand process startup stages, and examine a concrete example. Learn about protecting against readbystand, distributing lib sandbox, combining approaches, including dynamic libraries, filtering and collecting system calls, and setting sandbox limits. Discover how to modify allowed or blocked system calls and understand the implications of sandboxing executables. Gain valuable insights into enhancing security and process isolation in Linux environments through this informative presentation from the Linux Foundation.