Jan Schaumann on Nostr: Very clever engineers: "We use seccomp to restrict the syscalls processes running in ...
Very clever engineers:
"We use seccomp to restrict the syscalls processes running in docker can make. Security first!"
Also very clever engineers:
*adds "seccomp(2)" and "prctl(2)" to list of allowed syscalls*
Published at
2024-06-06 01:39:39Event JSON
{
"id": "6b498d684df6a9f30ea4d4dfde758839554e15c38073ddd1013e86f8c285572e",
"pubkey": "16b3a799044e240aa9b9c89a7d168b0d27979db63021eee1157cd7bc0c6a8f47",
"created_at": 1717637979,
"kind": 1,
"tags": [
[
"proxy",
"https://mstdn.social/@jschauma/112567122652789364",
"web"
],
[
"proxy",
"https://mstdn.social/users/jschauma/statuses/112567122652789364",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://mstdn.social/users/jschauma/statuses/112567122652789364",
"pink.momostr"
]
],
"content": "Very clever engineers:\n\"We use seccomp to restrict the syscalls processes running in docker can make. Security first!\"\n\nAlso very clever engineers:\n*adds \"seccomp(2)\" and \"prctl(2)\" to list of allowed syscalls*",
"sig": "8ebdfae0dc4e5c62d5f800391ae31c59ccd675322a0a6eb5410800371c34914e1d5fd8f4ad0350d30dd32b0f0c9a37d58a18b1231555a774b51b8093872653ab"
}
