|
|
Log in / Subscribe / Register

"Extreme sandboxing"

"Extreme sandboxing"

Posted Nov 5, 2007 17:22 UTC (Mon) by i3839 (guest, #31386)
In reply to: "Extreme sandboxing" by charlieb
Parent article: Daniel Bernstein: ten years of qmail security 

Linux has seccomp, which a process can enabled via prctl(), but hardly anyone knows about it.
Perhaps it's too secure, as it only enables read/write/exit/sigreturn, and disallows
everything else.

to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds