e...@thyrsus.com said:
> Aaarrgghhh.  It;s a huge pain in the ass and I wish it weren't interesting.
> But given our mission statememnnt, it has to be. 

Just to make sure we are on the same wavelength...

My question/proposal was not to drop seccomp if we didn't do what I sketched 
out.  It was to allow a slightly tighter/cleaner list of syscalls if you were 
willing to put in the work to collect the data.  The old merger of all 
syscalls ever seen on any system approach would still be the default if you 
enabled seccomp and didn't specify your own list.


-- 
These are my opinions.  I hate spam.



_______________________________________________
devel mailing list
devel@ntpsec.org
http://lists.ntpsec.org/mailman/listinfo/devel

Reply via email to