System calls for sandboxing programs ( seccomp (2), Landlock system calls, ...) @setuid System calls for changing