• Overview
  • Topics
    • 0day
    • Amplification
    • ARM
    • Autonomous System
    • BGP
    • C
    • Censorship
    • Certificate
    • Cheatsheet
    • Code
    • CTF
    • CVE
    • Dataset
    • DDoS
    • Denial-of-Service
    • DNS
    • DNSSEC
    • Docker
    • EXIF
    • Game
    • Git
    • Hash
    • HTML
    • IANA
    • IETF RFC
    • Image
    • IP
    • IPv6
    • IXP
    • JSON
    • LaTeX
    • Malware
    • Map
    • Markdown
    • Network
    • Paper Writing
    • Password
    • PCAP
    • Proxy
    • Python
    • Regex
    • Reverse Engineering
    • RPKI
    • Rust
    • Search
    • Security
    • Shell
    • Spam
    • SQL
    • TCP
    • TeX
    • TLS
    • Tool
    • Traceroute
    • Tutorial
    • Unicode
    • VPN
    • VS Code
    • Vulnerability
    • x86
  • Publications

Generate SECCOMP Profiles for Containers

 https://podman.io/blogs/2019/10/15/generate-seccomp-profiles.html

Docker | Tutorial

This blog post explains how to generate SECCOMP profiles for containers. This is possible using podman and eBPF filters. Custom SECCOMP profiles allow to limit the container to exactly those syscalls it needs.