Re: Linux features for wheezy

To: Ben Hutchings <ben@decadent.org.uk>
Cc: Debian kernel maintainers <debian-kernel@lists.debian.org>, 675615@bugs.debian.org
Subject: Re: Linux features for wheezy
From: Jonathan Nieder <jrnieder@gmail.com>
Date: Sun, 29 Jul 2012 17:59:07 -0500
Message-id: <[🔎] 20120729225907.GA21617@burratino>
In-reply-to: <[🔎] 1343596129.4642.26.camel@deadeye.wl.decadent.org.uk>
References: <1338677223.3979.94.camel@deadeye> <1340549009.6345.69.camel@deadeye.wl.decadent.org.uk> <[🔎] 1343596129.4642.26.camel@deadeye.wl.decadent.org.uk>

Hi,

Ben Hutchings wrote:
>> On Sat, 2012-06-02 at 23:47 +0100, Ben Hutchings wrote:

>>> - seccomp filters and no_new_privs (#675615)
>
> Are these still worthwhile for wheezy?  We're probably not going to have
> any packaged applications that can use it, although libseccomp is
> included.

chromium-browser in wheezy uses the kernel interface[*].  I think it's
worthwhile.

Thanks,
Jonathan

[*] Noticed because people using 3.5-rc kernels were running into the
bug fixed by 5651721edec2: http://bugs.debian.org/679827

Reply to:

References:
- Re: Linux features for wheezy
  - From: Ben Hutchings <ben@decadent.org.uk>

Prev by Date: Bug#673107: kirkwood: TCP checksum errors when using MTU 9000
Next by Date: Bug#682413: Possible solution.
Previous by thread: Re: Linux features for wheezy
Next by thread: Bug#682413: Possible solution.
Index(es):
- Date
- Thread