Hello!
So I've been spending some time in UML (among other virtualization
technologies). There's some interesting security and performance models it
possibly allows, even in this era of containers and hypervisors. Ptrace is
being something of a problem though; it's a little hairy and difficult to
scope. It is unfortunately breaking many things I'm trying to do.
So I'm curious. There is another option -- seccomp-bpf can trap on
arbitrary syscalls. Is there a reason anyone sees why UML couldn't be
routed through it?
--Dan
------------------------------------------------------------------------------
Mobile security can be enabling, not merely restricting. Employees who
bring their own devices (BYOD) to work are irked by the imposition of MDM
restrictions. Mobile Device Manager Plus allows you to control only the
apps on BYO-devices by containerizing them, leaving personal data untouched!
https://ad.doubleclick.net/ddm/clk/304595813;131938128;j
_______________________________________________
User-mode-linux-user mailing list
User-mode-linux-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/user-mode-linux-user