Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://hachyderm.io/users/dalias/statuses/113944304151529440">Rich Felker (dalias@hachyderm.io)'s status on Tuesday, 04-Feb-2025 15:55:03 JST</a><a href="https://hachyderm.io/@dalias" title="dalias@hachyderm.io"><img src="https://gnusocial.jp/avatar/40873-48-20221207231635.webp" width="48" height="48" alt="Rich Felker" style="position: absolute; left: 0; top: 0;">Rich Felker</a><div><a href="https://grapheneos.social/@GrapheneOS/113944274343547438" rel="in-reply-to">in reply to</a><ul><li><li><a href="https://gnusocial.jp/user/209694" title="lispi314@udongein.xyz">LisPi</a></li></ul></div></section><article><p><a href="https://grapheneos.social/@GrapheneOS">@GrapheneOS</a> <a href="https://udongein.xyz/users/lispi314">@lispi314</a> Seccomp here <br> isn't to supplement access control policy for resources but to shut off large swaths of kernel interface surface that you don't want to be attack surface. So lack of memory inspection is not an issue.</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4504772#notice-8821079">In conversation</a><time datetime="2025-02-04T15:55:03+09:00" title="Tuesday, 04-Feb-2025 15:55:03 JST">about 18 days ago</time> <span>from <span><a href="https://hachyderm.io/@dalias/113944304151529440" rel="external" title="Sent from hachyderm.io via ActivityPub">hachyderm.io</a></span></span><a href="https://hachyderm.io/@dalias/113944304151529440">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Rich Felker (dalias@hachyderm.io)'s status on Tuesday, 04-Feb-2025 15:55:03 JSTRich Felker
in reply to
- GrapheneOS
- LisPi
@GrapheneOS @lispi314 Seccomp here
isn't to supplement access control policy for resources but to shut off large swaths of kernel interface surface that you don't want to be attack surface. So lack of memory inspection is not an issue.
In conversationabout 18 days ago from hachyderm.iopermalink

Public

Embed Notice

HTML Code

Corresponding Notice