On Wed, Mar 20, 2019 at 03:01:12PM -0400, Andrea Arcangeli wrote: > but > that would be better be achieved through SECCOMP and not globally.'. That begs the question why not use seccomp for this? What if everyone decided to add a knob for all syscalls to do the same? For the commit log, why is it OK then to justify a knob for this syscall? Luis
