Jan Schaumann on Nostr: Very clever engineers: "We use seccomp to restrict the syscalls processes running in ...
Very clever engineers:
"We use seccomp to restrict the syscalls processes running in docker can make. Security first!"
Also very clever engineers:
*adds "seccomp(2)" and "prctl(2)" to list of allowed syscalls*
Published at
2024-06-06 01:39:39Event JSON
{
"id": "7327a66a427947f272cc5aac77989b843b3a597f8debecaf40afb30278a0a2a2",
"pubkey": "b3087ccfbff4c2e2e16a3af148b6a3a27fe07bb1e7628b714a11e5f26711f263",
"created_at": 1717637979,
"kind": 1,
"tags": [
[
"proxy",
"https://mstdn.social/users/jschauma/statuses/112567122652789364",
"activitypub"
]
],
"content": "Very clever engineers:\n\"We use seccomp to restrict the syscalls processes running in docker can make. Security first!\"\n\nAlso very clever engineers:\n*adds \"seccomp(2)\" and \"prctl(2)\" to list of allowed syscalls*",
"sig": "15f9a096cd356b5251646a3187c749d6c1a5d06b9e7f1d37e19b9c5d981781e5fcd2d38235b938f7a3ad63641bb6763bc14f3e40fea059a57c488f8caac1ef1f"
}
