all InfoSec news
Container security fundamentals part 6: seccomp
Sept. 11, 2023, midnight |
Datadog Security Labs securitylabs.datadoghq.com
Throughout this series, we've covered various layers of security that can isolate containers not only from other processes on the host but also from their underlying host. In this post, we'll discuss how seccomp filters are used as a "last line of defense" by container runtimes.
Syscalls and seccomp overview
Seccomp filters are a way of restricting which Linux syscalls a process can perform. Syscalls are essentially the interface between userspace programs and the Linux kernel. Whenever a program …
container containers container security defense discuss fundamentals host processes seccomp security series syscalls
More from securitylabs.datadoghq.com / Datadog Security Labs
An analysis of a TeamTNT doppelgänger
3 months, 2 weeks ago |
securitylabs.datadoghq.com
Highlights from Datadog Security Labs in 2023
4 months, 2 weeks ago |
securitylabs.datadoghq.com
Jobs in InfoSec / Cybersecurity
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Security Analyst
@ Halton Region | Oakville, Ontario, Canada
Senior Cyber Security Analyst
@ Valley Water | San Jose, CA
Consultant Sécurité SI Gouvernance - Risques - Conformité H/F - Strasbourg
@ Hifield | Strasbourg, France
Lead Security Specialist
@ KBR, Inc. | USA, Dallas, 8121 Lemmon Ave, Suite 550, Texas
Consultant SOC / CERT H/F
@ Hifield | Sèvres, France