And I guess the seccomp interaction means that this is potentially a
2.6.29 thing. Not that I know whether anybody actually _uses_ seccomp. It
does seem to be enabled in at least Fedora kernels, but it might not be
used anywhere.
In the Linux version of Google Chrome, we are currently working on code that will use seccomp for parts of our sandboxing solution.
Markus
