You are viewing a plain text version of this content. The canonical link for it is here.
Posted to user@mesos.apache.org by Andrei Budnik <ab...@mesosphere.io> on 2018/07/11 14:27:57 UTC
Supporting Seccomp in Mesos
Hi Folks,
Here is the design doc for Seccomp support in Mesos:
https://docs.google.com/document/d/146FJJ0sDi1sp_HQxVUg-vhqVSTEsdCeD4If3b1xCeec
Seccomp is a security facility in the Linux kernel, which allows a user to
specify syscall filtering rules per a process. This design doc includes
various aspects of the implementation of Seccomp in Mesos, including choice
of the configuration format for Seccomp profile.
Thanks for your time reviewing and providing feedback for the design!
Cheers,
Andrei
Re: Supporting Seccomp in Mesos
Posted by Judith Malnick <jm...@mesosphere.io>.
Hey Andrei,
If you'd like to generate some live discussion you're welcome to put this
doc on the agenda for the Developer Sync
<https://docs.google.com/document/d/153CUCj5LOJCFAVpdDZC7COJDwKh9RDjxaTA0S7lzwDA/edit?usp=sharing>
tomorrow at 10 am Pacific. We're always looking for content to discuss
there :)
Best!
Judith
On Wed, Jul 11, 2018 at 7:28 AM Andrei Budnik <ab...@mesosphere.io> wrote:
> Hi Folks,
>
> Here is the design doc for Seccomp support in Mesos:
>
> https://docs.google.com/document/d/146FJJ0sDi1sp_HQxVUg-vhqVSTEsdCeD4If3b1xCeec
>
> Seccomp is a security facility in the Linux kernel, which allows a user to
> specify syscall filtering rules per a process. This design doc includes
> various aspects of the implementation of Seccomp in Mesos, including choice
> of the configuration format for Seccomp profile.
>
> Thanks for your time reviewing and providing feedback for the design!
>
> Cheers,
> Andrei
>
--
Judith Malnick
Community Manager
310-709-1517
Re: Supporting Seccomp in Mesos
Posted by Judith Malnick <jm...@mesosphere.io>.
Hey Andrei,
If you'd like to generate some live discussion you're welcome to put this
doc on the agenda for the Developer Sync
<https://docs.google.com/document/d/153CUCj5LOJCFAVpdDZC7COJDwKh9RDjxaTA0S7lzwDA/edit?usp=sharing>
tomorrow at 10 am Pacific. We're always looking for content to discuss
there :)
Best!
Judith
On Wed, Jul 11, 2018 at 7:28 AM Andrei Budnik <ab...@mesosphere.io> wrote:
> Hi Folks,
>
> Here is the design doc for Seccomp support in Mesos:
>
> https://docs.google.com/document/d/146FJJ0sDi1sp_HQxVUg-vhqVSTEsdCeD4If3b1xCeec
>
> Seccomp is a security facility in the Linux kernel, which allows a user to
> specify syscall filtering rules per a process. This design doc includes
> various aspects of the implementation of Seccomp in Mesos, including choice
> of the configuration format for Seccomp profile.
>
> Thanks for your time reviewing and providing feedback for the design!
>
> Cheers,
> Andrei
>
--
Judith Malnick
Community Manager
310-709-1517