Seccomp
Fleeting- Référence externe : https://en.wikipedia.org/wiki/Seccomp
seccomp
seccomp (short for secure computing mode) is a computer security facility in the Linux kernel. seccomp allows a process to make a one-way transition into a “secure” state where it cannot make any system calls except exit(), sigreturn(), read() and write() to already-open file descriptors. Should it attempt any other system calls, the kernel will terminate the process with SIGKILL or SIGSYS.[1][2] In this sense, it does not virtualize the system’s resources but isolates the process from them entirely.
Notes pointant ici
- docker buildx cross compiling python to armhf: “Fatal Python error: pyinit_main: can’t initialize time”
- Fix/Workaround - libseccomp2 and Alpine 3.13 - Installing Raspbian Docker 19.04+ on Raspberry Pi 4 Buster
- postgresql stopped working on my raspberrypi