seccomp-bpf patch for running dnsmasq under sandbox: https://github.com/google/security-research-pocs/blob/master/vulnerabilities/dnsmasq/sandbox/dnsmasq-sandbox.patch … Use it at your own risk. Please test before deploying this.
Certainly better than not having seccomp, but for maintainability, I recommend using libseccomp instead of hand-coded BPF.
1:02 PM - 2 Oct 2017
0 replies
0 retweets
2 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.