Dear friends,
I am a Ubuntu user from quiet a while, and happy as a desktop user. But I want to make my OS more secure, looking for something like FreeBSD jails(I thought of switching to FreeBSD). I know, openVZ and linux-vserver does good job, but I am afraid to mess around with kernel.

So my question is how to sandbox an application without using openVZ/linux-vserver, mainly web browsers (As I think web browsers are the important source of exploited vulnerabilities)

Also, I dont think chroot is any reliable solution.