Категории

Miroslav Franc: Linux's SECCOMP, its usecases and problems

Опубликовано: 10 Июнь 2024
на канале: SUSE Labs
112
5

SECCOMP, short for SECure COMPuting, is a part of Linux kernel that allows restricting, logging or otherwise reacting to systemcalls or systemcall arguments a userspace process can invoke. The talk offers a brief introduction to SECCOMP API and its history. Further I will focus on how SECCOMP is currently used (sandboxing) and some of its current limitations. As a bonus, I will briefly talk about debugging SECCOMP enabled process with Valgrind.

Смотрите видео Miroslav Franc: Linux's SECCOMP, its usecases and problems онлайн, длительностью часов минут секунд в хорошем качестве, которое загружено на канал SUSE Labs 10 Июнь 2024. Делитесь ссылкой на видео в социальных сетях, чтобы ваши подписчики и друзья так же посмотрели это видео. Данный видеоклип посмотрели 112 раз и оно понравилось 5 посетителям.

play_arrow
85,159
4.3 тыс

VanLife what i eat in a week (NO fridge + easy + realistic)

VanLife what i eat in a week (NO fridge + easy + realistic)
play_arrow
26
5

Silaturahmi Karangtaruna Kecamatan Karangtengah Ke Pantai Lugina Kecamatan Agrabinta

Silaturahmi Karangtaruna Kecamatan Karangtengah Ke Pantai Lugina Kecamatan Agrabinta
play_arrow
432
31

Красное знамя над непокоренным Донбассом: дневник поездки

Красное знамя над непокоренным Донбассом: дневник поездки
play_arrow
4,143
68

Adharana Karthavu Anadhuniga Viduvavu

Adharana Karthavu Anadhuniga Viduvavu
play_arrow
291
4

[Arizona RP Mesa] Жалоба на Santiago Lerma

[Arizona RP Mesa] Жалоба на Santiago Lerma
play_arrow
2,709
18

Как стать инженером ПТО. Разрешительная документация

Как стать инженером ПТО. Разрешительная документация
play_arrow
361
8

Борис Самбуров сейчас стрим Мозговой ,,девушку ищем на стрим 888

Борис Самбуров сейчас стрим Мозговой ,,девушку ищем на стрим 888
play_arrow
16,166
231

Anime Opening Music Mix | Lofi Chill with Anime Songs | Anime Opening Compilation 2023

Anime Opening Music Mix | Lofi Chill with Anime Songs | Anime Opening Compilation 2023
Похожие видео
play_arrow
Richard Biener: Compute offloading to your GPU with GCC and OpenMP

Richard Biener: Compute offloading to your GPU with GCC and OpenMP
play_arrow
Christian Goll: Warewulf - making cluster installations fast and reliable

Christian Goll: Warewulf - making cluster installations fast and reliable
play_arrow
Arne Wolf & Dario Faggioli: SAP HANA on KVM @ SUSE

Arne Wolf & Dario Faggioli: SAP HANA on KVM @ SUSE
play_arrow
David Mulder: Bridging Worlds: Linux and Azure AD

David Mulder: Bridging Worlds: Linux and Azure AD
play_arrow
Ondrej Holecek: SUSE Manager 5: A containerization story

Ondrej Holecek: SUSE Manager 5: A containerization story
play_arrow
Thorsten Kukuk: Update from the Future Technology Team

Thorsten Kukuk: Update from the Future Technology Team
play_arrow
Ignaz Forster: State of transactional-update: soft-reboots and less overlays

Ignaz Forster: State of transactional-update: soft-reboots and less overlays
play_arrow
Jan Kara: Recent page cache and VFS changes

Jan Kara: Recent page cache and VFS changes
play_arrow
Martin Jambor, Jan Hubicka: Optimizing C++ std::vector use in GCC 14

Martin Jambor, Jan Hubicka: Optimizing C++ std::vector use in GCC 14
play_arrow
Valentin Lefebvre: Securitized the initramfs and the UKI

Valentin Lefebvre: Securitized the initramfs and the UKI
play_arrow
Luna Dragon: Deep dive into Cockpit

Luna Dragon: Deep dive into Cockpit
play_arrow
Coly Li: What is bcachefs - outside and inside introduction

Coly Li: What is bcachefs - outside and inside introduction
play_arrow
Daniel Garcia: rpmlint GSoC experience

Daniel Garcia: rpmlint GSoC experience
play_arrow
Alberto Planas Dominguez: Current state of Full Disk Encryption in openSUSE

Alberto Planas Dominguez: Current state of Full Disk Encryption in openSUSE
play_arrow
Jiri Wiesner: Measuring latency with ftrace

Jiri Wiesner: Measuring latency with ftrace
play_arrow
Miroslav Franc: Linux's SECCOMP, its usecases and problems

Miroslav Franc: Linux's SECCOMP, its usecases and problems
play_arrow
Danilo Spinella: rinstall: make install for non-C projects, the modern way

Danilo Spinella: rinstall: make install for non-C projects, the modern way
play_arrow
Ludwig Nussel: Systemd-boot status update

Ludwig Nussel: Systemd-boot status update
play_arrow
Johannes Segitz: ALP and SELinux: One year later

Johannes Segitz: ALP and SELinux: One year later
play_arrow
Cyril Hrubis: Particularities of kernel test executor

Cyril Hrubis: Particularities of kernel test executor
play_arrow
Darragh O'Reilly: Server monitoring at SUSE using Velociraptor

Darragh O'Reilly: Server monitoring at SUSE using Velociraptor
play_arrow
Roy Hopkins: Establishing root seeds in a vTPM with COCONUT-SVSM in Confidential VM Remote

Roy Hopkins: Establishing root seeds in a vTPM with COCONUT-SVSM in Confidential VM Remote
play_arrow
Enno Gotthold: Orthos 2 past & future

Enno Gotthold: Orthos 2 past & future
play_arrow
Danilo Spinella: openSUSE packaging compared: is macro the way to go?

Danilo Spinella: openSUSE packaging compared: is macro the way to go?