Seccomp: The Syscall Firewall
Introduction
We’ve already covered two Linux security mechanisms that show up in Kubernetes securityContext:
LSMs (mainly AppArmor)
Capabilities.
Both matter. Both do real work. But there’s a third piece that’s just as important: seccomp.
If capa...
cloudsecburrito.com10 min read