Michael Kerrisk is the author of the acclaimed book, “The Linux Programming Interface” (http://man7.org/tlpi/ ), a guide and reference for system programming on Linux and UNIX. He contributes to the Linux kernel primarily via documentation, review, and testing of new kernel-user-space interfaces. Since 2004, he been the maintainer of the Linux man-pages project (http://www.kernel.org/doc/man-pages/ ). Michael is New Zealander, working as an independent trainer and consultant in Munich, Germany.
Proposals for this user
This session, will look briefly at the history of seccomp, then examine the BPF virtual machine and some practical examples of filtering programs that restrict the set of permitted system calls.