alt Hacker News> A problem with that approach is that libc can after an upgrade decide to start doing syscalls you were not expecting.
That would break capsicum, too, so I don’t see how that’s a problem when “comparing Capsicum to using seccomp in the same way”.
> A problem with that approach is that libc can after an upgrade decide to start doing syscalls you were not expecting.
That would break capsicum, too, so I don’t see how that’s a problem when “comparing Capsicum to using seccomp in the same way”.
That's the approach I meant by "that approach", the library the parent commenter was talking about writing for a customer. Compare this to Landlock or OpenBSDs pledge/unveil.