• Overview
  • Topics
    • 0day
    • 2FA
    • Amplification
    • Android
    • Arduino
    • ARM
    • Autonomous System
    • BGP
    • C
    • Censorship
    • Certificate
    • Cheatsheet
    • Code
    • CTF
    • CVE
    • Dataset
    • DDoS
    • DNS
    • DNSSEC
    • Docker
    • EXIF
    • Game
    • Git
    • GPS
    • Hash
    • HTML
    • IANA
    • IETF RFC
    • Image
    • IP
    • IPv6
    • IXP
    • JSON
    • LaTeX
    • Malware
    • Map
    • Markdown
    • Network
    • Paper Writing
    • Password
    • PCAP
    • Proxy
    • Python
    • Regex
    • Reverse Engineering
    • RPKI
    • Rust
    • Search
    • Security
    • Shell
    • Spam
    • SQL
    • TCP
    • TeX
    • TLS
    • Tool
    • Traceroute
    • Tutorial
    • Unicode
    • VPN
    • VS Code
    • Vulnerability
    • Windows
    • x86
  • Publications

Generate SECCOMP Profiles for Containers

https://podman.io/blogs/2019/10/15/generate-seccomp-profiles.html

Docker | Tutorial

This blog post explains how to generate SECCOMP profiles for containers. This is possible using podman and eBPF filters. Custom SECCOMP profiles allow limiting the container to exactly those syscalls it needs.