Readme: TOC

author Robert Swiecki <robert@swiecki.net>

Sun, 15 Jan 2017 21:17:14 +0000 (22:17 +0100)

committer Robert Swiecki <robert@swiecki.net>

Sun, 15 Jan 2017 21:17:14 +0000 (22:17 +0100)
author Robert Swiecki <robert@swiecki.net>
Sun, 15 Jan 2017 21:17:14 +0000 (22:17 +0100)
committer Robert Swiecki <robert@swiecki.net>
Sun, 15 Jan 2017 21:17:14 +0000 (22:17 +0100)
diff --git a/README.md b/README.md

index b36efe1170648a26b066f9a8d0903d319e9aa722..81b4095e0c7ddd1f91f753e6504b1e0bee75ecd6 100644 (file)
--- a/README.md
+++ b/README.md
@@ -1,3 +1,14 @@
+- [WHAT IS IT?](#what-is-it-)
+- [WHAT TYPE OF ISOLATION DOES THIS TOOL PROVIDE?](#what-type-of-isolation-does-this-tool-provide-)
+- [WHICH USE-CASES ARE SUPPORTED?](#which-use-cases-are-supported-)
+  * [Isolation of network services (inetd-style)](#isolation-of-network-services--inetd-style-)
+  * [Isolation, with access to a private, cloned interface (requires euid==0)](#isolation--with-access-to-a-private--cloned-interface--requires-euid--0-)
+  * [Isolation of local processes](#isolation-of-local-processes)
+  * [Isolation of local processes (and re-running them)](#isolation-of-local-processes--and-re-running-them-)
+  * [Bash in a minimal file-system with uid==0 and access to /dev/urandom](#bash-in-a-minimal-file-system-with-uid--0-and-access-to--dev-urandom)
+  * [Even more contrained shell (with seccomp-bpf policies)](#even-more-contrained-shell--with-seccomp-bpf-policies-)
+- [MORE INFO?](#more-info-)
+
  ### WHAT IS IT?
  NsJail is a process isolation tool for Linux. It makes use of the the namespacing, resource control, and seccomp-bpf syscall filter subsystems of the Linux kernel.
author	Robert Swiecki <robert@swiecki.net>
	Sun, 15 Jan 2017 21:17:14 +0000 (22:17 +0100)
committer	Robert Swiecki <robert@swiecki.net>
	Sun, 15 Jan 2017 21:17:14 +0000 (22:17 +0100)