What's the benefit of a complain mode for seccomp in snappyland?
AppArmor denials can usually be addressed by changing ./configure flags
or hardcoded paths or something, but there's not much to be done for
"this application uses syscalls we forbid" except eliding the syscalls
from the source, right?

Allowing it to run without trouble feels like it provides a false sense
of progress or control when none is intended.

Thanks

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1567597

Title:
  implement 'complain mode' in seccomp for developer mode with snaps

To manage notifications about this bug go to:
https://bugs.launchpad.net/snappy/+bug/1567597/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to