Systrace

Automatic Policy Enforcement.
Enforces the configured policies.
Denies and logs policy violations to syslog.

Implementation:
Kernel part simple and small:
Policies for system calls are deny, permit or ask.
Information exported via /dev/systrace

Userland handles more complicated policies and notifications.
              native-open: filename match "$HOME/.opera/*" then permit