You are viewing a plain text version of this content. The canonical link for it is here.

Posted to user@mesos.apache.org by Andrei Budnik <ab...@mesosphere.io> on 2018/07/11 14:27:57 UTC

Supporting Seccomp in Mesos

Hi Folks,

Here is the design doc for Seccomp support in Mesos:
https://docs.google.com/document/d/146FJJ0sDi1sp_HQxVUg-vhqVSTEsdCeD4If3b1xCeec

Seccomp is a security facility in the Linux kernel, which allows a user to
specify syscall filtering rules per a process. This design doc includes
various aspects of the implementation of Seccomp in Mesos, including choice
of the configuration format for Seccomp profile.

Thanks for your time reviewing and providing feedback for the design!

Cheers,
Andrei

Re: Supporting Seccomp in Mesos

Posted by Judith Malnick <jm...@mesosphere.io>.

Hey Andrei,
If you'd like to generate some live discussion you're welcome to put this
doc on the agenda for the Developer Sync
<https://docs.google.com/document/d/153CUCj5LOJCFAVpdDZC7COJDwKh9RDjxaTA0S7lzwDA/edit?usp=sharing>
tomorrow at 10 am Pacific. We're always looking for content to discuss
there :)
Best!
Judith

On Wed, Jul 11, 2018 at 7:28 AM Andrei Budnik <ab...@mesosphere.io> wrote:

> Hi Folks,
>
> Here is the design doc for Seccomp support in Mesos:
>
> https://docs.google.com/document/d/146FJJ0sDi1sp_HQxVUg-vhqVSTEsdCeD4If3b1xCeec
>
> Seccomp is a security facility in the Linux kernel, which allows a user to
> specify syscall filtering rules per a process. This design doc includes
> various aspects of the implementation of Seccomp in Mesos, including choice
> of the configuration format for Seccomp profile.
>
> Thanks for your time reviewing and providing feedback for the design!
>
> Cheers,
> Andrei
>

-- 
Judith Malnick
Community Manager
310-709-1517

Re: Supporting Seccomp in Mesos

Posted by Judith Malnick <jm...@mesosphere.io>.

Hey Andrei,
If you'd like to generate some live discussion you're welcome to put this
doc on the agenda for the Developer Sync
<https://docs.google.com/document/d/153CUCj5LOJCFAVpdDZC7COJDwKh9RDjxaTA0S7lzwDA/edit?usp=sharing>
tomorrow at 10 am Pacific. We're always looking for content to discuss
there :)
Best!
Judith

On Wed, Jul 11, 2018 at 7:28 AM Andrei Budnik <ab...@mesosphere.io> wrote:

> Hi Folks,
>
> Here is the design doc for Seccomp support in Mesos:
>
> https://docs.google.com/document/d/146FJJ0sDi1sp_HQxVUg-vhqVSTEsdCeD4If3b1xCeec
>
> Seccomp is a security facility in the Linux kernel, which allows a user to
> specify syscall filtering rules per a process. This design doc includes
> various aspects of the implementation of Seccomp in Mesos, including choice
> of the configuration format for Seccomp profile.
>
> Thanks for your time reviewing and providing feedback for the design!
>
> Cheers,
> Andrei
>

-- 
Judith Malnick
Community Manager
310-709-1517